Rbcd-Attack - Kerberos Resource-Based Constrained Delegation Attack From Outside Using Impacket

Abusing Kerberos Resource-Based Constrained Delegation TL;DR This repo is about a practical attack against Kerberos Resource-Based Constrained Delegation in a Windows Active Directory Domain. The difference from other common implementations is that we are launching the attack from outside of the...

Exploit for OS Command Injection in Webmin

Webmin 1.890 expired Remote Root CVE-2019-15107 Webmin ve...

CuteNews 2.1.2 Remote Code Execution

Exploit Title: CuteNews 2.1.2 - Remote Code Execution Google Dork: N/A Date: 2020-09-10 Exploit Author: Musyoka Ian Vendor Homepage: https://cutephp.com/cutenews/downloading.php Software Link: https://cutephp.com/cutenews/downloading.php Version: CuteNews 2.1.2 Tested on: Ubuntu 20.04, CuteNews...

Bpytop - Linux/OSX/FreeBSD Resource Monitor

Resource monitor that shows usage and stats for processor, memory, disks, network and processes. Python port of bashtop. Features Easy to use, with a game inspired menu system. Full mouse support, all buttons with a highlighted key is clickable and mouse scroll works in process list and menu boxe...

Medium: python3

Issue Overview: Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes, which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or...

openSUSE: Security Advisory for python3 (openSUSE-SU-2020:1265-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Exploit for Injection in Oracle Agile_Plm

Oracle-WLS-Weblogic-RCE CVE-2019-2725 Oracle WLSWeblogic R...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2020-1900)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.6.0 : python3 (EulerOS-SA-2020-1900)

According to the versions of the python3 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface...

openSUSE Security Update : python3 (openSUSE-2020-1265)

This update for python3 fixes the following issues : - bsc1174091, CVE-2019-20907: avoiding possible infinite loop in specifically crafted tarball. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this...

openSUSE Security Update : python3 (openSUSE-2020-1258)

This update for python3 fixes the following issues : - bsc1174091, CVE-2019-20907: avoiding possible infinite loop in specifically crafted tarball. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this...

Security update for python3 (moderate)

openSUSE Security Update: Security update for python3 Announcement ID: openSUSE-SU-2020:1265-1 Rating: moderate References: 1174091 Cross-References: CVE-2019-20907 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for python3...

Updated mysql-connector-python packages fix security vulnerability

Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion o...

openSUSE: Security Advisory for python3 (openSUSE-SU-2020:1258-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for python3 (moderate)

openSUSE Security Update: Security update for python3 Announcement ID: openSUSE-SU-2020:1258-1 Rating: moderate References: 1174091 Cross-References: CVE-2019-20907 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for python3...

SUSE SLED15 / SLES15 Security Update : python3 (SUSE-SU-2020:2277-1)

This update for python3 fixes the following issues : bsc1174091, CVE-2019-20907: avoiding possible infinite loop in specifically crafted tarball. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

SUSE-SU-2020:2277-1 Security update for python3

This update for python3 fixes the following issues: - bsc1174091, CVE-2019-20907: avoiding possible infinite loop in specifically crafted tarball...

Fedora: Security Advisory for python3 (FEDORA-2020-d808fdd597)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 31 : python3 (2020-d808fdd597)

Security fix for CVE-2019-20907, CVE-2020-14422. Provide a versioned pathfix3.7.py command. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possib...

UPDATE: PoshC2 v6.0

PoshC2 v6.0 was released a couple of months ago which includes a number of significant and exciting features. Additionally it contains a lot of bug fixes and small improvements as well! What is PoshC2? PoshC2 is a proxy aware C2 framework in Python3, used to aid penetration testers with red...