🛠SQLMAP - Automatic SQL Injection Tool 1.4.6 ðŸ›
📖 Go!
via "Security Tool Files ≈ Packet Storm".
sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.📖 Go!
via "Security Tool Files ≈ Packet Storm".
Packetstormsecurity
SQLMAP - Automatic SQL Injection Tool 1.4.6 ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
ATENTION‼ New - CVE-2019-12012
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12011
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12010
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12009
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12008
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12007
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12006
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12005
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12004
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-12003
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.📖 Read
via "National Vulnerability Database".
🕴 Rare NSA Advisory About Russia-Based Cyberattacks Unlikely to Stop Them 🕴
📖 Read
via "Dark Reading: ".
The Sandworm group -- behind disinformation and election-hacking campaigns and responsible for a 2016 power outage in the Ukraine -- is now targeting e-mail servers.📖 Read
via "Dark Reading: ".
Dark Reading
Rare NSA Advisory About Russia-Based Cyberattacks Unlikely to Stop Them
The Sandworm group -- behind disinformation and election-hacking campaigns and responsible for a 2016 power outage in the Ukraine -- is now targeting e-mail servers.
ATENTION‼ New - CVE-2014-9702
📖 Read
via "National Vulnerability Database".
system/classes/DbPDO.php in Cmfive through 2015-03-15, when database connectivity malfunctions, allows remote attackers to obtain sensitive information (username and password) via any request, such as a password reset request.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8945
📖 Read
via "National Vulnerability Database".
admin.php?page=projects in Lexiglot through 2014-11-20 allows command injection via username and password fields.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8944
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows XSS (Reflected) via the username, or XSS (Stored) via the admin.php?page=config install_name, intro_message, or new_file_content parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8943
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows SSRF via the admin.php?page=projects svn_url parameter.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8942
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows CSRF.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8941
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows SQL injection via an admin.php?page=users&from_id= or admin.php?page=history&limit= URI.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8940
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows remote attackers to obtain sensitive information (names and details of projects) by visiting the /update.log URI.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8939
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows remote attackers to obtain sensitive information (full path) via an include/smarty/plugins/modifier.date_format.php request if PHP has a non-recommended configuration that produces warning messages.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2014-8938
📖 Read
via "National Vulnerability Database".
Lexiglot through 2014-11-20 allows local users to obtain sensitive information by listing a process because the username and password are on the command line.📖 Read
via "National Vulnerability Database".