Advantech Switch Bash Environment Variable Code Injection (Shellshock)
CoreMail XT3.0 Cross Site Scripting
CoreMail version XT3.0 suffers from a stored cross site scripting vulnerability.
Easy File Sharing Web Server 7.2 Buffer Overflow
Easy File Sharing Web Server version 7.2 remote SEH buffer overflow exploit using DEP bypass with ROP.
Belkin N150 XSS / CSRF / Session Hijacking
Belkin N150 wireless home routers suffer from cross site request forgery, cross site scripting, session hijacking, and default credential vulnerabilities.
HumHub 0.11.2 / 0.20.0-beta.2 SQL Injection
HumHub versions 0.11.2 and 0.20.0-beta.2 suffer from a remote SQL injection vulnerability.
Brocade Fabric OS 6.3.1b Weak System Configuration
Brocade Fabric OS version 6.3.1b suffers from multiple weak system configuration issues that can result in system compromise. You actually have to go out of your way to break basic Linux security this badly.
Packet Storm New Exploits For November, 2015
This archive contains 190 exploits that were added to Packet Storm in November, 2015.
[papers] – [Hebrew] Digital Whisper Security Magazine #66
[Hebrew] Digital Whisper Security Magazine #66
[webapps] – Kodi 15 – Arbitrary File Aaccess (Web Interface)
Kodi 15 – Arbitrary File Aaccess (Web Interface)
[local] – Centos 7.1/Fedora 22 – abrt Local Root
Centos 7.1/Fedora 22 – abrt Local Root