This archive contains all of the 270 exploits added to Packet Storm in June, 2023.
Debian Linux Security Advisory 5445-1 - Multiple multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
Debian Linux Security Advisory 5444-1 - Multiple multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determining which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.
Debian Linux Security Advisory 5443-1 - Multiple multiple vulnerabilities were discovered in plugins for the GStreamer media framework and its codecs and demuxers, which may result in denial of service or potentially the execution of arbitrary code if a malformed media file is opened.
Alkacon OpenCMS version 15.0 suffers from a cross site scripting vulnerability.
Inout Search Engine AI Edition version 1.1 suffers from a cross site scripting vulnerability.
During a Mojo IPC method call, there are multiple stages of validation and deserialization that take place. These assume that the contents of the message cannot be modified during the deserialization process, but the new core_ipcz implementation returns message contents directly in shared memory.
Vacation Rental version 1.8 suffers from a cross site scripting vulnerability.
Strawberry version 1.1.9 suffers from a cross site scripting vulnerability.
Sisfo Sistem Informasi Akademik LMS version 1.9.3 suffers from a cross site scripting vulnerability.
Rest-Cafe and Restaurant Website CMS version 2.0.0 suffers from a cross site scripting vulnerability.
phpFK version 9.2 Beta suffers from cross site scripting and remote SQL injection vulnerabilities.
ArabInfotech CMS version 2.0.1 suffers from a cross site scripting vulnerability.
Alumni Club Management Tools version 2.2.7 suffers from a cross site scripting vulnerability.
AngularJS Filemanager version 1.5.1 suffers from a remote shell upload vulnerability.
Alumni Club Management Tools version 2.2.7 suffers from file upload and remote SQL injection vulnerabilities.
Aplikasi Sistem Informasi Kelulusan CMS version 1.0.9 suffers from a remote file inclusion vulnerability.
Amazon S3 Droppy version 1.4.6 suffers from a remote shell upload vulnerability.
