phUploader suffers from a remote shell upload vulnerability.
4b31af43212174585cb3221a7a4f521f2f4771482f78781a536e64d45093167dThe PacketFence Network Access Controller is vulnerability to a cross site scripting vulnerability.
33db6147a1accafc201afba1dddded94deb0d3424c401c258375c40b206c2372The Bararcuda web firewall 660 with firmware 7.3.1.007 suffers from input validation vulnerabilities that allow for session hijacking and more.
bf65427cf42c5a384779e3d121dfd96b62f502dac235f59d56843334b08a4a7dLinux setreuid(0,0) and execve (/bin/rm /etc/shadow) shellcode.
f84c86a1d856bfb20a08e0773f0c8b9bab67a7cf23077dc8fd298f6398894bd1This shellcode will attempt to delete the Zone.Identifier ADS and then runs the file using the ShellExecuteA function.
7c5c86d8a1260728dd1fb1099f979199962e2487372f6851fa49aa70d4606fcaPHP versions 5.2.12 and 5.3.1 suffer from a symlink() open_basedir bypass vulnerability.
1d9cd89835a6198f59b89c83701718f2f5b216f7cabf01a8a62f26935f81a05160cycleCMS versions 2.5.0 and below suffer from a remote file inclusion vulnerability.
4e33b0e2e127e212792cb6babfa1c0010ec29d5a5b01320d3ef5d953d2100d38FestOS versions 2.2.1 and below suffer from a remote file inclusion vulnerability.
a6aa6b8028c760b0168dba31c0f0e87eddbf1362c4fcea5608597de1c467f737Redmine versions 0.8.7 and below suffer from a UTF-7 cross site scripting vulnerability.
e139af5683fe92219972ab5fedb234cba8c6f72ec2f6cbaae95512e1d4328a1fSaurusCMS versions 4.6.4 and below suffer from remote file inclusion vulnerabilities.
6de2ca9e4e2f957a402612f23bc31ed18fadf9b0ab78024fb3f166b5797e1ac9PlayMeNow SEH malformed .m3u playlist local buffer overflow exploit that spawns calc.exe.
7923a62ab43c4aba791c414ea0e4a64d6d1a0c71408ea3e0604a3ad131fe9257PlayMeNow universal buffer overflow exploit that creates a malicious .m3u file that spawns calc.exe.
7ab108aab57806cde123b61cb9e9baf9fb59db62067fa5d51868f3aee455d9e7PlayMeNow buffer overflow exploit that creates a malicious .m3u file that will bind a shell to port 4444.
9fc9bbf91c4bd5f0e6d42b6a1efb9ac65a199dc4bc7756d0b4ef4fb00dbc6c1bThis is a proof of concept exploit demonstration the TLS renegotiation vulnerability.
3ac1a6ad17f25316b9b5329ec0d9405bf3828a1d0cad02adfdb4f3007dd21d9fPtag versions 4.0.0 and below suffer from multiple remote file inclusion vulnerabilities.
ab2966166dab54c81726f7a3a4db3089a41f481cde779c24a2822c0a50749911Proof of concept exploit that demonstrates a denial of service vulnerability in the 3Com OfficeConnect ADSL Wireless 11g Firewall Router when fed a malformed Content-Type.
d8b582f1a761f87d8e274ca6f4395fe06474e7e5981b31b77ae68e17cb4e89f9Proof of concept exploit that demonstrates a denial of service vulnerability in the 3Com OfficeConnect ADSL Wireless 11g Firewall Router when fed a malformed Authorization value.
2854eca2288e6310c6c9bf7460995d6f12d19fadd0231ff46babe0d5d2fdb536Secunia Security Advisory - Gentoo has issued an update for rails. This fixes multiple vulnerabilities and security issues, which can be exploited by malicious people to bypass certain security restrictions and to conduct cross-site scripting, cross-site request forgery, potentially script insertion, potentially session fixation, and SQL injection attacks.
825c1ec24f867b197ba21f53dfa6e0c85598e27a5517352481b7cd46ffea4c3dSecunia Security Advisory - A vulnerability has been reported in cPanel, which can be exploited by malicious people to conduct cross-site scripting attacks.
fe9893c4bc3628c0a212ad4dd7d1b76963168bf562fddf97ad7305b72fb35117Secunia Security Advisory - Nortel has acknowledged a vulnerability in Nortel CS1000, which can be exploited by malicious people to cause a DoS (Denial of Service).
0ba114335dd242eb9007308a1a409b4059b64133c5938d07d0b63d6707fb8948Secunia Security Advisory - Debian has issued an update for ganeti. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges or by malicious users to compromise a vulnerable system.
e1226fc96ba7469fe17d5eb6d93c1598127c9a78418c23f1115ec3cd25911269Secunia Security Advisory - Debian has issued an update for acpid. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges.
83725f6ea0e0be09e15ddf274659e1af49980c07e6be910e69f6b13c95e9065eSecunia Security Advisory - Some vulnerabilities have been reported in Joomla DigiStore Component, which can be exploited by malicious people to conduct SQL injection attacks.
1cae7170c9965fe78ea71376567917e185865b13d469a4d6e81a535261ffda2aSecunia Security Advisory - Some vulnerabilities have been reported in Ampache, which can be exploited by malicious people to bypass certain security restrictions.
6a7fefdb2d04b605d9f28c2f0dbb79efb817e8385b71a850ede4e54a35367326Secunia Security Advisory - Some vulnerabilities have been discovered in Ignition, which can be exploited by malicious people to disclose sensitive information.
dd0c616b0f2f78398cfd91491c925e1a0414eee4921c614925a46eb5dbedd65f
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed