Packet Storm - Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
Updated: 13 hours 47 min ago
Uplay for PC suffers from an elevation of privileges vulnerability which can be used by a simple user that can change the executable file with a binary of choice. The vulnerability exist due to the improper permissions, with the 'F' flag (Full) for 'Everyone' group, making the entire directory 'Ubisoft Game Launcher' and its files and sub-dirs world-writable. Versions 4.7.3208 and 184.108.40.20610 are affected.
Multiple WordPress themes suffer from arbitrary file download and file deletion vulnerabilities. Included are Awake, Construct, Dejavu, Echelon, Elegance, Fusion, Infocus, Mega, Method, Modular, MyRiad, Oakrealty, Persuasion, and Binary.
Feed2JS uses MagpieRSS for parsing the feeds, and MagpieRSS uses Snoopy library for fetching the documents. The version of Snoopy in use suffers from a local file disclosure vulnerability.
Symbiose Webos suffers from cross site scripting and path disclosure vulnerabilities.
FoeCMS suffers from cross site scripting, open redirect, and remote SQL injection vulnerabilities.
WordPress NextGEN Gallery plugin version 2.0.63 suffers from a remote shell upload vulnerability.
Raritan PX suffers from IPMI zero cipher and password hash dumping vulnerabilities.
Kanboard version 1.0.5 suffers from a cross site request forgery vulnerability.
Ntop-NG version 1.1 suffers from a reflective cross site scripting vulnerability.
OpenDocMan version 220.127.116.11 suffers from a stored cross site scripting vulnerability.
Zurmo CRM suffers from a stored cross site scripting vulnerability.
CMS ContWEB suffers from a remote SQL injection vulnerability. Note that this finding houses site-specific data.
EMC Documentum eRoom versions 7.4.3, 7.4.4, and 7.4.4 SP1 suffer from a stored cross site scripting vulnerability.
Kerio Control versions 8.3.1 and below suffer from a boolean-based blind remote SQL injection vulnerability.
Internet Explorer 8 fixed col span ID full ASLR, DEP, and EMET 4.1.x bypass exploit.
This archive contains all of the 127 exploits added to Packet Storm in June, 2014.
IBM Algorithmics RICOS versions 4.5.0 through 4.7.0 suffer from cross site scripting, cross site request forgery, information disclosure, data manipulation, broken encryption, and various other vulnerabilities.
Gitlist versions 0.4.0 and below suffer from a remote code execution vulnerability.
WordPress Theme My Login plugin version 6.3.9 provides access to arbitrary files and could facilitate arbitrary code execution.