what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 21 of 21 RSS Feed

Files Date: 2024-09-16

VICIdial SQL Injection / Remote Code Execution
Posted Sep 16, 2024
Authored by Chocapikk | Site github.com

Proof of concept exploit that allows an attacker to retrieve administrative credentials through SQL injection and ultimately execute arbitrary code on the target server.

tags | exploit, arbitrary, sql injection, proof of concept
advisories | CVE-2024-8503, CVE-2024-8504
SHA-256 | e281d48432c2585fa05b2517fffc0171d56091981f896fb78703333f642a73a5
Rejetto HTTP File Server 2.3m Template Injection / Arbitrary Code Execution
Posted Sep 16, 2024
Authored by verylazytech | Site github.com

Proof of concept remote code execution exploit for Rejetto HTTP File Server (HFS) version 2.3m.

tags | exploit, remote, web, code execution, proof of concept
advisories | CVE-2024-23692
SHA-256 | 94abc34636ee9d2ee77ab7b6f4f07a3e5915b2c3ea027b41ba855261a1cd204a
Calibre 7.14.0 Remote Code Execution
Posted Sep 16, 2024
Authored by Uno13x | Site github.com

Proof of concept unauthenticated remote code execution exploit for Calibre versions 7.14.0 and below.

tags | exploit, remote, code execution, proof of concept
advisories | CVE-2024-6782
SHA-256 | 8c3200bd22a9201376c309b810720c70e5e01d5f4a8e6a5ec53a060dd8be9202
Veeam Backup And Replication 12.1.2.172 Remote Code Execution
Posted Sep 16, 2024
Authored by SinSinology, WatchTowr | Site github.com

Veeam Backup and Replication version 12.1.2.172 unauthenticated remote code execution exploit.

tags | exploit, remote, code execution
advisories | CVE-2024-40711
SHA-256 | 144b93e970dc795468638040e64be6507385196ebeb695305b8bfbc265bcf2ed
Unleashing Worms And Extracting Data
Posted Sep 16, 2024
Authored by Ben Nassi, Ron Bitton, Stav Cohen | Site arxiv.org

Whitepaper called Unleashing Worms and Extracting Data: Escalating the Outcome of Attacks against RAG-based Inference in Scale and Severity Using Jailbreaking. In this paper, the authors show that with the ability to jailbreak a GenAI model, attackers can escalate the outcome of attacks against RAG-based GenAI-powered applications in severity and scale.

tags | paper, worm
SHA-256 | 27bfeb9c59e588b146b6eb3f569fcfb1228d2be7bf7e469574b84bb54bb020c3
Debian Security Advisory 5769-1
Posted Sep 16, 2024
Authored by Debian | Site debian.org

Debian Linux Security Advisory 5769-1 - Multiple issues were found in Git, a fast, scalable, distributed revision control system, which may result in file overwrites outside the repository, arbitrary configuration injection or arbitrary code execution.

tags | advisory, arbitrary, code execution
systems | linux, debian
advisories | CVE-2023-25652, CVE-2023-25815, CVE-2023-29007, CVE-2024-32002, CVE-2024-32004, CVE-2024-32020, CVE-2024-32021, CVE-2024-32465
SHA-256 | 83536dc8a513bc91c3b3400ac06ab789245a973f960faf3d2457de55046bfbb7
Red Hat Security Advisory 2024-6667-03
Posted Sep 16, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-6667-03 - Red Hat OpenShift Dev Spaces 3.16 has been released.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-0341
SHA-256 | 9ce2855738bef19ae1ae356a495c760b8bfdd56e31bf0e03c7c90d3e729c572f
Ship Ferry Ticket Reservation System 1.0 SQL Injection
Posted Sep 16, 2024
Authored by nu11secur1ty

Ship Ferry Ticket Reservation System version 1.0 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | aefb5eeb623cfb1e4c92c60d84ce01babb17cb392dd12a995515335011e12235
Reservation Management System 1.0 Cross Site Request Forgery
Posted Sep 16, 2024
Authored by indoushka

Reservation Management System version 1.0 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 73bbdf5b6e54d04cadf49d3f40a3fe4f3376d78a867664173c89ced493a2283c
Red Hat Security Advisory 2024-6663-03
Posted Sep 16, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-6663-03 - An update for kpatch-patch-4_18_0-305_120_1 and kpatch-patch-4_18_0-305_138_1 is now available for Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.

tags | advisory, denial of service
systems | linux, redhat
advisories | CVE-2024-41090
SHA-256 | 1456354c945b81d6305800d05ea53128d21f935010521a7255622c7402f18970
Online Job Recruitment Portal Project 1.0 Arbitrary File Upload
Posted Sep 16, 2024
Authored by indoushka

Online Job Recruitment Portal Project version 1.0 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
SHA-256 | 0b11185c3ea1add14d0fab396e3abc79b89450ee26fe1d4c4eb27856f33193ea
Red Hat Security Advisory 2024-6662-03
Posted Sep 16, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-6662-03 - An update for python-setuptools is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

tags | advisory, python
systems | linux, redhat
advisories | CVE-2024-6345
SHA-256 | 5f83bf1f4e1cfd470fd81ba14113e56227cea4b74f7493cf3f3b08a762af42ee
IFSC Code Finder Portal 1.0 Insecure Settings
Posted Sep 16, 2024
Authored by indoushka

IFSC Code Finder Portal version 1.0 suffers from an ignored default credential vulnerability.

tags | exploit
SHA-256 | 4c8714f261d6bcdc7f5ee89b4f1473342ced816a03f174b9a8bc607a329616e0
Red Hat Security Advisory 2024-6661-03
Posted Sep 16, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-6661-03 - An update for python3-setuptools is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.

tags | advisory
systems | linux, redhat
advisories | CVE-2024-6345
SHA-256 | f0a9092cd682038a888626f1fc3240caae49814f55caa2939cfa5f7df9dae999
GYM Management System 1.0 Insecure Settings
Posted Sep 16, 2024
Authored by indoushka

GYM Management System version 1.0 suffers from an ignored default credential vulnerability.

tags | exploit
SHA-256 | 5ee11f413d4f6dbbb71c2d782424145f8284d96790518d7c0e3923c5bd409844
Red Hat Security Advisory 2024-6656-03
Posted Sep 16, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-6656-03 - Migration Toolkit for Runtimes 1.2.7 release Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include a cross site scripting vulnerability.

tags | advisory, xss
systems | linux, redhat
advisories | CVE-2022-36033
SHA-256 | 77dc311bde4bddc1413726250c2acc95f9b57a3943c422d928c0945afbb3527f
Emergency Ambulance Hiring Portal 1.0 SQL Injection
Posted Sep 16, 2024
Authored by indoushka

Emergency Ambulance Hiring Portal version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | 6cc9519a5a47d6de98282e14b498e5ca4044959e97c7129c7b172fc06c9d0eba
ManageEngine DeviceExpert 5.9.7 Build 5970 Hash Disclosure
Posted Sep 16, 2024
Authored by indoushka

ManageEngine DeviceExpert version 5.9.7 build 5970 allows for usernames and salted MD5 password hashes to be disclosed.

tags | exploit
SHA-256 | 3bc56d1f2ac0906c575dbe7a268613e4f69048d7229bf71a151c7a3005dab77d
COVID19 Testing Management System 1.0 Insecure Settings
Posted Sep 16, 2024
Authored by indoushka

COVID19 Testing Management System version 1.0 suffers from an ignored default credential vulnerability.

tags | exploit
SHA-256 | dfa6d3c1b41f7c8e3917b8e4d5def4360450f04e1bb6399bc37f9bced0bec05a
BP Monitoring Management System 1.0 SQL Injection
Posted Sep 16, 2024
Authored by indoushka

BP Monitoring Management System version 1.0 version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | aa30837cf16b6046be2fbcc93cf45d15d653bb896889d1c8eb504254cfc40ad4
Auto/Taxi Stand Management System 1.0 SQL Injection
Posted Sep 16, 2024
Authored by indoushka

Auto/Taxi Stand Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | 5bfb04fe73b1ba3334cfb80bd85d482d463f62029298535a09ed53c1a5e5c485
Page 1 of 1
Back1Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close