3klCon - Automation Recon Tool Which Works With Large And Medium Scope

Full Automation Recon tool which works with Small and Medium scopes. ّIt's recommended to use it on VPS, it'll discover secrets and searching for vulnerabilities So, Welcome and let's deep into it 3 Updates Version 1.1, what's new? Very Recommended 1. Fixing multiple issues with the used tools. 2...

Code Injection in c0oki3s/python-tools

✍️ Description python-tools is using an unsecure input function in https://github.com/C0oki3s/python-tools/blob/main/Dircreate/Dircreate.pyL8. Given that the script can be run using python2 or python3, if you feed the program with a python command and the python interpreter is python2, then the...

CVE-2021-23336 affecting package python2 2.7.18-14

CVE-2021-23336 affecting package python2 2.7.18-14. A patched version of the package is available...

[ASA-202103-27] python2: multiple issues

Arch Linux Security Advisory ASA-202103-27 ========================================== Severity: High Date : 2021-03-25 CVE-ID : CVE-2019-20907 CVE-2020-8492 CVE-2020-26116 CVE-2020-27619 CVE-2021-3177 CVE-2021-23336 Package : python2 Type : multiple issues Remote : Yes Link :...

Fedora: Security Advisory for python2-pillow (FEDORA-2021-15845d3abe)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 33 : mingw-python-pillow / python-pillow / python2-pillow (2021-15845d3abe)

The remote Fedora 33 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-15845d3abe advisory. - In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts...

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2021-1543)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.6.0 : python2 (EulerOS-SA-2021-1543)

According to the versions of the python2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF...

[SECURITY] Fedora 32 Update: python27-2.7.18-8.fc32

Python 2 is an old version of the language that is incompatible with the 3.x line of releases. The language is mostly the same, but many details, especi ally how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been...

[ASA-202102-20] python2-jinja: denial of service

Arch Linux Security Advisory ASA-202102-20 ========================================== Severity: Low Date : 2021-02-07 CVE-ID : CVE-2020-28493 Package : python2-jinja Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1523 Summary ======= The package python2-jinja befo...

Exploit for Off-by-one Error in Sudo_Project Sudo

CVE 2021-3156 How to pwn py...

ApkLeaks - Scanning APK File For URIs, Endpoints And Secrets

Scanning APK file for URIs, endpoints & secrets. Installation To install apkLeaks , simply: $ git clone https://github.com/dwisiswant0/apkleaks $ cd apkleaks/ $ pip install -r requirements.txt Or download at release tab. Dependencies This package works in Python2 not Python3. Install global...

Huawei EulerOS: Security Advisory for python2 (EulerOS-SA-2020-2527)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : python2 (EulerOS-SA-2020-2527)

According to the version of the python2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Python 3 through 3.9.0, the Lib/test/multibytecodecsupport.py CJK codec tests call eval on content retrieved via HTTP.CVE-2020-27619 Note that...

openSUSE Security Update : python-pip (openSUSE-2020-2169)

This update for python-pip fixes the following issues : - Fixed a directory traversal in downloadhttpurl bsc1176262 CVE-2019-20916 This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

CVE-2012-0955

software-properties was vulnerable to a person-in-the-middle attack due to incorrect TLS certificate validation in softwareproperties/ppa.py. software-properties didn't check TLS certificates under python2 and only checked certificates under python3 if a valid certificate bundle was provided. Fix...

CVE-2012-0955

CVE-2012-0955 affects the Ubuntu software-properties component, where TLS certificate validation was incorrect in softwareproperties/ppa.py. It did not consistently validate TLS certificates under Python 2 and only validated under Python 3 if a valid bundle was provided. This led to potential MIT...

CVE-2012-0955 software-properties incorrectly validated TLS certificates

software-properties was vulnerable to a person-in-the-middle attack due to incorrect TLS certificate validation in softwareproperties/ppa.py. software-properties didn't check TLS certificates under python2 and only checked certificates under python3 if a valid certificate bundle was provided. Fix...

CVE-2007-4559 affecting package python2 2.7.18-14

CVE-2007-4559 affecting package python2 2.7.18-14. A patched version of the package is available...

CVE-2017-18207 affecting package python2 2.7.18-14

CVE-2017-18207 affecting package python2 2.7.18-14. A patched version of the package is available...