Local Service Search Engine Management System version 1.0 remote SQL injection exploit that leverages the original discovery by Aditya Wakhlu in December of 2020.
30b6aaeeb041066b174beca7e2c68739a31ead9731d81b046760771d95b55046This Metasploit module exploits a SQL injection vulnerability in Cacti versions 1.2.12 and below. An admin can exploit the filter variable within color.php to pull arbitrary values as well as conduct stacked queries. With stacked queries, the path_php_binary value is changed within the settings table to a payload, and an update is called to execute the payload. After calling the payload, the value is reset.
636d9fd6c79efe80bdd9f0da7f4060e559ca7cd87b6b1526a2a11e1ac747f750Thecus N4800Eco NAS server control panel suffers from a command injection vulnerability.
d7870fac7e6397017a08b261b256c7b60acc08e3f5738cb24318e34a48335819Red Hat Security Advisory 2021-2185-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include denial of service, integer overflow, and use-after-free vulnerabilities.
a22f93092329a9338361356b1eadb308f6359ca593ced45ffdd7647ea37d6460Red Hat Security Advisory 2021-2184-01 - Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Issues addressed include a denial of service vulnerability.
640a6516dc421f71a1f4a6312e6a17329fc0c7c9f1c208717ac6f99d6a4f6763Seo Panel version 4.8.0 suffers from multiple cross site scripting vulnerabilities.
096a31a27eb4a2b9985e91082448c7111243e067cbcbbdee5b3997c294a4c1e9Backdoor.Win32.Delf.acz malware suffers from a buffer overflow vulnerability.
e7c03163b6f98d9d380c821b768c80c58fd1aa18c25355cd105b07e352b78f31Ubuntu Security Notice 4974-1 - It was discovered that Lasso did not properly verify that all assertions in a SAML response were properly signed. An attacker could possibly use this to impersonate users or otherwise bypass access controls.
5bd381aee01d0b34cf8fd35cd96dbb180bc45c98dd746b222bb1b2c3743a2a77Products.PluggableAuthService version 2.6.0 suffers from an open redirection vulnerability.
638ce8bc92aca487079b31f4199384ce9c6d0c56c4bf380e440ab75c5147b0bfIntel Audio Service version 01.00.1080.0 suffers from an unquoted service path vulnerability.
5e6e41b2a1056f69dc848f8b0b42c191d42563eafe19627adde3d6211c45320cRed Hat Security Advisory 2021-2191-01 - The tcpdump packages contain the tcpdump utility for monitoring network traffic. The tcpdump utility can capture and display the packet headers on a particular network interface or on all interfaces.
dd0e6395e62941a0dcddfd2346006b410f8446d9c9e5dd7f593b5a138f832f31Apache Airflow versions 1.10.10 and below suffer from a remote code execution vulnerability.
90db73d06b832da1bd29f51da3759ba49ca9bf6dfbf04ca45ce41c9ce588afdcRed Hat Security Advisory 2021-2190-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include denial of service, integer overflow, and use-after-free vulnerabilities.
b85130912b4595e4fa9d7cc4ff48b4967163f32f1fbd6b3edd7ffe9d8d903aa8GetSimple CMS version 3.3.4 suffers from an information disclosure vulnerability.
3809a30c1cb472a328c2d29db5c6f5604e64699f9c485680f097f292a0f1a822
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed