Security

Linux/ARM Password Protected Reverse Shell Shellcode ≈ Packet Storm

/** Title: Linux/ARM – Password Protected Reverse Shell TCP (/bin/sh). Null free shellcode (156 bytes)* Date: 2018-01-15* Tested: armv7l (Raspberry Pi v3)* Author: rtmcx – twitter: @rtmcx */ .section .text .global _start_start:/* Enter Thumb mode */.ARMadd r6, pc, #1bx r6 .THUMB /* Create a new socket*//* socket(PF_INET, SOCK_STREAM, 0);r0 = 2, r = 1, r2 […]

Security

Simple ASC CMS 1.2 Database Disclosure ≈ Packet Storm

========================================================================| # Title : Simple ASC CMS 1.2 Database Disclosure Exploit| # Author : indoushka| # email : indoushka4ever@gmail.com| # Tested on : windows 8.1 FranASSais V.(Pro)| # Vendor : http://www.aspsource.org======================================================================== #!/usr/bin/perl -w# Author : indoushka use LWP::Simple;use LWP::UserAgent; system(‘cls’);system(‘Simple ASC CMS 1.2 Database Disclosure Exploit’);system(‘color a’); if(@ARGV < 2){print “[-]How To Usenn”;&help; exit();}sub help(){print […]

Security

Photo Vault 1.2 Brute Forcing Issue ≈ Packet Storm

Document Title:===============Photo Vault v1.2 iOS – Insecure Authentication Vulnerability References (Source):====================https://www.vulnerability-lab.com/get_content.php?id=2110 Release Date:=============2018-01-16 Vulnerability Laboratory ID (VL-ID):====================================2110 Common Vulnerability Scoring System:====================================4.8 Vulnerability Class:====================Insecure Storage of Sensitive Information Current Estimated Price:========================1.000a! – 2.000a! Product & Service Introduction:===============================https://itunes.apple.com/us/app/id1053383947 Abstract Advisory Information:==============================The vulnerability labortory core research team discovered a insecure authentication issue in the official Vulnerability Disclosure Timeline:==================================2018-01-16: […]

Security

Agora Project 3.3.5 Cross Site Scripting ≈ Packet Storm

============================================================================================================================| # Title : Agora project 3.3.5 XSS File upload Vulnerability || # Author : indoushka || # Telegram : @indoushka || # Tested on : windows 10 Fr V.(Pro) || # Vendor : https://www.agora-project.net/?ctrl=offline&action=download | | # Dork : n/a |============================================================================================================================ poc : [+] go to https://www.omnispace.fr/AP-OMNISPACE/index.php?ctrl=omnispace&action=recordCommand [+] Register a new user space and […]

Security

Vodafone DE Cross Site Scripting ≈ Packet Storm

# Exploit Title: [ XSS Reflected ( Cross Site Scripting ) at Vodafone DE ] # Date: [02.01.2018] # Exploit Author: [Ismail Tasdelen] # Vendor Homepage: [www.vodafone.de] # PoC https://www.youtube.com/watch?v=YCjNEW6gNgg # XSS Reflected Payload : <svg/onload=alert(‘ismailtasdelen’)> # Exploit Title: [ HTML Injection at Vodafone DE ] # PoC https://www.youtube.com/watch?v=aF6X3n6l8AA # HTML Injection Payload : <IMG […]

Security

Shopware 5.2.5 / 5.3 Cross Site Scripting ≈ Packet Storm

Document Title:===============Shopware 5.2.5 & v5.3 – Multiple Cross Site Scripting Web Vulnerabilities References (Source):====================http://www.vulnerability-lab.com/get_content.php?id=1922 Shopware Security Tracking ID: SW-19834 Security Update: http://community.shopware.com/Downloads_cat_448.html#5.3.4http://community.shopware.com/_detail_2035.html http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15374 CVE-ID:=======CVE-2017-15374 Release Date:=============2017-09-05 Vulnerability Laboratory ID (VL-ID):====================================1922 Common Vulnerability Scoring System:====================================4.4 Vulnerability Class:====================Cross Site Scripting – Persistent Current Estimated Price:========================1.000a! – 2.000a! Product & Service Introduction:===============================Shopware is a modular online shop system […]

Security

Congress demanded NSA spying reform. Instead, they let you down

House majority leader Rep. Kevin McCarthy (left), and Rep. Fred Upton (right), both of whom voted to pass the FISA reauthorization bill. (Image: file photo) For the first time in five years, since the Edward Snowden disclosures that exposed the NSA’s mass surveillance powers and programs, lawmakers had an opportunity this month to rein in […]

Security

OnePlus confirms hack exposed credit cards of phone buyers

(Image: CNET/CBS Interactive) OnePlus has confirmed that its systems have been breached, following reports of credit card fraud from customers who bought a phone from the company. The phone maker sent an email to customers Friday, saying customers’ credit card numbers, expiry dates, and security codes “may have been compromised.” The email, posted by Peter […]

Security

EFF, Look out uncover Dark Caracal spy group

EFF, Look out uncover Dark Caracal spy group A new threat actor named Dark Caracal and working out of a building operated by the Lebanese General Directorate of General Security (GDGS) has been fingered by Lookout and the Electronic Frontier Foundation (EFF) as being behind cyberattacks hitting thousands of victims in more than 20 nations […]

Security

Zyklon password stealer exploits Microsoft vulnerabilities via spam campaign

Zyklon malware steals passwords from popular web browsers Cybercriminals are exploiting Microsoft Office Vulnerabilities to distribute Zyklon Malware in a recent spam campaign targeting telecommunication, insurance, and financial services. The malware is designed to recover passwords from popular web browsers, PC gaming software, and email services among other software. The malware automatically detects and decrypts […]

Security

CentOS Web Panel 0.9.8.12 Cross Site Scripting ≈ Packet Storm

Document Title:===============CentOS Web Panel v0.9.8.12 – Non-Persistent Cross Site Scripting Vulnerabilities References (Source):====================http://www.vulnerability-lab.com/get_content.php?id=1835 Release Date:=============2018-01-17 Vulnerability Laboratory ID (VL-ID):====================================1835 Common Vulnerability Scoring System:====================================3.3 Vulnerability Class:====================Cross Site Scripting – Non Persistent Current Estimated Price:========================500a! – 1.000a! Product & Service Introduction:===============================CentOS Web Panel – Free Web Hosting control panel is designed for quick and easy management of […]

Security

Vanilla 2.0.18.8 Local File Inclusion ≈ Packet Storm

Vanilla 2.0.18.8 Local File Inclusion Posted Jan 19, 2018 Authored by indoushka Vanilla version 2.0.18.8 suffers from a local file inclusion vulnerability. tags | exploit, local, file inclusion MD5 | 9b04ce03372064ca883b9a945d9d30d5 Download | Favorite | Comments (0) ============================================================================| # Title : Vanilla Version 2.0.18.8 LFI Vulnerability || # Author : indoushka || # email : […]

Security

Toplist 2 SQL Injection / Backdoor Account / Shell Upload ≈ Packet Storm

============================================================================| # Title : toplist v 2 Backdoor account Vulnerability || # Author : indoushka || # email : indoushka4ever@gmail.com || # Tested on : windows 10 FranASSais V.(Pro) || # Version : v 2 || # Vendor : http://wmscripti.com | | # Dork : n/a |============================================================================ poc : Application error message : [+] Dorking […]

Security

Online Hotel Booking System Pro 1.3 SQL Injection ≈ Packet Storm

====================================================================================================| # Title : Online Hotel Booking System Pro 1.3 Sql injection vulnerability || # Author : indoushka || # email : indoushka4ever@gmail.com || # Tested on : windows 10 FranASSais V.(Pro) || # Version : 1.3 || # Vendor : https://codecanyon.net/item/online-hotel-booking-system-pro/4606514 | | # Dork : “booking-failure.php?error_code=” |==================================================================================================== poc : [+] Dorking Adegn Google […]

Security

You get a lawsuit! And you get a lawsuit! And you! Now Apple sued over CPU security flaws • The Register

Add Apple to the list of companies facing a legal backlash in the US over the Spectre and Meltdown CPU security fiasco. A 17-page class-action complaint [PDF] – filed earlier this month in a San Jose district court in California – accuses the Cupertino iGiant of failing to keep the Arm-compatible processors in iPhones, iPads, […]

Security

Triton exploited zero-day flaw to target industrial systems

The Triton Trojan which targeted core industrial systems in the Middle East last year exploited a zero-day flaw in Triconex controllers to carry out its attack. Triton was first detected in the wild in August 2017 and hit the spotlight in December after the malware was used in an attempt to close down industrial systems […]

Security

Dridex banking Trojan compromises FTP sites in new campaign

Researchers have discovered the Dridex banking Trojan has once again evolved and is now using compromised FTP websites in phishing campaigns. The Trojan was first spotted back in 2014 after targeting banks in the United Kingdom. Since then, Dridex has become infamous for striking financial institutions across Europe. The malware spreads through phishing campaigns, duping […]

Security

Debian Security Advisory 4092-1 ≈ Packet Storm

—–BEGIN PGP SIGNED MESSAGE—–Hash: SHA512 – ————————————————————————-Debian Security Advisory DSA-4092-1 security@debian.orghttps://www.debian.org/security/ Sebastien DelafondJanuary 19, 2018 https://www.debian.org/security/faq– ————————————————————————- Package : awstatsCVE ID : CVE-2017-1000501Debian Bug : 885835 The cPanel Security Team discovered that awstats, a log file analyzer,was vulnerable to path traversal attacks. A remote unauthenticatedattacker could leverage that to perform arbitrary code execution. For the […]

Security

Red Hat Security Advisory 2018-0099-01 ≈ Packet Storm

X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.26]); Thu, 18 Jan 2018 22:01:17 +0000 (UTC) —–BEGIN PGP SIGNED MESSAGE—–Hash: SHA1 =====================================================================Red Hat Security Advisory Synopsis: Critical: java-1.8.0-oracle security updateAdvisory ID: RHSA-2018:0099-01Product: Oracle Java for Red Hat Enterprise LinuxAdvisory URL: https://access.redhat.com/errata/RHSA-2018:0099Issue date: 2018-01-18CVE Names: CVE-2018-2579 CVE-2018-2581 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 […]

Security

Red Hat Security Advisory 2018-0100-01 ≈ Packet Storm

X-Scanned-By: MIMEDefang 2.79 on 10.5.11.12X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.25]); Thu, 18 Jan 2018 22:01:19 +0000 (UTC) —–BEGIN PGP SIGNED MESSAGE—–Hash: SHA1 =====================================================================Red Hat Security Advisory Synopsis: Important: java-1.7.0-oracle security updateAdvisory ID: RHSA-2018:0100-01Product: Oracle Java for Red Hat Enterprise LinuxAdvisory URL: https://access.redhat.com/errata/RHSA-2018:0100Issue date: 2018-01-18CVE Names: CVE-2018-2579 CVE-2018-2581 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 […]