NtFileSins / Windows NTFS Privileged File Access Enumeration Tool

2019-09-10 Thread apparitionsec
from subprocess import Popen, PIPE import sys,argparse,re # NtFileSins v2 # Added: Check for Zone.Identifer:$DATA to see if any identified files were downloaded from internet. # # Windows File Enumeration Intel Gathering. # Standard users can prove existence of privileged user artifacts. # #

[CVE-2019-12517] SlickQuiz for Wordpress 1.3.7.1 "/wp-admin/admin.php?page=slickquiz" Multiple Stored XSS

2019-09-10 Thread Info
RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION === Product:SlickQuiz Vendor URL: https://wordpress.org/plugins/slickquiz/ Type: Cross-Site Scripting [CWE-79] Date found: 2019-05-30 Date published: 2019-09-10 CVSSv3 Score:

Dabman & Imperial (i) Web Radio Devices - Undocumented Telnet Backdoor & Command Execution Vulnerability

2019-09-10 Thread Vulnerability Lab
Document Title: === Dabman & Imperial (i) Web Radio Devices - Undocumented Telnet Backdoor & Command Execution Vulnerability References (Source): https://www.vulnerability-lab.com/get_content.php?id=2183 Video:

[SECURITY] [DSA 4519-1] libreoffice security update

2019-09-10 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-4519-1 secur...@debian.org https://www.debian.org/security/ Moritz Muehlenhoff September 08, 2019

[SECURITY] [DSA 4520-1] trafficserver security update

2019-09-10 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-4520-1 secur...@debian.org https://www.debian.org/security/ Moritz Muehlenhoff September 09, 2019

[CVE-2019-12516] SlickQuiz for Wordpress 1.3.7.1 "/wp-admin/admin.php?page=slickquiz-*" Multiple Authenticated SQL Injections

2019-09-10 Thread Info
RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION === Product:SlickQuiz Vendor URL: https://wordpress.org/plugins/slickquiz/ Type: SQL Injection [CWE-74] Date found: 2019-05-30 Date published: 2019-09-10 CVSSv3 Score: 8.1

CA20190904-01: Security Notice for CA Common Services Distributed Intelligence Architecture (DIA)

2019-09-10 Thread Kevin Kotas
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 CA20190904-01: Security Notice for CA Common Services Distributed Intelligence Architecture (DIA) Issued: September 4th, 2019 Last Updated: September 4th, 2019 CA Technologies, A Broadcom Company, is alerting customers to a potential risk with CA

NtFileSins v2.1 Windows NTFS Privileged File Access Enumeration Tool

2019-09-10 Thread apparitionsec
from subprocess import Popen, PIPE import sys,argparse,re # NtFileSins v2.1 # Fixed: save() logic to log report in case no Zone.Identifiers found. # Added: Check for Zone.Identifer:$DATA to see if any identified files were downloaded from internet. # # Windows File Enumeration Intel Gathering. #

[SECURITY] [DSA 4518-1] ghostscript security update

2019-09-10 Thread Salvatore Bonaccorso
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-4518-1 secur...@debian.org https://www.debian.org/security/ Salvatore Bonaccorso September 07, 2019

[SECURITY] [DSA 4521-1] docker.io security update

2019-09-10 Thread Moritz Muehlenhoff
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-4521-1 secur...@debian.org https://www.debian.org/security/ Moritz Muehlenhoff September 09, 2019