Proof of concept denial of service exploit for the SIGRed vulnerability in Microsoft Windows DNS.
eba3ff09c3866930772b422c95d78138af6485996de36f20c82bb8f455eee6d1Red Hat Security Advisory 2020-3005-01 - PostgreSQL is an advanced object-relational database management system. The Debezium PostgreSQL connector includes JDBC driver to access a PostgreSQL database. An XML injection vulnerability has been addressed.
07d75df769130e1c91fbac5d2d948cec524ce1fde6f2bb9701ec521e62fd1509Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Interaction is provided by the Python interpreter, so Python programming structures can be used (such as variables, loops, and functions). Report modules are possible and easy to make. It is intended to do the same things as ttlscan, nmap, hping, queso, p0f, xprobe, arping, arp-sk, arpspoof, firewalk, irpas, tethereal, tcpdump, etc.
21887655f8e97f4b058e37b0c2ce623a08aa0fd1ca5c8abe65252cc5a863dbecThere is a stack buffer overflow in usrsctp when a server processes a skipped auth block from an incoming connection. Proof of concept exploit included.
b4818f86982c067d7cd9afcbfcee314e412f968d7d9b859927f8e3573839fad7UBICOD Medivision Digital Signage version 1.5.1 suffers from a privilege escalation vulnerability that is leveraged via authorization bypass.
820973cd5df7aee7a1944b411ccbcd4717d08d064d0a7059f38dee109c049bffDirectory Management System (DMS) version 1.0 suffers from multiple remote SQL Injection vulnerabilities, one of which allows for authentication bypass.
1c5ccd3cb8bc1a801eb6a51f1efb9f50e49a281cdb08471b3a9eda42e98b2036UBICOD Medivision Digital Signage version 1.5.1 suffers from a cross site request forgery vulnerability.
4b659a7fa13414cd1c5e605bb21c868b5d2ed4873a355f3358c9571f46f3a740Company Visitor Management System (CVMS) version 1.0 suffers from multiple remote SQL Injection vulnerabilities, one of which allows for authentication bypass.
40c7c92747f4911cd1f65395de7de09a14dec6aea93349ac51786c5f8e2b32f9nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.
b1cb0cc1fc01905d26063656a3e821c30b68ec59b356143669010fe4e3cb7005Employee Record Management System version 1.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
962990ac9bc9df18b642f02ca46f9c8319e48dba7c815aecc5f7bc5286c812adRed Hat Security Advisory 2020-3003-01 - Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a Ceph management platform, deployment utilities, and support services. Issues addressed include a cross site scripting vulnerability.
ea9d411a7fd3f0ec0d3a02a0e815cfaa2682c6b3cea190e9bb6d1e32d72ce8a5Plexus anblick Digital Signage Management version 3.1.13 suffers from an open redirection vulnerability.
bf562e917daa9ca1fb1729d7d32370f054248530dd6bb75e11172adada8c0c4aDaily Expense Tracker version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
a8820b879eb5058af1f28c05ddb9bd171d9d15586cb038a6a5bdefbf4fdae5a8LibreHealth version 2.0.0 authentication remote code execution exploit that leverages file upload.
72dc0f0110132301f3990ed51cc51e800ab71dfb943e71ad251f75ff30848051
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed