Showing 1 - 8 of 8

Files Date: 2021-02-12

SolarWinds Serv-U FTP Server 15.2.1 Cross Site Scripting: Posted Feb 12, 2021; Authored by Jack Misiura; SolarWinds Serv-U FTP Server versions through 15.2.1 do not correctly sanitize and validate the user-supplied directory names, allowing malicious users to create directories that when clicked on (in the breadcrumb menu) will trigger cross site scripting payloads.; tags | exploit, xss; advisories | CVE-2020-28001; SHA-256 | 63b2c20217bc49cd26d5d1117a3e0ef300ddd3efe77e545937de5ae02474c7ac; Download | Favorite | View

SolarWinds Serv-U FTP Server 15.2.1 Path Traversal: Posted Feb 12, 2021; Authored by Jack Misiura; SolarWinds Serv-U File Server versions through 15.2.1 do not correctly validate path information, allowing the disclosure of files and directories outside of the user's home directory via a specially crafted GET request.; tags | exploit, file inclusion; advisories | CVE-2020-27994; SHA-256 | 64b515c78c524df69e596a9ac43e62c6feeaae73ff31f506f5da5c63c7573d1a; Download | Favorite | View

Apple Security Advisory 2021-02-09-1: Posted Feb 12, 2021; Authored by Apple | Site apple.com; Apple Security Advisory 2021-02-09-1 - macOS Big Sur 11.2.1, macOS Catalina 10.15.7 Supplemental Update, and macOS Mojave 10.14.6 Security Update 2021-002 address code execution and out of bounds write vulnerabilities.; tags | advisory, vulnerability, code execution; systems | apple; advisories | CVE-2021-1805, CVE-2021-1806, CVE-2021-3156; SHA-256 | d07c6053fe910958b6266e0b88aa65b1bed26755ff3255409dce2e7eae0d9f55; Download | Favorite | View

Ubuntu Security Notice USN-4734-1: Posted Feb 12, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4734-1 - It was discovered that wpa_supplicant did not properly handle P2P group information in some situations, leading to a heap overflow. A physically proximate attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that hostapd did not properly handle UPnP subscribe messages in some circumstances. An attacker could use this to cause a denial of service. Various other issues were also addressed.; tags | advisory, denial of service, overflow, arbitrary; systems | linux, ubuntu; advisories | CVE-2020-12695, CVE-2021-0326; SHA-256 | da5ea348150c757a77c57580c53d55f823503da3fdee08a9926dcaf7bc16522c; Download | Favorite | View

School Event Attendance Monitoring System 1.0 Cross Site Scripting: Posted Feb 12, 2021; Authored by Suresh Kumar; School Event Attendance Monitoring System version 1.0 suffers from a persistent cross site scripting vulnerability.; tags | exploit, xss; SHA-256 | f24ea62864f99168db534533d904e718eec3104b5d031e784df47f70a33c8549; Download | Favorite | View

Port Forwarding And Tunnelling: Posted Feb 12, 2021; Authored by Jeenali Kothari | Site hackingarticles.in; This whitepaper is a cheatsheet that goes over various methods of port forwarding and tunnelling of traffic.; tags | paper; SHA-256 | f746945e0edd3c4bd4aae5ea59672c53f016e834378ed2e6fb4ef5da07d76bb2; Download | Favorite | View

School File Management System 1.0 Cross Site Scripting: Posted Feb 12, 2021; Authored by Pintu Solanki; School File Management System version 1.0 suffers from multiple cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss; SHA-256 | 9adf1daba492c305f38d2212601a64c64d3876b6fed06208da1f858a6ea386b2; Download | Favorite | View

PDFCOMPLETE Corporate Edition 4.1.45 Unquoted Service Path: Posted Feb 12, 2021; Authored by Ismael Nava; PDFCOMPLETE Corporate Edition version 4.1.45 suffers from an unquoted service path vulnerability.; tags | exploit; SHA-256 | a37408e2d318510e6d8e2c8d775c427b6f59b240022e320ba14caf04620f4892; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days