Datalogicco CMS suffers from a remote SQL injection vulnerability.
0d9d6735bcbdfe67fde4a393e4bc16cb3db6813608ca59eeaaa2797fe1c8dbeeGrouplink Everything HelpDesk versions 10.0.3 and below suffers from cross site scripting and password reset vulnerabilities.
0e11f563d1566704eb5a0ee34b573581a9cbbfbbc50c6d757da046e0bdf1959535 bytes small Linux/ARM execve("/bin/sh", [], [0 vars]) shellcode.
89c1a18e24a7a81072205b390306915abb23b47c063886479071e74b7b6f720439 bytes small Linux/ARM creat("/root/pwned", 0777) shellcode.
692a848e31de49bad68fe20d79d4b502bf9e11b361107a0a93344361c7b1dd6239 bytes small Linux/ARM chmod("/etc/passwd", 0777) shellcode.
86897b2416eb669566e9a42a981282fa4a6a3bcc420df8d38f78eafa306f03fbDebian Linux Security Advisory 2751-1 - Several vulnerabilities have been discovered in libmodplug, a library for mod music based on ModPlug, that might allow arbitrary code execution when processing specially-crafted ABC files through applications using the library, such as media players.
baf1fa731bea9147f75f600419189a80bebbe0e384112c2cc28f69b775045516Mandriva Linux Security Advisory 2013-226 - Multiple vulnerabilities has been discovered and corrected in Multiple cross-site scripting vulnerabilities in Roundcube webmail before 0.9.3 allow user-assisted remote attackers to inject arbitrary web script or HTML via the body of a message visited in new or might allow remote authenticated users to inject arbitrary web script or HTML via an HTML signature, related to save_identity.inc. The updated packages have been patched to correct these issues.
8012cdf47e0a6c8a13625cb4738a4b9a2831626e64326a79e8a04bbd4b443855Nimbostratus is the first toolset to help you in the process of pivoting in Amazon AWS clouds. it allows you to enumerate permissions to AWS services for current IAM role, clone DB to access information stored in snapshot, inject raw Celery task for pickle attack, and much more.
29efa9f8132f0b764d96905af99f64914c6de0ebe5aec38f267d7df09b9660c7KingView version 6.53 has an insecure active-x control that allows for arbitrary file copying.
b16413ec1271c3727d0068f3aaa5e74cf60deb2c6fcbdfbe249e49df7374ffa2Drupal Make Meeting Scheduler third party module version 6.x suffers from an access bypass vulnerability due to insufficient checks.
3e7265c87484b0bc4f73d45d0829750a02c43294ea2519e3357d622caa10c463Drupal core versions 6.x and 7.x suffer from an information disclosure vulnerability.
d6b9175b4fe7d2cf479272239c936cb726c738b518c09e466fc28b3a4afc3d18KingView version 6.53 has an insecure active-x control that allows for arbitrary file creation and overwrite.
785c1ed4650168b152eb1ff73cd68727e7dd22759c9a9b2913d8f8f3b8aa9c10This is an exploit that leverages a local file disclosure vulnerability in systems running Prestige Software CMS in order to gain database information and credentials.
27a08ed1766b1a787e4d304b3c3b415e4c40310fa22976f85822c4bacc05b08ejetAudio version 8.0.16.2000 Plus VX crash proof of concept denial of service exploit.
b4cc4bfa960e8ac12d716968e1c41fdfac0206843b0e35cef19b6bb6ac71d0e1Cisco Security Advisory - Multiple buffer overflow vulnerabilities exist in the Cisco WebEx Recording Format (WRF) and Advanced Recording Format (ARF) Players. Exploitation of these vulnerabilities could allow a remote attacker to crash an affected player, and in some cases, could allow a remote attacker to execute arbitrary code on the system of a targeted user. The Cisco WebEx Players are applications that are used to play back WebEx meeting recordings that have been recorded on the computer of an on-line meeting attendee. The players can be automatically installed when the user accesses a recording file that is hosted on a WebEx server. Cisco has updated affected versions of the Cisco WebEx Business Suite meeting sites, Cisco WebEx 11 meeting sites, Cisco WebEx Meetings Server, and Cisco WebEx WRF and ARF Players to address these vulnerabilities. Cisco has released free software updates that address these vulnerabilities.
342d46de5f78edbc761109696573e53451c5dce2e0777e60e410a1d16f533fe1GOMPlayer version 2.2.53.5169 crash proof of concept denial of service exploit.
578d87b105f6db9450c49555f33d684c2ee59ef8983ee4da6ff0d46129c9a913
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed