This Metasploit module exploits a file upload vulnerability in GetSimple CMS. By abusing the upload.php file, a malicious authenticated user can upload an arbitrary file, including PHP code, which results in arbitrary code execution.
93b94988b458fdd8ae88cd22f63db59e3b576b4062534971e43a8c37439ee4e2Gentoo Linux Security Advisory 201409-8 - A vulnerability in libxml2 allows a remote attacker to cause Denial of Service. Versions less than 2.9.1-r4 are affected.
3d3e51ebf497b1002f4ac43821208f034b3bdc6899d6ce505e3b73fa6133ac3cGentoo Linux Security Advisory 201409-7 - A vulnerability in c-icap could result in Denial of Service. Versions less than 0.2.6 are affected.
ed77256c73678e5e8baf81a4a62dd912b81fffb0a62ad82f6ab2495c58dce29fGentoo Linux Security Advisory 201409-6 - Multiple vulnerabilities have been found in Chromium, the worst of which can allow remote attackers to cause Denial of Service. Versions less than 37.0.2062.120 are affected.
7a00febc32f66fcbcc2d3cffa16aabc1020f295f6d522b1202075806eb79a924Gentoo Linux Security Advisory 201409-5 - Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. Versions less than 11.2.202.406 are affected.
1ae16e531671abd9b79fc1b52420836e030112667c453d18dac9a758332d24fdApple Security Advisory 2014-09-17-7 - Xcode 6.0.1 is now available and addresses a denial of service vulnerability.
8e1f1756e81af7fac9dd82869a3eaffd631cf609ecd86c1fa4f32b476b409e2aApple Security Advisory 2014-09-17-6 - OS X Server 2.2.3 is now available and addresses an arbitrary SQL query execution vulnerability.
a9934bf17a18ac0288c3bd42cf64254dacedd0f050986f96151544d2c3334fdbApple Security Advisory 2014-09-17-5 - OS X Server 3.2.1 is now available and addresses arbitrary SQL execution, arbitrary javascript execution, and multiple vulnerabilities in PostgreSQL.
4f18e285afca63d358c3d7a3ffde06de29538e44e6c7aa977c662f1620399b41Apple Security Advisory 2014-09-17-4 - Safari 6.2 and Safari 7.1 are now available and address credential interception, arbitrary code execution, and data browsing vulnerabilities.
3d4c5a7aeabb0cd7122f3435dcf75cb380a4c420e5751c6da6716873f10bda69Apple Security Advisory 2014-09-17-3 - OS X Mavericks 10.9.5 and Security Update 2014-004 are now available and address PHP code execution, Bluetooth API validation, PDF handling, and various other vulnerabilities.
4e7c77251432e1559177fbfc860df8439663744f27a763ac3194f1ebdf0e44e0Debian Linux Security Advisory 3025-2 - The previous update for apt, DSA-3025-1, introduced a regression when file:/// sources are used and those are on a different partition than the apt state directory. This update fixes the regression.
8fd2ed3dc5b5d872fd471c430738abcc166b7b0c4b92f54e0dd0a0ca9511b45dDebian Linux Security Advisory 3028-1 - Multiple security issues have been found in Icedove, Debian's version of errors and use-after-frees may lead to the execution of arbitrary code or denial of service.
be715906a513dd1355bf80edca40091d2abe1c5ce27129e6428620092760e987Debian Linux Security Advisory 3027-1 - Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library.
92a8f52817c2e6d4a636f0fbd26d2d3e2665627c9c8c52ae884e1b99a34a3e36M/Monit versions 3.2.2 and below suffer from multiple cross site request forgery vulnerabilities.
560d50f9addae35f05fedbf10890391928e6f7c978e7366d56a5768cce8b88baUFONet is a tool designed to launch DDoS attacks against a target, using open redirection vectors on third party web applications.
b49d72af62cb16becfceaa0f8632a8e672402586d698fbe797ed06a136e78cfd
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed