Files Date: 2013-10-02 to 2013-10-03 ≈ Packet Storm

Channel: Files Date: 2013-10-02 to 2013-10-03 ≈ Packet Storm

PinApp Mail-SeCure Access Control Failure

October 1, 2013, 5:17 pm

Core Security Technologies Advisory - A security vulnerability was discovered in PineApp Mail-SeCure Suite, allowing a non-privileged attacker to get a root shell by sending a specially crafted command...

View Article

Packet Storm New Exploits For September, 2013

October 1, 2013, 5:21 pm

This archive contains all of the 156 exploits added to Packet Storm in September, 2013.

View Article

CodeCrypt 1.4

October 1, 2013, 5:25 pm

codecrypt is a GnuPG-like program for encryption and signing that uses only quantum-computer-resistant algorithms.

View Article

XPATH Injection

October 1, 2013, 9:44 pm

This is a brief whitepaper that covers XPATH injection attacks and use cases.

View Article

WordPress Social Hashtag 2.0.0 Cross Site Scripting

October 2, 2013, 3:11 am

WordPress Social Hashtag plugin version 2.0.0 suffers from a cross site scripting vulnerability.

View Article

Digital Whisper Electronic Magazine #45

October 2, 2013, 3:11 am

Digital Whisper Electronic Magazine issue 45. Written in Hebrew.

View Article

WordPress Semper Fi Cross Site Scripting

October 2, 2013, 4:11 am

The Semper Fi Web Design WordPress plugin suffers from a cross site scripting vulnerability due to the use of stripcslashes().

View Article

Facebook Port Scanning / Open Redirect

October 2, 2013, 8:44 am

The Facebook debugger tool allows for arbitrary port scanning through Facebook's systems, based upon responses received for open ports versus closed ports. In addition to this, Facebook suffers from an...

View Article

ClipBucket Remote Code Execution

October 2, 2013, 3:03 pm

ClipBucket suffers from a remote code execution vulnerability that allows for a shell upload.

View Article

GLPI 0.84.1 Access Control / Code Injection

October 2, 2013, 3:06 pm

GLPI version 0.84.1 suffers from improper access control bypass and PHP code injection vulnerabilities.

View Article

Gnew 2013.1 PHP File Inclusion / SQL Injection

October 2, 2013, 3:07 pm

Gnew version 2013.1 suffers from file inclusion and remote SQL injection vulnerabilities.

View Article

Cisco Security Advisory 20131002-iosxr

October 2, 2013, 3:12 pm

Cisco Security Advisory - Cisco IOS XR Software version 4.3.1 contains a vulnerability that could result in complete packet memory exhaustion. Successful exploitation could render critical services on...

View Article

Drupal Quick Tabs 6.x / 7.x Access Bypass

October 2, 2013, 3:14 pm

Drupal Quick Tabs third party module versions 6.x and 7.x suffer from an access bypass vulnerability.

View Article

Red Hat Security Advisory 2013-1402-01

October 2, 2013, 3:15 pm

Red Hat Security Advisory 2013-1402-01 - Adobe Reader allows users to view and print documents in Portable Document Format. Adobe Reader 9 reached the end of its support cycle on June 26, 2013, and...

View Article

SIEMENS Solid Edge ST4 SEListCtrlX ActiveX Remote Code Execution

October 2, 2013, 3:20 pm

This Metasploit module exploits the SEListCtrlX ActiveX installed with the SIEMENS Solid Edge product. The vulnerability exists on several APIs provided by the control, where user supplied input is...

View Article

Latest Images