Packet Storm – Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
BMD BMDWeb 2.0 Cross Site Scripting
22 April 2021, 3:41 pmBMD BMDWeb 2.0 versions prior to 24.01.21 suffer from persistent cross site scripting vulnerabilities.
Packed.Win32.Black.d Unauthenticated Open Proxy
22 April 2021, 3:34 pmPacked.Win32.Black.d malware has an unauthenticated open proxy vulnerability.
OTRS 6.0.1 Remote Command Execution
22 April 2021, 3:32 pmOTRS version 6.0.1 remote command execution exploit.
Backdoor.Win32.DarkKomet.artr Insecure Permissions
22 April 2021, 3:32 pmBackdoor.Win32.DarkKomet.artr malware suffers from an insecure permissions vulnerability.
Trojan-Dropper.Win32.Agent.xtp Insecure Permissions
22 April 2021, 3:31 pmTrojan-Dropper.Win32.Agent.xtp malware suffers from an insecure permissions vulnerability.
RemoteClinic 2.0 Cross Site Scripting
22 April 2021, 3:29 pmRemoteClinic version 2.0 suffers from multiple persistent cross site scripting vulnerabilities.
IM-Worm.Win32.Bropia.aa Insecure Permissions
22 April 2021, 3:23 pmIM-Worm.Win32.Bropia.aa malware suffers from an insecure permissions vulnerability.
HEUR.Trojan.Win32.Generic Insecure Permissions
22 April 2021, 3:23 pmHEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.
CMS Made Simple 2.2.15 Cross Site Scripting
22 April 2021, 3:22 pmCMS Made Simple version 2.2.15 suffers from a reflective cross site scripting vulnerability.
GravCMS 1.10.7 Remote Command Execution
21 April 2021, 3:25 pmThis Metasploit module exploits an arbitrary configuration write/update vulnerability to achieve remote code execution. Unauthenticated users can execute a terminal command under the context of the web server user. Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. In versions 1.10.7 and earlier, an unauthenticated user can execute some methods of administrator controller without needing any credentials. Particular method execution will result in arbitrary YAML file creation or content change of existing YAML files on the system. Successfully exploitation of that vulnerability results in configuration changes, such as general site information change, custom scheduler job definition, etc. Due to the nature of the vulnerability, an adversary can change some part of the webpage, or hijack an administrator account, or execute operating system command under the context of the web-server user.
Nagios XI 5.7.3 Remote Code Execution
21 April 2021, 3:24 pmThis Metasploit module exploits an OS command injection vulnerability in includes/components/nxti/index.php that enables an authenticated user with admin privileges to achieve remote code execution as the apache user. Valid credentials for a Nagios XI admin user are required. This module has been successfully tested against Nagios XI 5.7.3 running on CentOS 7.
Cockpit CMS 0.11.1 NoSQL Injection / Remote Command Execution
21 April 2021, 3:12 pmThis Metasploit module exploits two NoSQL injection vulnerabilities to retrieve the user list and password reset tokens from the system. Next, the USER is targeted to reset their password. Then, a command injection vulnerability is used to execute the payload. While it is possible to upload a payload and execute it, the command injection provides a no disk write method which is more stealthy. Cockpit CMS versions 0.10.0 through 0.11.1, inclusive, contain all the necessary vulnerabilities for exploitation.
Adtran Personal Phone Manager 10.8.1 DNS Exfiltration
21 April 2021, 3:11 pmAdtran Personal Phone Manager version 10.8.1 suffers from a DNS exfiltration vulnerability.
Hasura GraphQL 1.3.3 Denial Of Service
21 April 2021, 3:05 pmHasura GraphQL version 1.3.3 suffers from a denial of service vulnerability.
OpenEMR 5.0.2.1 Remote Code Execution
21 April 2021, 3:03 pmOpenEMR version 5.0.2.1 remote code execution exploit that drops in a reverse shell.
Tenda D151 / D301 Configuration Download
21 April 2021, 3:01 pmTenda versions D151 and D301 configuration downloading exploit.
Adtran Personal Phone Manager 10.8.1 Cross Site Scripting
21 April 2021, 2:55 pmAdtran Personal Phone Manager version 10.8.1 suffers from multiple reflective cross site scripting vulnerabilities.
Adtran Personal Phone Manager 10.8.1 Persistent Cross Site Scripting
21 April 2021, 2:53 pmAdtran Personal Phone Manager version 10.8.1 suffers from a persistent cross site scripting vulnerability.
Hasura GraphQL 1.3.3 Server-Side Request Forgery
21 April 2021, 2:52 pmHasura GraphQL version 1.3.3 suffers from a server-side request forgery vulnerability.
Hasura GraphQL 1.3.3 Arbitrary File Read
21 April 2021, 2:51 pmHasura GraphQL version 1.3.3 suffers from an arbitrary file read vulnerability.
rconfig 3.9.6 Shell Upload
21 April 2021, 2:49 pmrconfig versions 3.9.6 and below shell upload exploit. This is a variant of the flaw discovered in the same version by Murat Seker in March of 2021.
RemoteClinic 2 Cross Site Scripting
21 April 2021, 2:38 pmRemoteClinic 2 suffers from multiple cross site scripting vulnerabilities.
WordPress RSS For Yandex Turbo 1.29 Cross Site Scripting
21 April 2021, 2:36 pmWordPress RSS for Yandex Turbo plugin version 1.29 suffers from a persistent cross site scripting vulnerability.
Multilaser Router RE018 AC1200 Cross Site Request Forgery
21 April 2021, 2:34 pmMultilaser Router RE018 AC1200 suffers from a cross site request forgery vulnerability.
Fast PHP Chat 1.3 SQL Injection
21 April 2021, 2:33 pmFast PHP Chat version 1.3 suffers from a remote SQL injection vulnerability.