what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 38 RSS Feed

Files Date: 2023-05-03

Ubuntu Security Notice USN-6054-1
Posted May 3, 2023
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6054-1 - Moataz Al-Sharida and nawaik discovered that Django incorrectly handled uploading multiple files using one form field. A remote attacker could possibly use this issue to bypass certain validations.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2023-31047
SHA-256 | ae0ba53f9519ac67a1f2ae260d466182a277d6949327391761be0dc5190ca27e
Debian Security Advisory 5397-1
Posted May 3, 2023
Authored by Debian | Site debian.org

Debian Linux Security Advisory 5397-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. An anonymous researcher discovered that a website may be able to track sensitive user information. Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

tags | advisory, web, arbitrary, vulnerability, code execution
systems | linux, debian, apple
advisories | CVE-2022-0108, CVE-2022-32885, CVE-2023-27932, CVE-2023-27954, CVE-2023-28205
SHA-256 | 906c82aa33e2a5d3a615396adfc2c3297efa50d485469f517e5f3d4abec2f097
Gentoo Linux Security Advisory 202305-23
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-23 - Multiple vulnerabilities have been discovered in Lua, the worst of which could result in arbitrary code execution.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2014-5461, CVE-2021-44647, CVE-2022-28805
SHA-256 | 00aefb3377c44926da8759cd1d9a0caff52ef4beac1d0f7f4a215d7820e9e283
Databricks Platform Cluster Isolation Bypass
Posted May 3, 2023
Authored by Florian Roth, Marius Bartholdy | Site sec-consult.com

The Databricks Platform as of 2023-01-26 suffered from a cluster isolation bypass vulnerability through insecure defaults and shared storage.

tags | exploit, bypass
SHA-256 | c51c70d84e2fff1a493535fad3d25c413be249acfe7890db0198ee13ac5eac27
Gentoo Linux Security Advisory 202305-22
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-22 - Multiple vulnerabilities have been discovered in ISC DHCP, the worst of which could result in denial of service. Versions less than 4.4.3_p1 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2021-25217, CVE-2022-2928, CVE-2022-2929
SHA-256 | 01af9fd733feb9ee59313a46fa6a69ef223463ef95f3edd2c49015f148a0aadf
Red Hat Security Advisory 2023-2085-01
Posted May 3, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-2085-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include a double free vulnerability.

tags | advisory, web
systems | linux, redhat
advisories | CVE-2023-1999
SHA-256 | 53c2da02a652387fed667edf0e66f0a8268b4d564d0c049363c85ee6d8a43383
Gentoo Linux Security Advisory 202305-20
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-20 - A buffer overflow vulnerability has been discovered in libapreq2 which could result in denial of service. Versions less than 2.17 are affected.

tags | advisory, denial of service, overflow
systems | linux, gentoo
advisories | CVE-2022-22728
SHA-256 | 792071c590c9fa5e3f086497c3f88e44a5eaf5c99ed93c05a0036daabaa97e82
SoftExpert Suite 2.1.3 Local File Inclusion
Posted May 3, 2023
Authored by Felipe Alcantara

SoftExpert Suite version 2.1.3 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
advisories | CVE-2023-30330
SHA-256 | 86eebbef8604baf8b39e89589799d9208b3fecb0a1fc3656910e519da4c4c213
Gentoo Linux Security Advisory 202305-19
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-19 - A vulnerability has been discovered in Firejail which could result in local root privilege escalation.

tags | advisory, local, root
systems | linux, gentoo
advisories | CVE-2022-31214
SHA-256 | a1cc5fd4c53d65e90316083ec113adeb3139a95bfa06da605b2b15ba54807504
Gentoo Linux Security Advisory 202305-18
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-18 - Multiple vulnerabilities have been found in libsdl2, the worst of which could result in arbitrary code execution. Versions less than 2.26.0 are affected.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2021-33657, CVE-2022-4743
SHA-256 | 329099e77e1155de31ad66371529080c5715465d8e090924f3aba8938512f75b
FS-S3900-24T4S Privilege Escalation
Posted May 3, 2023
Authored by Daniele Linguaglossa, Alberto Bruscino

FS-S3900-24T4S suffers from a privilege escalation vulnerability.

tags | exploit
advisories | CVE-2023-30350
SHA-256 | a07739b2f427e832148609c9cae7dd8cdd1d3bc9ccbb95a9c8ed4aae13777962
Gentoo Linux Security Advisory 202305-17
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-17 - Multiple vulnerabilities have been found in libsdl, the worst of which could result in arbitrary code execution. Versions less than 1.2.15_p20221201>= are affected.

tags | advisory, arbitrary, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2019-13616, CVE-2019-7572, CVE-2019-7573, CVE-2019-7574, CVE-2019-7575, CVE-2019-7576, CVE-2019-7577, CVE-2019-7578, CVE-2019-7635, CVE-2019-7636, CVE-2019-7638, CVE-2021-33657, CVE-2022-34568
SHA-256 | f88cbbf99497c62f630186c9fc9b3387da4a2cc7bd86fcd3e2435a35d63ff6ff
Gentoo Linux Security Advisory 202305-16
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-16 - Multiple vulnerabilities have been found in Vim, the worst of which could result in denial of service. Versions less than 9.0.1157 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2022-1154, CVE-2022-1160, CVE-2022-1381, CVE-2022-1420, CVE-2022-1616, CVE-2022-1619, CVE-2022-1620, CVE-2022-1621, CVE-2022-1629, CVE-2022-1674, CVE-2022-1720, CVE-2022-1725, CVE-2022-1733, CVE-2022-1735
SHA-256 | 81b5395f5780b813c10198f29c690100f378f19946bb1a709a861b0663668b4e
OpenEMR 7.0.1 Authentication Bruteforce Mitigation Bypass
Posted May 3, 2023
Authored by abhhi

OpenEMR versions 7.0.1 and below remote authentication bruteforcing tool that bypasses mitigations.

tags | exploit, remote, cracker, bypass
SHA-256 | 9a7f03b28b3643f8abd93cf26310302d0213e7ee85a19d7eab9f3556ffd3cb08
Debian Security Advisory 5396-1
Posted May 3, 2023
Authored by Debian | Site debian.org

Debian Linux Security Advisory 5396-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. Luan Herrera discovered that an HTML document may be able to render iframes with sensitive user information. P1umer and Q1IQ discovered that processing maliciously crafted web content may lead to arbitrary code execution. An anonymous researcher discovered that processing maliciously crafted web content may bypass Same Origin Policy. Clement Lecigne and Donncha O Cearbhaill discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.

tags | advisory, web, arbitrary, vulnerability, code execution
systems | linux, debian, apple
advisories | CVE-2022-0108, CVE-2022-32885, CVE-2023-27932, CVE-2023-27954, CVE-2023-28205
SHA-256 | caa6ba8a7c6d999f37d1121df65a4754aa4c306b9a151b6edb8be86f9d9c9467
Red Hat Security Advisory 2023-2083-01
Posted May 3, 2023
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2023-2083-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.5 General Availability release images, which fix bugs and security updates container images. Issues addressed include denial of service and server-side request forgery vulnerabilities.

tags | advisory, denial of service, vulnerability
systems | linux, redhat
advisories | CVE-2020-10735, CVE-2021-28861, CVE-2022-25881, CVE-2022-3841, CVE-2022-40897, CVE-2022-4269, CVE-2022-4304, CVE-2022-4378, CVE-2022-4415, CVE-2022-4450, CVE-2022-45061, CVE-2022-48303, CVE-2023-0215, CVE-2023-0266
SHA-256 | 73a3a6d4835d6deabe73aac1424fead885072ae86393a0569e27f07803acfe01
Gentoo Linux Security Advisory 202305-15
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-15 - Multiple vulnerabilities have been discovered in systemd, the worst of which could result in denial of service.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2021-3997, CVE-2022-3821
SHA-256 | 5385d40a5dc26e14d825f0e98938e718780d2697e083d342fb1504267a87ed38
Gentoo Linux Security Advisory 202305-14
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-14 - A vulnerability has been discovered in uptimed which could result in root privilege escalation. Versions less than 0.4.6-r1 are affected.

tags | advisory, root
systems | linux, gentoo
advisories | CVE-2020-36657
SHA-256 | bc372404c988cf4e4c037c3f15aa29c339776307d0b656e7b70be7cfcfb1b929
PHPJabbers Simple CMS 5.0 SQL Injection
Posted May 3, 2023
Authored by Ahmet Umit Bayram

PHPJabbers Simple CMS version 5.0 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | 83f621397845c84a9917b61152f97ae5a466d86a9cd4d0fb41285c7f7ed1d29c
PHPJabbers Simple CMS 5.0 Cross Site Scripting
Posted May 3, 2023
Authored by Ahmet Umit Bayram

PHPJabbers Simple CMS version 5.0 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | ac5a25fb5aa54ef7a5f3072c88ec55766e7b60fbe64da0e271c8b427aae69c1d
Gentoo Linux Security Advisory 202305-12
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-12 - A vulnerability has been discovered in sudo which could result in root privilege escalation. Versions less than 1.9.12_p2 are affected.

tags | advisory, root
systems | linux, gentoo
advisories | CVE-2023-22809
SHA-256 | b8f9643203a24f27c9e405bdb0297e4ad8adff7235b76a4220ae9bf87e546de1
Gentoo Linux Security Advisory 202305-11
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-11 - Multiple vulnerabilities have been found in Tor, the worst of which could result in denial of service. Versions less than 0.4.7.13 are affected.

tags | advisory, denial of service, vulnerability
systems | linux, gentoo
advisories | CVE-2021-38385, CVE-2022-33903, CVE-2023-23589
SHA-256 | b35755744fdd1d6e1ae8281fa91b0190eca10c429f7f73044c5532c64ddd96be
Gentoo Linux Security Advisory 202305-10
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-10 - Multiple vulnerabilities have been found in Chromium and its derivatives, the worst of which could result in remote code execution. Versions less than 109.0.5414.74-r1>= are affected.

tags | advisory, remote, vulnerability, code execution
systems | linux, gentoo
advisories | CVE-2022-3445, CVE-2022-3446, CVE-2022-3447, CVE-2022-3448, CVE-2022-3449, CVE-2022-3450, CVE-2022-3723, CVE-2022-41115, CVE-2022-4135, CVE-2022-4174, CVE-2022-4175, CVE-2022-4176, CVE-2022-4177, CVE-2022-4178
SHA-256 | fa3546a29e07efaa3af4ab0c41e75094c5aa943da3174dfaf8d8a7fd33602ded
PHPFusion 9.10.30 Cross Site Scripting
Posted May 3, 2023
Authored by Mirabbas Agalarov

PHPFusion version 9.10.30 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | aa251886281d962736d5731f2bc3b96ee2197a77f04ca5b9d031c9023887dfbc
Gentoo Linux Security Advisory 202305-09
Posted May 3, 2023
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202305-9 - A denial of service vulnerability was discovered in rsyslog related to syslog input over the network. Versions less than 3.38.1 are affected.

tags | advisory, denial of service
systems | linux, gentoo
advisories | CVE-2022-38725
SHA-256 | 84eddc583f78055c45f24457505402cbf8f5b1c37d2b55f6ff25ed8c0a2c0825
Page 1 of 2
Back12Next

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    17 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close