exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 23 of 23 RSS Feed

Files Date: 2021-12-03

OrbiTeam BSCW Server XSS / LFI / User Enumeration
Posted Dec 3, 2021
Authored by Armin Stock | Site sec-consult.com

OrbiTeam BSCW Server versions 5.0.x, 5.1.x, 5.2.4 and below, 7.3.x and below, and 7.4.3 and below suffer from path traversal, cross site scripting, HTTP header, session object manipulation, local file inclusion, and user enumeration vulnerabilities.

tags | exploit, web, local, vulnerability, xss, file inclusion
SHA-256 | 010e38c96f2418d6360c9dcbb77e24409850905a15f68e92a39487807a819dba
Red Hat Security Advisory 2021-4913-04
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4913-04 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2016-6893, CVE-2021-42097, CVE-2021-44227
SHA-256 | c0b2367bca6b9519cbf4eef54ab3a7cc8eece40d1140a7de1f14b7331fe671bd
Red Hat Security Advisory 2021-4827-06
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4827-06 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a bypass vulnerability.

tags | advisory, bypass
systems | linux, redhat
advisories | CVE-2021-21685, CVE-2021-21686, CVE-2021-21687, CVE-2021-21688, CVE-2021-21689, CVE-2021-21690, CVE-2021-21691, CVE-2021-21692, CVE-2021-21693, CVE-2021-21694, CVE-2021-21695, CVE-2021-21696, CVE-2021-21697, CVE-2021-21698
SHA-256 | b556183748ad2f43109872776d519186cfaaa31bf887b6bde42a67fdf1052a0f
Backdoor.Win32.WinShell.50 MVID-2021-0416 Hardcoded Password
Posted Dec 3, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.WinShell.50 malware suffers from a hard-coded password vulnerability.

tags | exploit
systems | windows
SHA-256 | ef9e9c606f58b1f8d1b12986e7997deed797a31aaf8d4ef1e635ba6a56995d08
WordPress All-In-One Video Gallery 2.4.9 Local File Inclusion
Posted Dec 3, 2021
Authored by Mohamed Magdy Abumusilm

WordPress All-In-One Video Gallery plugin versions 2.4.9 and below suffer from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | d56b622c5cdb0577129bc8f0f22407486cb0a913ccea8f94ea9c2c7839d09689
Ubuntu Overlayfs Local Privilege Escalation
Posted Dec 3, 2021
Authored by bwatters-r7, ssd-disclosure | Site metasploit.com

This Metasploit module exploits a vulnerability in Ubuntu's implementation of overlayfs. The vulnerability is the result of failing to verify the ability of a user to set the attributes in a running executable. Specifically, when Overlayfs sends the set attributes data to the underlying file system via vfs_setxattr, it fails to first verify the data by calling cap_convert_nscap. This vulnerability was patched by moving the call to cap_convert_nscap into the vfs_setxattr function that sets the attribute, forcing verification every time the vfs_setxattr is called rather than trusting the data was already verified.

tags | exploit
systems | linux, ubuntu
advisories | CVE-2021-3493
SHA-256 | db2db701a06e20ebab9c0759df9c3b43a3146ecf6b60cce3c13e3d0541420302
Red Hat Security Advisory 2021-4915-02
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4915-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2021-44227
SHA-256 | ae9ebdc6a6b3f3d493d2dcf2934db0f74cca8bd213ab14ece18aa1f758476438
WordPress Slider By Soliloquy 2.6.2 Cross Site Scripting
Posted Dec 3, 2021
Authored by Abdurrahman Erkan

WordPress Slider By Soliloquy plugin version 2.6.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | a6e8a1b148a01f35b66f3ed997e436335c2db30eb476d28d7c01ec847bcd314d
Backdoor.Win32.WinShell.50 MVID-2021-0415 Hardcoded Password
Posted Dec 3, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.WinShell.50 malware suffers from a hard-coded password vulnerability.

tags | exploit
systems | windows
SHA-256 | 206049766aef730f0b02673e3da8b31e6febcb93685ce3a611d032499372094b
Red Hat Security Advisory 2021-4919-03
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4919-03 - Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-43527
SHA-256 | 554c0c26251078d2735ca84a6c4ad976bca3ae57660b2223fb286b3afc579b26
WordPress DZS Zoomsounds 6.45 Arbitrary File Read
Posted Dec 3, 2021
Authored by Uriel Yochpaz

WordPress DZS Zoomsounds plugin version 6.45 suffers from an unauthenticated arbitrary file read vulnerability.

tags | exploit, arbitrary
advisories | CVE-2021-39316
SHA-256 | f036164c36ce4ac2ea0ffa900fd6d639672f6056b1a299c46bbca574da4081b8
Online Magazine Management System 1.0 SQL Injection
Posted Dec 3, 2021
Authored by Mohamed Habib Smidi

Online Magazine Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | 2d63a21552896a8c911f7d87d90ee648a8fb74a7a51fa50678b3eaefa3982e0d
Red Hat Security Advisory 2021-4910-03
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4910-03 - OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains OpenShift Virtualization 4.8.3 RPMs.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-29923
SHA-256 | 407aa3440f785d4102a619c11854ed17818472f50c38d3d98dffdd74b34d9a94
Backdoor.Win32.Bionet.10 MVID-2021-0414 Authentication Bypass / Code Execution
Posted Dec 3, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Bionet.10 malware suffers from bypass and code execution vulnerabilities.

tags | exploit, vulnerability, code execution
systems | windows
SHA-256 | 43241e1d136b0442d80206168f452e3a162c31f74ef36e03598e9cbfdc6b1755
Backdoor.Win32.Vernet.axt MVID-2021-0413 Insecure Permissions
Posted Dec 3, 2021
Authored by malvuln | Site malvuln.com

Backdoor.Win32.Vernet.axt malware suffers from an insecure permissions vulnerability.

tags | exploit
systems | windows
SHA-256 | 999d275a7d62a955295dc2d227ba2e5020fc3c66b3f92c960a9457494396d749
Red Hat Security Advisory 2021-4916-01
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4916-01 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.

tags | advisory, vulnerability, csrf
systems | linux, redhat
advisories | CVE-2021-44227
SHA-256 | 9300feba4300b0658f042c5c469b8856a41deeb1e5b2cc3499bf1d666f38237e
Red Hat Security Advisory 2021-4799-05
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4799-05 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.6.51. Issues addressed include a bypass vulnerability.

tags | advisory, bypass
systems | linux, redhat
advisories | CVE-2021-21685, CVE-2021-21686, CVE-2021-21687, CVE-2021-21688, CVE-2021-21689, CVE-2021-21690, CVE-2021-21691, CVE-2021-21692, CVE-2021-21693, CVE-2021-21694, CVE-2021-21695, CVE-2021-21696, CVE-2021-21697, CVE-2021-21698
SHA-256 | 9cf5ee59047d85a523da7c56ae10aff70f12b50b632551d99c1b0ff954dd1673
M-Files Web Denial Of Service
Posted Dec 3, 2021
Authored by Murat Aydemir

M-Files Web versions prior to 20.10.9524.1 and M-Files Web versions prior to 20.10.9445.0 contain an improper range header processing vulnerability. A remote unauthenticated attacker may send crafted requests with overlapping ranges (via HTTP requests with a specially-crafted Range or Request-Range headers) to cause the web application to compress each of the requested bytes, resulting in a crash due to excessive memory and CPU consumption and preventing users from accessing the system.

tags | exploit, remote, web, denial of service
advisories | CVE-2021-37253
SHA-256 | 156f6be8e8269992c6311ee1cad599e1338e7f7bf24b2810bb20c39727986b7c
Online Pre-Owned / Used Car Showroom Management System 1.0 SQL Injection
Posted Dec 3, 2021
Authored by Mohamed Habib Smidi

Online Pre-Owned / Used Car Showroom Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, sql injection
SHA-256 | 8b1f7a445c72e74fb0fdbbc5d478d8dfebdf35379de0009bd2c22ae49c57edf8
Trojan.Win32.Mucc.ivk MVID-2021-0412 Unquoted Service Path
Posted Dec 3, 2021
Authored by malvuln | Site malvuln.com

Trojan.Win32.Mucc.ivk malware suffers from an unquoted service path vulnerability.

tags | exploit, trojan
systems | windows
SHA-256 | 6aeff1461904ffcb843da2727bbc7484535a976547ef7c746da6695da94c34cb
DuckDuckGo 7.64.4 Address Bar Spoofing
Posted Dec 3, 2021
Authored by Rafay Baloch, Muhammad Samak

DuckDuckGo version 7.64.4 suffers from an address bar spoofing vulnerability.

tags | exploit, spoof
SHA-256 | efdcb758ade79facf3f10510cb498316be314f1e2b14b262a9abfbe486f35f4c
Red Hat Security Advisory 2021-4914-06
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4914-06 - OpenShift Virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains the following OpenShift Virtualization 4.8.3 images: RHEL-8-CNV-4.8.

tags | advisory
systems | linux, redhat
advisories | CVE-2018-20673, CVE-2019-13750, CVE-2019-13751, CVE-2019-17594, CVE-2019-17595, CVE-2019-18218, CVE-2019-19603, CVE-2019-20838, CVE-2019-5827, CVE-2020-12762, CVE-2020-13435, CVE-2020-14155, CVE-2020-16135, CVE-2020-24370, CVE-2020-25648, CVE-2020-36385, CVE-2021-0512, CVE-2021-20231, CVE-2021-20232, CVE-2021-20266, CVE-2021-20317, CVE-2021-22876, CVE-2021-22898, CVE-2021-22925, CVE-2021-22946, CVE-2021-22947
SHA-256 | fd59966d097a080a7ded93322ccdd6a60d15159920ee6f8c093487695abfb467
Red Hat Security Advisory 2021-4918-03
Posted Dec 3, 2021
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4918-03 - A minor version update is now available for Red Hat Camel K that includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution, denial of service, deserialization, information leakage, privilege escalation, and server-side request forgery vulnerabilities.

tags | advisory, denial of service, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2020-13936, CVE-2020-14326, CVE-2020-28491, CVE-2021-20328, CVE-2021-21341, CVE-2021-21342, CVE-2021-21343, CVE-2021-21344, CVE-2021-21345, CVE-2021-21346, CVE-2021-21347, CVE-2021-21348, CVE-2021-21350, CVE-2021-21351, CVE-2021-22118, CVE-2021-27568, CVE-2021-29505, CVE-2021-31812, CVE-2021-39139, CVE-2021-39140, CVE-2021-39141, CVE-2021-39144, CVE-2021-39145, CVE-2021-39146, CVE-2021-39147, CVE-2021-39148
SHA-256 | d5c90a3e7232924ae6e8b38f5e9ef8c694af77ff921bcdb7b07c49f3c69e7068
Page 1 of 1
Back1Next

File Archive:

December 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Dec 1st
    0 Files
  • 2
    Dec 2nd
    41 Files
  • 3
    Dec 3rd
    25 Files
  • 4
    Dec 4th
    0 Files
  • 5
    Dec 5th
    0 Files
  • 6
    Dec 6th
    0 Files
  • 7
    Dec 7th
    0 Files
  • 8
    Dec 8th
    0 Files
  • 9
    Dec 9th
    0 Files
  • 10
    Dec 10th
    0 Files
  • 11
    Dec 11th
    0 Files
  • 12
    Dec 12th
    0 Files
  • 13
    Dec 13th
    0 Files
  • 14
    Dec 14th
    0 Files
  • 15
    Dec 15th
    0 Files
  • 16
    Dec 16th
    0 Files
  • 17
    Dec 17th
    0 Files
  • 18
    Dec 18th
    0 Files
  • 19
    Dec 19th
    0 Files
  • 20
    Dec 20th
    0 Files
  • 21
    Dec 21st
    0 Files
  • 22
    Dec 22nd
    0 Files
  • 23
    Dec 23rd
    0 Files
  • 24
    Dec 24th
    0 Files
  • 25
    Dec 25th
    0 Files
  • 26
    Dec 26th
    0 Files
  • 27
    Dec 27th
    0 Files
  • 28
    Dec 28th
    0 Files
  • 29
    Dec 29th
    0 Files
  • 30
    Dec 30th
    0 Files
  • 31
    Dec 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close