exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 26 RSS Feed

Files Date: 2024-09-26

ABB Cylon Aspect 3.07.01 Hard-Coded Credentials
Posted Sep 26, 2024
Authored by LiquidWorm | Site zeroscience.mk

ABB Cylon Aspect version 3.07.01 BMS/BAS controller is operating with default and hard-coded credentials contained in install package while exposed to the Internet.

tags | exploit
advisories | CVE-2024-4007
SHA-256 | 77c571a0aaea9e72f54148bf830ecd55a32afc329d2af950110f41d58c705470
TI Bluetooth Denial Of Service
Posted Sep 26, 2024
Authored by crypt0d1v3r | Site github.com

Proof of concept toolkit to demonstrate the issue noted in CVE-2023-52709 related to the TI bluetooth stack. When running Defensics test case #SMP legacy 1001 with loop mode on DUT configured as resolvable private address, after a while, the device will end up generating unresolvable random private address causing denial of service for already bonded peer devices.

tags | exploit, denial of service, proof of concept
advisories | CVE-2023-52709
SHA-256 | 02f2601eddbe9fb045062d2c686c897f6039df04b9482db6478440625d4786ae
pgAdmin 8.11 Information Disclosure
Posted Sep 26, 2024
Authored by EQSTLab | Site github.com

pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. This vulnerability allows an attacker to potentially obtain the client ID and secret, leading to unauthorized access to user data.

tags | exploit
advisories | CVE-2024-9014
SHA-256 | 518f56e4049ab1c116b1d55d1a7662e998277cad57c401bcecbaa7035abe00a8
Ubuntu Security Notice USN-7039-1
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7039-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, kernel
systems | linux, ubuntu
advisories | CVE-2021-47181, CVE-2022-48791, CVE-2022-48838, CVE-2022-48850, CVE-2022-48851, CVE-2022-48863, CVE-2023-52809, CVE-2024-26677, CVE-2024-26733, CVE-2024-27437, CVE-2024-38570, CVE-2024-42154, CVE-2024-42228
SHA-256 | dfba7d8e80b84fb47dc725d81c166af93f650cff7e694ffb3bd882ed52b39a79
Ubuntu Security Notice USN-7021-3
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7021-3 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, kernel
systems | linux, ubuntu
advisories | CVE-2024-26677, CVE-2024-39496, CVE-2024-41009, CVE-2024-42160
SHA-256 | 69d8a00cc33c644b5218146c25ae3a8c80c5889b997d63ea9e1c79f9b9d8e330
Red Hat Security Advisory 2024-7164-03
Posted Sep 26, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-7164-03 - The Migration Toolkit for Containers 1.8.4 is now available. Issues addressed include denial of service and password leak vulnerabilities.

tags | advisory, denial of service, vulnerability
systems | linux, redhat
advisories | CVE-2019-25211
SHA-256 | 56117850ad0b40f88dcb4c4e8b7bdc4c764cc266319213e239ff00415b5c66ba
Ubuntu Security Notice USN-7020-3
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7020-3 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, kernel
systems | linux, ubuntu
advisories | CVE-2024-41009, CVE-2024-42154, CVE-2024-42224, CVE-2024-42228
SHA-256 | f5bcc60a1714fa022b4b4445bed98eea0eebfc6ffb87470f6e025f80790de5ab
Red Hat Security Advisory 2024-7137-03
Posted Sep 26, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-7137-03 - An update for the python39:3.9 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service.

tags | advisory
systems | linux, redhat
advisories | CVE-2024-6923
SHA-256 | 967a3ed056c5012abfcd656c27b6a8eb9ccc60b4eb4e75f48620300490866f8c
Ubuntu Security Notice USN-7034-2
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7034-2 - USN-7034-1 updated ca-certificates. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.64 version of the Mozilla certificate authority bundle.

tags | advisory
systems | linux, ubuntu
SHA-256 | 697a9ba977b6fa8a3a1b2fd17bfb44bf55fd6b4c1b7d95ad6392f9ffbed0e2ff
Ubuntu Security Notice USN-7003-4
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7003-4 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2023-52803, CVE-2023-52887, CVE-2024-36974, CVE-2024-36978, CVE-2024-37078, CVE-2024-38619, CVE-2024-39469, CVE-2024-39487, CVE-2024-39499, CVE-2024-39502, CVE-2024-39505, CVE-2024-39506, CVE-2024-39509, CVE-2024-40902
SHA-256 | c85181693b4ae184acd8611269c3c7857764f26f86f84d4df3a4650c59c7d69d
Red Hat Security Advisory 2024-7136-03
Posted Sep 26, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-7136-03 - An update for git-lfs is now available for Red Hat Enterprise Linux 9.

tags | advisory
systems | linux, redhat
advisories | CVE-2024-34156
SHA-256 | 1e87795908b926fe7cc12d8b38c3638accb922a2efd8aabbe07ae30b24025d1a
Ubuntu Security Notice USN-7037-1
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7037-1 - It was discovered that OpenJPEG could enter a large loop and continuously print warning messages when given specially crafted input. An attacker could potentially use this issue to cause a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2023-39327
SHA-256 | 81b6eb730c0ee7967ac3037f5a6565c45a7035ff9d03a4513c0353b44a6b4a72
Red Hat Security Advisory 2024-7135-03
Posted Sep 26, 2024
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2024-7135-03 - An update for git-lfs is now available for Red Hat Enterprise Linux 8.

tags | advisory
systems | linux, redhat
advisories | CVE-2024-34156
SHA-256 | ac8ff5db3b68e1e549078a7f63ce692fda73d9577ac2a05cec5e7e0f8683243e
Ubuntu Security Notice USN-7038-1
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7038-1 - Thomas Stangner discovered a permission vulnerability in the Apache Portable Runtime library. A local attacker could possibly use this issue to read named shared memory segments, potentially exposing sensitive application data.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2023-49582
SHA-256 | 4bc9ae4d066ade2386768445712f54f05bbaee490eb4829d2fe9fdbeacc1200d
Ubuntu Security Notice USN-7036-1
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7036-1 - It was discovered that Rack was not properly parsing data when processing multipart POST requests. If a user or automated system were tricked into sending a specially crafted multipart POST request to an application using Rack, a remote attacker could possibly use this issue to cause a denial of service. It was discovered that Rack was not properly escaping untrusted data when performing logging operations, which could cause shell escaped sequences to be written to a terminal. If a user or automated system were tricked into sending a specially crafted request to an application using Rack, a remote attacker could possibly use this issue to execute arbitrary code in the machine running the application.

tags | advisory, remote, denial of service, arbitrary, shell
systems | linux, ubuntu
advisories | CVE-2022-30122, CVE-2022-30123, CVE-2022-44572, CVE-2023-27530, CVE-2023-27539, CVE-2024-25126, CVE-2024-26141, CVE-2024-26146
SHA-256 | c4acd1ffc8ca871047fb8a39618d9c0b95465770474d22abee717b0b2de788ad
Ubuntu Security Notice USN-7035-1
Posted Sep 26, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7035-1 - It was discovered that the AppArmor policy compiler incorrectly generated looser restrictions than expected for rules allowing mount operations. A local attacker could possibly use this to bypass AppArmor restrictions in applications where some mount operations were permitted.

tags | advisory, local
systems | linux, ubuntu
advisories | CVE-2016-1585
SHA-256 | 18e6675296e9bfadfac2c11a124d64d6e37cdc0a0120690b5b56b0de4b34dee9
SchoolPlus 1.0 SQL Injection
Posted Sep 26, 2024
Authored by indoushka

SchoolPlus version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | d2074cc8545a505ce1af1c27f59e640d90c6c616fbd247a73c1d9f5cea3d3385
School Log Management System 1.0 Code Injection
Posted Sep 26, 2024
Authored by indoushka

School Log Management System version 1.0 suffers from a PHP code injection vulnerability.

tags | exploit, php
SHA-256 | a34789327de460887266c735bef8f74228929d32d54ba320baa0cf19e9f7e3af
School Dormitory Management System 1.0 Insecure Settings
Posted Sep 26, 2024
Authored by indoushka

School Dormitory Management System version 1.0 suffers from an ignored default credential vulnerability.

tags | exploit
SHA-256 | 861e610b1a8c0b1120c4149e66a75572e6d4838142e38d7e89abb78b2b88e983
Sample Blog Site 1.0 SQL Injection
Posted Sep 26, 2024
Authored by indoushka

Sample Blog Site version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | 61eda3f220bcfb474e61a383d157f7559eaabd352c4d5b1a930e8077c163d977
Rupee Invoice System 1.0 Arbitrary File Upload
Posted Sep 26, 2024
Authored by indoushka

Rupee Invoice System version 1.0 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload
SHA-256 | 6fb3380fdbd9dc68d4cb8441ac475f25ac1ecd1029d07f228a330be33ec7258c
Restaurant POS 1.0 SQL Injection
Posted Sep 26, 2024
Authored by indoushka

Restaurant POS version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 1efe1a827da05e9054d6424d0c6cbeffd061cb7a7b523985c9f815859c5ded7a
Responsive Binary mlm 3.2.0 SQL Injection
Posted Sep 26, 2024
Authored by indoushka

Responsive Binary mlm version 3.2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | 7832158bdfb6f25736475de94f715b561965469ceb63c7f42c224430b50843df
Responsive Billing sw System 3.2.0 SQL Injection
Posted Sep 26, 2024
Authored by indoushka

Responsive Billing sw System version 3.2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection, bypass
SHA-256 | a0219dae7fd1734f734512e67150e374366e1b2cf6be0d9351c5231f163d3f5a
PHP SPM 1.0 WYSIWYG Code Injection
Posted Sep 26, 2024
Authored by indoushka

PHP SPM version 1.0 suffers from a WYSIWYG code injection vulnerability.

tags | exploit, php
SHA-256 | 536b68dcbe9d4246c7b010d149de6d84d7dd1692847cf3ff869f37c679492ff7
Page 1 of 2
Back12Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close