Home Tools Page 235

Tools

The latest hacking and hacker tools. Open source offensive and defensive security tools. Browse interactive maps of offensive security tools used by malicious actors and cybercriminals. Check out some live threat maps and malware intelligence databases.

This will be a curated list of mostly open source hacking tools. These can range from Red Teaming offensive security tools to fuzzers and debuggers for malware analysis. We are always looking for new state of the art tools that can be used for security professionals. Please feel free to send us a tool via email or one of our social media accounts.

Senayan Library Management System 9.4.0 Cross Site Scripting

0
Authored by nu11secur1ty Senayan Library Management System version 9.4.0 suffers from a cross site scripting vulnerability. Change Mirror Download ## Title: Senayan Library Management System v9.4.0 a.k.a SLIMS 9XSS-Reflected- PHPSESSID Hijacking## Author:...

Senayan Library Management System 9.0.0 Cross Site Scripting

0
Authored by nu11secur1ty Senayan Library Management System version 9.0.0 suffers from a cross site scripting vulnerability. Change Mirror Download ## Title: Senayan Library Management System v9.0.0 a.k.a SLIMS 9Multiple XSS-Reflected vulnerabilities## Author:...

Senayan Library Management System 9.0.0 SQL Injection

0
Authored by nu11secur1ty Senayan Library Management System version 9.0.l0 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Title: Senayan Library Management System v9.0.0 a.k.a SLIMS 9 SQLi## Author: nu11secur1ty##...

Senayan Library Management System 9.1.0 SQL Injection

0
Authored by nu11secur1ty Senayan Library Management System 9.1.0 suffers from a remote SQL injection vulnerability. Change Mirror Download ## Title: Senayan Library Management System v9.1.0 a.k.a SLIMS 9 SQLi## Author: nu11secur1ty## Date:...

snap-confine must_mkdir_and_open_with_perms() Race Condition

0
Authored by Qualys Security Advisory Qualys discovered a race condition (CVE-2022-3328) in snap-confine, a SUID-root program installed by default on Ubuntu. In this advisory,they tell the story of this vulnerability...

Zhuhai Suny Technology ESL Tag Forgery / Replay Attacks

0
Authored by Steffen Robertz | Site sec-consult.com Zhuhai Suny Technology ESL Tag suffers from replay attacks and a forgery attack allowing for the displaying of arbitrary contents. advisories | CVE-2022-45914 Change Mirror...

Intel Data Center Manager 5.1 Local Privilege Escalation

0
Authored by Julien Ahrens | Site rcesecurity.com The latest version (5.1) and all prior versions of Intel's Data Center Manager are vulnerable to a local privileges escalation vulnerability using the...

Intel Data Center Manager 4.1 SQL Injection

0
Authored by Julien Ahrens | Site rcesecurity.com Intel Data Center Manager's endpoint at "/DcmConsole/DataAccessServlet?action=getRoomRackData" is vulnerable to an authenticated, blind SQL injection attack when user-supplied input to the HTTP POST...

py7zr 0.20.0 Directory Traversal

0
Authored by Matteo Cosentino A directory traversal vulnerability in the SevenZipFile.extractall() function of the python library py7zr versions 0.20.0 and earlier allows attackers to read arbitrary files on the local...

Windows HTTP.SYS Kerberos PAC Verification Bypass / Privilege Escalation

0
Authored by James Forshaw, Google Security Research The HTTP server implemented in HTTP.SYS on Windows handles authentication in a system thread which bypasses PAC verification leading to escalation of privilege. advisories...