7422 matches found
DSA-2249-1 jabberd14 - denial of service
Bulletin has no description...
Cross-Site Request Forgery
Cross-Site Request Forgery Security auditing tests performed on a Jira Bug Issue and Project Tracking Software locally running instance shown that the application is succeptible to Cross-Site Request Forgery attacks within this URL: /jira/plugins/servlet/streamscomments This vulnerability enables...
Slackware current : slackware-current security updates (SSA:2005-251-03)
This advisory summarizes recent security fixes in Slackware -current. Usually security advisories are not issued on problems that exist only within the test version of Slackware slackware-current, but since it's so close to being released as Slackware 10.2, and since there have been several...
Metasploit Holding On Siemens Exploits
UPDATE: A week after a security researcher decided to cancel a technical discussion of security holes in industrial control software from Siemens, Inc., public exploits for the vulnerabilities are on hold while the company works to shore up systems running its Simatic programmable logic controlle...
Arachni v.0.2.3 - Open Source Web Application Security Scanner Framework
Arachni v.0.2.3 - Open Source Web Application Security Scanner Framework Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.Arachni is smart, it trains itself by learning from...
The Social-Engineer Toolkit v1.4 latest Version !
The Social-Engineer Toolkit v1.4 latest Version ! The Social Engineering Toolkit SET is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing. It's main purpose is to augment and simulate social-engineering attacks and allow the tester to...
WordPress plugins EditorMonkey upload vulnerability-vulnerability warning-the black bar safety net
WordPress plugins EditorMonkey there upload vulnerability. With WINDOWS2003 System please note Oh. This vulnerability is fckeditor the uploaded hole. No need in speaking, Everyone in the familiar. Still comes with the editor security. Vulnerability testing are as follows:...
Debian: Security Advisory (DSA-2192-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
BackTrack 5 Released - Direct FTP Download Now !
BackTrack 5 Released – Penetration Testing Distribution, Download Now ! Download : Direct Links from FTP :...
BackTrack 4: Assuring Security by Penetration Testing
BackTrack 4 : Assuring Security by Penetration Testing Written as an interactive tutorial, this book covers the core of BackTrack with real-world examples and step-by-step instructions to provide professional guidelines and recommendations to you. The book is designed in a simple and intuitive...
SPlayer 3.7 (build 2055) - Remote Buffer Overflow
!/usr/bin/python Exploit Title: SPlayer Software Link: http://www.splayer.org/index.en.html Versions: URL ctrl+u ... 3. Input the server URL and Click OK ... 4. Boom!/calc ... Method 2: 1. Execute this script ... 2. Launch SPlayer and click Open ctrl+o ... 3. Browse to any playlist file m3u, pls ...
Pangolin 3.2.3 - Automatic SQL injection penetration testing tool New Release !
Pangolin 3.2.3 - Automatic SQL injection penetration testing tool New Release ! Pangolin is an automatic SQL injection penetration testing Pen-testing tool for Website manager or IT Security analyst. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications...
Live Hacking DVD v1.3 Beta - Download !
Live Hacking DVD v1.3 Beta - Download ! Live Hacking DVD is a new Linux distribution packed with tools and utilities for ethical hacking, penetration testing and countermeasure verification. Based on Ubuntu this 'Live CD" runs directly from the DVD and doesn't require installation on your...
Mageia 1 Beta 2 released [ Testing Edition ]
Mageia 1 Beta 2 released Testing Edition Three weeks after the first beta arrived, the Mageia development team has announced the release of the second beta for version 1.0 of its Mandriva Linux fork. According to the project roadmap, Mageia 1 Beta 2 will be followed by a release candidate on 17 M...
Pangolin v3.2.3 Released, Download Now !
Pangolin v3.2.3 Released, Download Now ! "Pangolin is a penetration testing, SQL Injection test tool on database security. It finds SQL Injection vulnerabitlities.Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL...
The Social-Engineer Toolkit v1.3.5 Released !
The Social-Engineer Toolkit v1.3.5 Released ! "The Social Engineering Toolkit SET is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing. It's main purpose is to augment and simulate social-engineering attacks and allow the tester to...
Universal Fuzzer by Codenomicon !
Codenomicon is a Finland based Information Security company. Recently it has released a universal fuzzer, a fuzz testing solution that combines heuristics and multiple fuzzers with a graphical user interface, automated test executions and reporting features. Fuzzing has been popular between hacke...
Panshi China asp the backstage management system upload vulnerability and fix-vulnerability warning-the black bar safety net
By: Red snow Official: http://www.chpanshi.net/ Ver: asp Enterprise version, the background structure is substantially a touch of the same. Large cattle bypass, this no technical content, just speak from experience, guys don't yell at me for. (Thank you Allen upx8 invitation code Nothing else, op...
BodgeIt Store : Vulnerable Web Application For Penetration Testing !
BodgeIt Store : Vulnerable Web Application For Penetration Testing ! Features Easy to install – just requires java and a servlet engine, e.g. Tomcat Self contained no additional dependencies other than to 2 in the above line Easy to change on the fly – all the functionality is implemented in JSPs...
DirectoryScanner - Free Directory Server fingerprinting tool !
DirectoryScanner - Free Directory Server fingerprinting tool ! DirectoryScanner is the FREE Directory Server fingerprinting tool. It can help you to remotely detect the type of Directory servers such as Microsoft Active Directory, Novell eDirectory etc running on the local network as well as...