what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 17 of 17 RSS Feed

Files Date: 2014-08-06

OpenSSL Toolkit 1.0.1i
Posted Aug 6, 2014
Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Nine security issues have been addressed.
tags | tool, encryption, protocol
systems | unix
advisories | CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509, CVE-2014-3510, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139
SHA-256 | 3c179f46ca77069a6a0bac70212a9b3b838b2f66129cb52d568837fc79d8fcc7
TomatoCart 1.x Cross Site Scripting / SQL Injection
Posted Aug 6, 2014
Authored by Kenny Mathis

TomatoCart version 1.x (latest-stable) suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
advisories | CVE-2014-3830, CVE-2014-3978
SHA-256 | cd380b42173cb9381f2c2e040433d1adfe568239973fe9274ff5f404846bf040
PhotoSync Wifi / Bluetooth 1.0 Local File Inclusion
Posted Aug 6, 2014
Authored by Benjamin Kunz Mejri, Vulnerability Laboratory | Site vulnerability-lab.com

PhotoSync Wifi and Bluetooth version 1.0 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | d3483e908f63901493046e31452b90ead46276bba888524dbc8ac0d24edd4ebb
PhotoSync 2.2 Command Injection
Posted Aug 6, 2014
Authored by LariX4, Vulnerability Laboratory | Site vulnerability-lab.com

PhotoSync version 2.2 suffers from a local command injection vulnerability.

tags | exploit, local
SHA-256 | 1f9a7e72bedb018b0a50c0402a7d59b8d07239faa389ceb778291411617a617b
HP Security Bulletin HPSBMU03085
Posted Aug 6, 2014
Authored by HP | Site hp.com

HP Security Bulletin HPSBMU03085 - A potential security vulnerability has been identified with HP Application Lifecycle Management, which is also known as HP Quality Center. The vulnerability could be exploited to allow elevation of privilege. Revision 1 of this advisory.

tags | advisory
advisories | CVE-2014-2631
SHA-256 | 81b6de768aab389d3d6fcebe5088edd8a448aa75a28431d6961575cd8d1ff417
Voipswitch 6 Local File Disclosure
Posted Aug 6, 2014
Authored by 0x4148

Voipswitch versions 6 and below suffer fro a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 99285209e2a9d1ba5bc478592fac9872c9517a0e41ce98337f1faa3cc15c2ca5
nullcon 666 Call For Papers
Posted Aug 6, 2014
Site nullcon.net

The Call For Papers for nullcon 666 has been announced. It will take place from February 4th through the 7th, 2015.

tags | paper, conference
SHA-256 | de63b4e0af1bca9742b263c81ebc0ffc35eb1ed36fa00b0977ec17917e6c1eb6
Smack XMPP Library Man-In-The-Middle
Posted Aug 6, 2014
Authored by Georg Lukas

Smack XMPP library for Java suffers for a man-in-the-middle vulnerability. Versions 4.0.0 and 4.0.1 are affected.

tags | advisory, java
advisories | CVE-2014-5075
SHA-256 | cc79aa40f99651e357445431f6e8d8c60ecbebbfc96fefd016f0aff6670bf205
Vembu Backup / Disaster Recovery 6.1 Follow Up
Posted Aug 6, 2014
Authored by Len Srinivasan

Vembu has responded to multiple vulnerabilities pointed out in their Vembu Backup and Disaster Recovery product.

tags | advisory, vulnerability
SHA-256 | aa02299f19ccadc4809437d2d9f45591ad6a1c7f678fbd6acc9a27643f6fd79a
Feng Office Cross Site Scripting
Posted Aug 6, 2014
Authored by Juan Sacco

Feng Office suffers from a stored cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 4e6b89c44f0660acebb6cfdb9c7ca89844fd211734ee9aab80f281dfab699943
Pro Chat Rooms 8.2.0 XSS / Shell Upload / SQL Injection
Posted Aug 6, 2014
Authored by Mike Manzotti

Pro Chat Rooms version 8.2.0 suffers from cross site scripting, remote shell upload, and remote SQL injection vulnerabilities.

tags | exploit, remote, shell, vulnerability, xss, sql injection
SHA-256 | 092328ae16ef177c9795a9de9d4cf99ab91fed8cc97811b81ea280b8e80364c7
OpenSSL Security Advisory 20140806
Posted Aug 6, 2014
Site openssl.org

OpenSSL Security Advisory 20140806 - A flaw in OBJ_obj2txt may cause pretty printing functions such as X509_name_oneline, X509_name_print_ex et al. to leak some information from the stack. Applications may be affected if they echo pretty printing output to the attacker. OpenSSL SSL/TLS clients and servers themselves are not affected. Other issues were also addressed.

tags | advisory
advisories | CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509, CVE-2014-3510, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139
SHA-256 | 2883e6b93580d6b479ec7deff02c94d30c4e29451dfc7278c3bc66db6f1c6795
Readsoft Invoice Processing / Process Director XSS / Design Issues
Posted Aug 6, 2014
Authored by Johannes Greil | Site sec-consult.com

Readsoft Invoice Processing version 5.6 and Process Director version 7.2 suffers from cross site scripting and design vulnerabilities.

tags | advisory, vulnerability, xss
SHA-256 | 58bf606761fd0cbf2446293ded7d4bf6daba9b1265483f987c814d44bf97c023
Hitron Technologies CDE-30364 Denial Of Service
Posted Aug 6, 2014
Authored by Matias Mingorance Svensson

Hitron Technologies CDE-30364 suffers from a remote reboot / denial of service vulnerability.

tags | exploit, remote, denial of service
SHA-256 | ad8836ddff9830d92e4a6dea9cebe2cef93c73d2629e0d38af158f10c8331d55
Crescendo - Sales CRM SQL Injection
Posted Aug 6, 2014
Authored by Monendra Sahu

Crescendo - Sales CRM suffers from a remote SQL injection vulnerability that allows for login bypass.

tags | exploit, remote, sql injection, bypass
advisories | CVE-2014-4984
SHA-256 | 6737a74ace9fe3643c31dcd9f35db6125a5aa6b8a923f9db45dd4c24e4854842
WordPress WPSS 0.62 SQL Injection
Posted Aug 6, 2014
Authored by Ashiyane Digital Security Team

WordPress WPSS plugin version 0.62 suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.

tags | exploit, remote, sql injection
SHA-256 | 1f4c75c4efbfbde58f520ccfb0a4fa721c4efa0f5d82dd24d0058aa8d15ba2d3
WordPress WPSS 0.62 Cross Site Scripting
Posted Aug 6, 2014
Authored by Ashiyane Digital Security Team

WordPress WPSS plugin version 0.62 suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.

tags | exploit, xss
SHA-256 | 573d18117c642a6f633f17a29834ae59e01c18f4fef919461a88f1e167dbd769
Page 1 of 1
Back1Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close