SUSE SLES12 Security Update : python3 (SUSE-SU-2021:1621-1)

This update for python3 fixes the following issues : Security issues fixed : CVE-2020-27619: where Lib/test/multibytecodecsupport calls eval on content retrieved via HTTP. bsc1178009 Other fixes : Make sure to close the 'importfailed.map' file after the exception has been raised in order to avoid...

Security fix for the ALT Linux 10 package postgresql12 version 12.7-alt1

May 18, 2021 Alexei Takaseev 12.7-alt1 - 12.7 Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 - Build with python3...

EulerOS 2.0 SP8 : python3 (EulerOS-SA-2021-1886)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are...

Critical Photon OS Security Update - PHSA-2021-0027

Updates of 'python3-cryptography', 'wireshark' packages of Photon OS have been released...

SUSE-SU-2021:1621-1 Security update for python3

This update for python3 fixes the following issues: Security issues fixed: - CVE-2020-27619: where Lib/test/multibytecodecsupport calls eval on content retrieved via HTTP. bsc1178009 Other fixes: - Make sure to close the 'importfailed.map' file after the exception has been raised in order to avoi...

Security fix for the ALT Linux 10 package postgresql14 version 13.3-alt1

May 17, 2021 Alexei Takaseev 13.3-alt1 - 13.3 Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 - Build with python3...

Security fix for the ALT Linux 10 package postgresql13 version 13.3-alt1

May 17, 2021 Alexei Takaseev 13.3-alt1 - 13.3 Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 - Build with python3...

Security fix for the ALT Linux 10 package postgresql15 version 13.3-alt1

May 17, 2021 Alexei Takaseev 13.3-alt1 - 13.3 Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029 - Build with python3...

Exploit for SQL Injection in Cmsmadesimple Cms_Made_Simple

46635.pyCVE-2019-9053 This is...

3klCon - Automation Recon Tool Which Works With Large And Medium Scope

Full Automation Recon tool which works with Small and Medium scopes. ّIt's recommended to use it on VPS, it'll discover secrets and searching for vulnerabilities So, Welcome and let's deep into it 3 Updates Version 1.1, what's new? Very Recommended 1. Fixing multiple issues with the used tools. 2...

OpenPLC WebServer 3 Remote Code Execution

Exploit Title: OpenPLC WebServer v3 - Authenticated Remote Code Execution Google Dork: N/A Date: 25/04/2021 Exploit Author: Fellipe Oliveira Vendor Homepage: https://www.openplcproject.com/ Software Link: https://github.com/thiagoralves/OpenPLCv3 Version: OpenPLC v3 Tested on: Ubuntu 16.04,Debian...

SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2021:1557-1)

This update for python3 fixes the following issues : CVE-2021-3426: Fixed an information disclosure via pydoc bsc1183374 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and form...

SUSE-SU-2021:1557-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2021-3426: Fixed an information disclosure via pydoc bsc1183374...

CANalyse - A Vehicle Network Analysis And Attack Tool

CANalyse is a tool built to analyze the log files to find out unique datasets automatically and able to connect to simple user interfaces such as Telegram. Basically, while using this tool the attacker can provide a bot-ID and use the tool over the internet through telegram-bot. CANalyse is made ...

Code Injection in c0oki3s/python-tools

✍️ Description python-tools is using an unsecure input function in https://github.com/C0oki3s/python-tools/blob/main/Dircreate/Dircreate.pyL8. Given that the script can be run using python2 or python3, if you feed the program with a python command and the python interpreter is python2, then the...

Cacti 1.2.12 - (filter) SQL Injection / Remote Code Execution Exploit

Exploit Title: Cacti 1.2.12 - 'filter' SQL Injection / Remote Code Execution Exploit Author: Leonardo Paiva Vendor Homepage: https://www.cacti.net/ Software Link: https://www.cacti.net/downloads/cacti-1.2.12.tar.gz Version: 1.2.12 Tested on: Ubuntu 20.04 CVE : CVE-2020-14295 Credits: @M4yFly...

Cacti 1.2.12 SQL Injection / Remote Code Execution

Exploit Title: Cacti 1.2.12 - 'filter' SQL Injection / Remote Code Execution Date: 04/28/2021 Exploit Author: Leonardo Paiva Vendor Homepage: https://www.cacti.net/ Software Link: https://www.cacti.net/downloads/cacti-1.2.12.tar.gz Version: 1.2.12 Tested on: Ubuntu 20.04 CVE : CVE-2020-14295...

NodeBB Emoji 3.2.1 Arbitrary FIle Write

Exploit Title: NodeBB Plugin Emoji 3.2.1 - Arbitrary File Write Date: 2021-02-01 Exploit Author: 1F98D Software Link: https://nodebb.org/ Version: Emoji for NodeBB ', r.text, re.IGNORECASE if csrf is None: print'! Could not extract csrf token to proceed.' sys.exit1 auth = 'username': USERNAME,...

OpenPLC 3 - Remote Code Execution (Authenticated)

Exploit Title: OpenPLC 3 - Remote Code Execution Authenticated Date: 25/04/2021 Exploit Author: Fellipe Oliveira Vendor Homepage: https://www.openplcproject.com/ Software Link: https://github.com/thiagoralves/OpenPLCv3 Version: OpenPLC v3 Tested on: Ubuntu 16.04,Debian 9,Debian 10 Buster...

Fedora: Security Advisory for python3-docs (FEDORA-2021-0a8f3ffbc0)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...