what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 8 of 8 RSS Feed

Files Date: 2023-05-08

FICO Origination Manager Decision Module 4.8.1 XSS / Session Hijacking
Posted May 8, 2023
Authored by Matei Josephs

Multiple persistent cross site scripting vulnerabilities in FICO Origination Manager Decision Module version 4.8.1 allow an attacker to execute code in the context of the victim's browser using a crafted payload. Additionally, an attacker with initial access to the application, can get the JSESSIONID cookie of another user and take over their session. These two findings can be chained together.

tags | exploit, vulnerability, xss
advisories | CVE-2023-30056, CVE-2023-30057
SHA-256 | 27679f4bfde5c9377efad490bf7207a9b6f587632600f7b21edcff5a9651ed7f
Download | Favorite | View
Ubuntu Security Notice USN-6061-1
Posted May 8, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6061-1 - Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2022-0108, CVE-2023-27954
SHA-256 | 01e21a6c8ac7ce003c7d1c71410cfa2fca7b99f9ae9f3d56cd4b2c5d58805114
Download | Favorite | View
Ubuntu Security Notice USN-6060-1
Posted May 8, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6060-1 - Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.33 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 22.10, and Ubuntu 23.04. Ubuntu 18.04 LTS has been updated to MySQL 5.7.42. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2023-21911, CVE-2023-21929, CVE-2023-21945, CVE-2023-21955, CVE-2023-21976
SHA-256 | d691b94ba5bd70d0a19d51f22c4bd89c7f9898899695a61f5687575f2a573d77
Download | Favorite | View
BlogMagz CMS 1.0 Cross Site Scripting
Posted May 8, 2023
Authored by CraCkEr

BlogMagz CMS version 1.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 0355faad29dabcfaca08d5e96eb896c4b21974b2562d83ef8db03cdd0b234dd6
Download | Favorite | View
Ubuntu Security Notice USN-6059-1
Posted May 8, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6059-1 - It was discovered that Erlang did not properly implement TLS client certificate validation during the TLS handshake. A remote attacker could use this issue to bypass client authentication.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2022-37026
SHA-256 | 3de9f1297a58c7de6b74c155d262382e9b1973264131f5e55475d5dd73526c90
Download | Favorite | View
Found Information System 1.0 SQL Injection
Posted May 8, 2023
Authored by nu11secur1ty

Found Information System version 1.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 9724732a654c4f2a42eafffec1fcd360cbfbd5be6629bb93ad92d91c5a47e054
Download | Favorite | View
Ubuntu Security Notice USN-6055-2
Posted May 8, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6055-2 - USN-6055-1 fixed a vulnerability in Ruby. Unfortunately it introduced a regression. This update reverts the patches applied to CVE-2023-28755 in order to fix the regression pending further investigation. It was discovered that Ruby incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause a denial of service.

tags | advisory, denial of service, ruby
systems | linux, ubuntu
advisories | CVE-2023-28755
SHA-256 | ada5c9e435b07122b3ea37aaeeff4ec44d8a5abb8e17dfa44d63ad098d9107d3
Download | Favorite | View
Rollout::UI 0.5 Cross Site Scripting
Posted May 8, 2023
Authored by Eduardo Jose de Borba

Rollout::UI version 0.5 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2023-25309
SHA-256 | d4b3ba42fa15bc6404ff5c65af7d574cbc6f0ffcb13a286a210ae4c1a7c8495f
Download | Favorite | View
Page 1 of 1
Back1Next

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    53 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    0 Files
  • 14
    May 14th
    0 Files
  • 15
    May 15th
    0 Files
  • 16
    May 16th
    0 Files
  • 17
    May 17th
    0 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    0 Files
  • 21
    May 21st
    0 Files
  • 22
    May 22nd
    0 Files
  • 23
    May 23rd
    0 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close