exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 19 of 19 RSS Feed

Files Date: 2020-07-14

I Got My Eye On You - Security Vulnerabilities In D-Link's Baby Monitor
Posted Jul 14, 2020
Authored by Naor Kalbo

Whitepaper called I Got My Eye On You - Security Vulnerabilities In D-Link's Baby Monitor.

tags | paper, vulnerability
SHA-256 | 2c2970a1fc89c799e0699134614fd02b348d4262f0e120d66d7f16e295a0c9f9
Ubuntu Security Notice USN-4422-1
Posted Jul 14, 2020
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4422-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2020-13753, CVE-2020-9806
SHA-256 | 7dcd993fd50205837696e35bde7c81e5db307327f344ba35a08787e7cf80312b
Red Hat Security Advisory 2020-2906-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2906-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Issues addressed include information leakage and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421
SHA-256 | ecc8103f2dfcc12785881ad593cefc17fb7a731e11e7a97ea8a8337d158917fe
Trend Micro Web Security Remote Code Execution
Posted Jul 14, 2020
Authored by Mehmet Ince | Site metasploit.com

This Metasploit module exploits multiple vulnerabilities together in order to achieve remote code execution in Trend Micro Web Security versions prior to 6.5 SP2 Patch 4 (Build 1901).

tags | exploit, remote, web, vulnerability, code execution
advisories | CVE-2020-8604, CVE-2020-8605, CVE-2020-8606
SHA-256 | 9664c9cbae3eb80a568d35406cf2acc152b6130f2cb92627857e239b45ba2249
Apartment Visitors Management System Project 1.0 SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Apartment Visitors Management System Project version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | 1ce810af8f7172c7c37fd05e29671178a45c119726a6307bc1f3d207774c06d4
Red Hat Security Advisory 2020-2907-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2907-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.10.0. Issues addressed include information leakage and use-after-free vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2020-12417, CVE-2020-12418, CVE-2020-12419, CVE-2020-12420, CVE-2020-12421
SHA-256 | a9e027161869f1986b9b6068aacd456cf1e54e2b2daa71f55c38e118eadb8e92
BSA Radar 1.6.7234.24750 Local File Inclusion
Posted Jul 14, 2020
Authored by William Summerhill

BSA Radar version 1.6.7234.24750 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2020-14946
SHA-256 | a5e4591cdb29ce3091eb250f24b6a6f3970ce7a137c3d39d49b038763d282fa3
Red Hat Security Advisory 2020-2902-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2902-01 - Scanner Access Now Easy is a universal scanner interface. The SANE application programming interface provides standardized access to any raster image scanner hardware. Issues addressed include a buffer overflow vulnerability.

tags | advisory, overflow
systems | linux, redhat
advisories | CVE-2020-12861, CVE-2020-12865
SHA-256 | fddb3b42a10f7304b4af56b4634432e24241823c6315846fd38143a6555f7dd0
Cyber Cafe Management System SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Cyber Cafe Management System from phpgurukul.com suffers from multiple remote SQL injection vulnerabilities. One allows for authentication bypass.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | e5ac28857c7d844bbcdc7aa8916414c95f91750ab85c3717d81de642b9a3cf18
Teachers Record Management System 1.0 SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Teachers Record Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 5dd8f20ad5e6344f4277209100603d6b898b39c5356e93c1737c54112d7a9311
Client Management System 1.0 SQL Injection
Posted Jul 14, 2020
Authored by gh1mau

Client Management System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 2ff070df59ef7dc08ba4cf8b4ad5cbddc12cee40199cf99715b02b43e3908a14
Red Hat Security Advisory 2020-2878-01
Posted Jul 14, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-2878-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

tags | advisory
systems | linux, redhat
advisories | CVE-2020-9283
SHA-256 | c769f46a3124b583bc8dadf43224c6e7e847781de370b027535ddf166888aec4
Checker CVE-2020-5902
Posted Jul 14, 2020
Authored by MrCl0wn Lab | Site github.com

BIG-IP versions 15.0.0 through 15.1.0.3, 14.1.0 through 14.1.2.5, 13.1.0 through 13.1.3.3, 12.1.0 through 12.1.5.1, and 11.6.1 through 11.6.5.1 suffer from Traffic Management User Interface (TMUI) arbitrary file read and command execution vulnerabilities. Checker CVE-2020-5902 is a scanning tool to look for vulnerable instances.

tags | exploit, arbitrary, vulnerability
advisories | CVE-2020-5902
SHA-256 | 4455c097b1284508ebec37b188b4d83ade674a489a919e13a32be4d51586405e
Verint Impact 360 15.1 Cross Site Request Forgery
Posted Jul 14, 2020
Authored by Ryan Delaney

Verint Impact 360 version 15.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
advisories | CVE-2019-12784
SHA-256 | 8c1ec5a43ee4412962b923d2c0abe80de645b915f6144f18aa147efd40de3464
Verint Impact 360 15.1 Open Redirect
Posted Jul 14, 2020
Authored by Ryan Delaney

Verint Impact 360 version 15.1 suffers from an open redirection vulnerability.

tags | exploit
advisories | CVE-2019-12783
SHA-256 | f865cfc6fcac1fa347c28f60b5047a71f7ccd1d751dcc60cb93b1f3ddbca5721
Verint Impact 360 15.1 Script Insertion / HTML Injection
Posted Jul 14, 2020
Authored by Ryan Delaney

Verint Impact 360 version 15.1 has an issue where the helpURL parameter in wfo/help/help_popup.jsp can be changed to embed arbitrary content inside of an iFrame. Attackers may use this in conjunction with social engineering to embed malicious scripts or phishing pages on a site where this product is installed, given the attacker can convince a victim to visit a crafted link.

tags | exploit, arbitrary, xss
advisories | CVE-2019-12773
SHA-256 | 037db083b292ddba6c882f5cb6d036f5ab65f22b3161e14d9ede682bd0105457
V-SOL OLTs Backdoor / Privilege Escalation
Posted Jul 14, 2020
Authored by Pierre Kim

Various V-SOL OLTs suffer from multiple backdoor issues, hardcoded RSA keys, potential command injection, and insecure management vulnerabilities.

tags | exploit, vulnerability
SHA-256 | 20f5c0e255904786d117f0970a2860bba9487e20530393ccb85c7c54cba91c1e
Google Android Silent App Installation
Posted Jul 14, 2020
Authored by Enrico Weigelt

Google's PlayServices has a built-in backdoor which allows Google Inc, or anybody who has access to some device owner's Google account to remotely silently deploy any apps (at least those listed in the AppStore).

tags | advisory
SHA-256 | e33e4b676a65b515729c81271908d18c840aadc2370f8a5643c5cdf980ce1785
APK Testing Report
Posted Jul 14, 2020
Authored by Rahul Jangra

This is a whitepaper called APK Testing Report. It goes through various tooling used to analyze devices.

tags | paper
SHA-256 | e7e292f4deaf2d179fba420362d70e5c6cc318e28dffe69d1e55a44b7ce8fe88
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close