packetstormsecurity.com

Packet Storm Security is a website dedicated to information security, providing both up-to-date and historical resources related to computer security tools, exploits, and security alerts. Managed by a team of passionate security experts, the site regularly shares new security updates and offers various tools designed for educational use and testing.

International

English

Online/Digital

Outlet metrics

Domain Authority

Ranking

Global

#2705652

United States

#1650738

Computers Electronics and Technology/Computer Security

#4066

Traffic sources

Monthly visitors

Articles

Fortinet FortiManager Unauthenticated Remote Code Execution

Dec 3, 2024 | packetstormsecurity.com | Spencer McIntyre

## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::Tcp def initialize(info = {}) super( update_info( info, 'Name' => 'Fortinet FortiManager Unauthenticated RCE', 'Description' => %q{ This module exploits a missing authentication vulnerability affecting FortiManager and FortiManager Cloud devices to achieve...
Ubuntu Security Notice USN-7133-1

Dec 3, 2024 | packetstormsecurity.com | Spencer McIntyre

==========================================================================Ubuntu Security Notice USN-7133-1December 03, 2024haproxy vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTSSummary:HAProxy could be made to expose sensitive information over thenetwork.
Debian Security Advisory 5823-1

Dec 3, 2024 | packetstormsecurity.com | Spencer McIntyre

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5823-1 [email protected] https://www.debian.org/security/ Alberto Garcia December 02, 2024 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : webkit2gtk CVE ID : CVE-2024-44308 CVE-2024-44309 The following vulnerabilities have been discovered in the WebKitGTK web engine:...
Debian Security Advisory 5815-2

Dec 3, 2024 | packetstormsecurity.com | Spencer McIntyre

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5815-2 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 02, 2024 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : needrestart Debian Bug : 1087917 1087918 1087957 1087958 1088012 1088047 The update for needrestart announced as DSA 5815-1...
Ubuntu Security Notice USN-7134-1

Dec 3, 2024 | packetstormsecurity.com | Spencer McIntyre

==========================================================================Ubuntu Security Notice USN-7134-1December 03, 2024firefox vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:Several security issues were fixed in Firefox. Software Description:- firefox: Mozilla Open Source web browserDetails:Multiple security issues were discovered in Firefox.
Red Hat Security Advisory 2024-10517-03

Dec 3, 2024 | packetstormsecurity.com | Spencer McIntyre

The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10517.jsonRed Hat officially shut down their mailing list notifications October 10, 2023. Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.
Ubuntu Security Notice USN-7092-2

Dec 2, 2024 | packetstormsecurity.com | Spencer McIntyre

==========================================================================Ubuntu Security Notice USN-7092-2November 27, 2024mpg123 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 20.04 LTSSummary:mpg123 could be made to crash or run programs as your login if it opened aspecially crafted file.
AppleAVD AV1_Syntax::Parse_Header Integer Underflow / Out-Of-Bounds Reads

Dec 2, 2024 | packetstormsecurity.com | Ivan Fratric |Spencer McIntyre

AppleAVD has an integer underflow in AV1_Syntax::Parse_Header that can lead to out-of-bounds reads.
Laravel 11.0 Cross Site Scripting

Dec 2, 2024 | packetstormsecurity.com | Spencer McIntyre

/*! - # VULNERABILITY: Cross Site Scripting Laravel version 11.0 - # Authenticated Persistent XSS - # GOOGLE DORK: inurl:.com/?q= - # GOOGLE DORK: Site:.com/?q= - # DATE: 2024-12-01 - # SECURITY RESEARCHER: E1.Coders - # VENDOR: LARAVEL [https://laravel.com/ ] - # SOFTWARE LINK: https://laravel.com/docs/11.x/installation - # CVSS: AV:N/AC:L/PR:H/UI:N/S:C - # CWE: CWE-79 - # download payload...
Simple Chat System 1.0 Cross Site Scripting

Dec 2, 2024 | packetstormsecurity.com | Spencer McIntyre

Simple Chat System 1.0 Cross Site ScriptingSimple Chat System 1.0 Cross Site ScriptingPosted Dec 2, 2024Simple Chat System version 1.0 suffers from a cross site scripting vulnerability.