Files Date: 2020-12-22 to 2020-12-23 ≈ Packet Storm

Channel: Files Date: 2020-12-22 to 2020-12-23 ≈ Packet Storm

Sifter 11.2

December 22, 2020, 2:21 am

Sifter is a osint, recon, and vulnerability scanner. It combines a plethora of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote...

View Article

Victor CMS 1.0 Shell Upload

December 22, 2020, 8:43 am

Victor CMS version 1.0 suffers from an authenticated remote shell upload vulnerability. A shell upload vulnerability in this version was originally discovered in May of 2020 by Kishan Lal Choudhary.

View Article

Rocket.Chat Path Traversal

December 22, 2020, 8:56 am

Rocket.Chat suffers from a path traversal vulnerability.

View Article

Pandora FMS 7.0 NG 750 SQL Injection

December 22, 2020, 8:58 am

Pandora FMS version 7.0 NG 750 suffers from a remote authenticated SQL injection vulnerability.

View Article

Faculty Evaluation System 1.0 Cross Site Scripting

December 22, 2020, 9:00 am

Faculty Evaluation System version 1.0 suffers from a persistent cross site scripting vulnerability.

View Article

Red Hat Security Advisory 2020-5649-01

December 22, 2020, 9:00 am

Red Hat Security Advisory 2020-5649-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container...

View Article

Red Hat Security Advisory 2020-5661-01

December 22, 2020, 9:01 am

Red Hat Security Advisory 2020-5661-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include bypass and improper authorization vulnerabilities.

View Article

SUPREMO 4.1.3.2348 Privilege Escalation

December 22, 2020, 9:01 am

SUPREMO version 4.1.3.2348 suffers from a privilege escalation vulnerability.

View Article

Red Hat Security Advisory 2020-5654-01

December 22, 2020, 9:03 am

Red Hat Security Advisory 2020-5654-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

View Article

Artworks Gallery Management System 1.0 SQL Injection

December 22, 2020, 9:03 am

Artworks Gallery Management System version 1.0 suffers from a remote SQL injection vulnerability.

View Article

Red Hat Security Advisory 2020-5655-01

December 22, 2020, 9:05 am

Red Hat Security Advisory 2020-5655-01 - The MariaDB Native Client library is used to connect applications developed in C/C++ to MariaDB and MySQL databases.

View Article

Android Studio Privilege Escalation

December 22, 2020, 9:08 am

Android Studio has an issue where a malicious project can execute a custom cmd.exe allowing for privilege escalation. Google does not believe this is an issue.

View Article

Red Hat Security Advisory 2020-5663-01

December 22, 2020, 9:10 am

Red Hat Security Advisory 2020-5663-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

View Article

CSE Bookstore 1.0 SQL Injection

December 22, 2020, 9:12 am

CSE Bookstore version 1.0 suffers from multiple remote SQL injection vulnerabilities. Original discovery of SQL injection in this version is attributed to Alper Basaran in October of 2020.

View Article

Red Hat Security Advisory 2020-5660-01

December 22, 2020, 9:14 am

Red Hat Security Advisory 2020-5660-01 - The MariaDB Native Client library is used to connect applications developed in C/C++ to MariaDB and MySQL databases.

View Article

WordPress W3 Total Cache 0.9.3 File Read / Directory Traversal

December 22, 2020, 9:15 am

This Metasploit module exploits an unauthenticated directory traversal vulnerability in WordPress plugin W3 Total Cache version 0.9.2.6 through 0.9.3, allowing arbitrary file read with the web server...

View Article

Red Hat Security Advisory 2020-5665-01

December 22, 2020, 9:19 am

Red Hat Security Advisory 2020-5665-01 - MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.

View Article

Webmin 1.962 Remote Command Execution

December 22, 2020, 9:21 am

This Metasploit module exploits an arbitrary command execution vulnerability in Webmin 1.962 and lower versions. Any user authorized to the Package Updates module can execute arbitrary commands with...

View Article

Red Hat Security Advisory 2020-5662-01

December 22, 2020, 9:23 am

Red Hat Security Advisory 2020-5662-01 - The MariaDB Native Client library is used to connect applications developed in C/C++ to MariaDB and MySQL databases.

View Article