Exploit for CVE-2020-16898

CVE-2020-16898 CVE-2020-16898: Windows TCP/IP remote code ex...

CentOS 7 : python3 (RHSA-2020:3888)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3888 advisory. - The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the servertitle field. This occurs ...

TheCl0n3r - Tool To Download And Manage Your Git Repositories

TheCl0n3r will allow you to download and manage your git repositories. Preface About 90% of the penetration testing tools used in my experience can be found primarily on github. The aim of this was to make it easier to download, update and delete these git repositories. If moving to a new testing...

CVE-2020-4636

IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. IBM X-Force ID: 185503...

CVE-2020-4636

IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. IBM X-Force ID: 185503...

Design/Logic Flaw

IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. IBM X-Force ID: 185503...

CVE-2020-4636

CVE-2020-4636 affects IBM Resilient OnPrem (IBM Security SOAR), where a privileged user could inject malicious commands via Python3 scripting (sys module). Root cause involves Python3 scripting capability enabled in Resilient OnPrem 38.2 beta/GA, leading to command injection. Published details in...

CVE-2020-4636

IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. IBM X-Force ID: 185503...

Photon OS 2.0: Python3 PHSA-2020-2.0-0289

An update of the python3 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0289. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 1.0: Python3 PHSA-2020-1.0-0332

An update of the python3 package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0332. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Security Bulletin: IBM Resilient SOAR could allow a privileged user to inject malicious commands through Python3 scripting (CVE-2020-4636).

Summary It was possible for a privileged user to inject malicious commands through Python3 scripting, using the sys module, in a Beta version of Resilient. Vulnerability Details CVEID: CVE-2020-4636 DESCRIPTION: IBM Resilient could allow a privileged user to inject malicious commands through...

Exploit for CVE-2020-2883

CVE-2020-2883 re write of...

Important Photon OS Security Update - PHSA-2020-0332

Updates of 'python3' packages of Photon OS have been released...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0289

An update of 'python3' packages of Photon OS has been released...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0332

An update of 'python3' packages of Photon OS has been released...

IoTMap - Research Project On Heterogeneous IoT Protocols Modelling

IoTMap is a tool that models IoT networks using one or multiple protocols simultaneously. This is work in progress, as a part of a PhD thesis on Internet Of Things security. This repository is regularly updated as new results are obtained. This project supports 3 protocol as this time : BLE, ZigB...

python3 security update

3.6.8-17.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-17 - Overhaul pythons FIPS mode support Resolves: rhbz1788459 3.6.8-16 - Security fix for CVE-2020-8492 Resolves: rhbz1810616 3.6.8-15 - Security fix for CVE-2019-16935 Resolves: rhbz1797999 3.6.8-14 - Provide and...

BugPoC: LFI from bypassing image parser and faking HEAD response with redirection

Summary: add summary of the vulnerability By specially crafted request, a fake python3 http server and exploit.py we can read any files from the server Supporting Material/References: list any additional material e.g. screenshots, logs, etc. Bugpoc id: bp-HdMxEwwr bp-HdMxEwwr Bugpoc pass:...

SUSE-SU-2020:2699-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2019-20907: Fixed denial of service by avoiding possible infinite loop in specifically crafted tarball bsc1174091. - CVE-2020-14422: Fixed an improper computation of hash values in the IPv4Interface and IPv6Interface could have led to deni...

SUSE-SU-2020:2650-1 Security update for SUSE Manager Server 4.0

This update fixes the following issues: hibernate5: - Address CVE-2019-14900 bsc1172079 image-sync-formula: - Allow image-sync state on regular minion. Image sync state requires branch-network pillars to get the directory where to sync images. Use default /srv/saltboot if that pillar is missing s...