From sales at d2sec.com  Sun Dec  2 20:53:44 2018
From: sales at d2sec.com (DSquare Security)
Date: Sun, 2 Dec 2018 14:53:44 -0600
Subject: [Canvas] D2 Exploitation Pack 2.31, December 3, 2018
Message-ID: <20181202205344.GA7830@d2sec.com.theplanet.host>

D2 Exploitation Pack 2.31 has been released with 4 new exploits.

This month we provide you three remote exploits for JQuery Upload File, 
ASUSTOR ADM and Navigate CMS. We also added one new exploit to pwnrouter.


Don't forget to follow us: https://twitter.com/d2sec


D2 Exploitation Pack is updated each month with new exploits and tools.
For customized exploits or tools please contact us at info at d2sec.com.

For sales inquiries and orders, please contact sales at d2sec.com

--
DSquare Security, LLC
Website: https://www.d2sec.com
Twitter: https://twitter.com/d2sec
YouTube: https://www.youtube.com/user/dsquaresecurity


Changelog:

version 2.31 December 3, 2018
------------------------------

canvas_modules - Added: 
- d2sec_jqueryupload: JQuery Upload File 4.0.2 Remote Code Execution Vulnerability
- d2sec_navigatecms: Navigate CMS 2.8 Remote Code Execution Vulnerability
- d2sec_asustor: ASUSTOR ADM Remote Code Execution Vulnerability
- d2sec_pwnrouter:
  d2sec_zyxel_4: Zyxel VMG1312-B10D Path Traversal Vulnerability   


From audit at gleg.net  Wed Dec 26 17:11:34 2018
From: audit at gleg.net (Yuriy Gurkin)
Date: Wed, 26 Dec 2018 20:11:34 +0300
Subject: [Canvas] SCADA+ pack 1.85 is out
Message-ID: <CAGZXBLiyvqKYvpw1xXx_sMAyDQbjFi0Ncv+5Nfmj-1h0tiXrqw@mail.gmail.com>

Hi, List,

1.85 ver. of SCADA+ contains 4 modules. List:

- IGSS Arbitrary File Disclosure. [1Day]
- Advantech webaccess exec -  remote users can upload and execute malicious
.aspx file. [1Day]
- CyBroHttpServer Directory Traversal. [1Day]
- DataRate v4.1 fake project file allows for Code Execution. [1Day]

Happy pentesting,
Gleg`s Security team <http://gleg.net/>
Follow us on Twitter: GlegExploitPack <https://twitter.com/GlegExploitPack>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/canvas/attachments/20181226/49209296/attachment.html>

From audit at gleg.net  Wed Dec 26 17:14:02 2018
From: audit at gleg.net (Yuriy Gurkin)
Date: Wed, 26 Dec 2018 20:14:02 +0300
Subject: [Canvas] DefPack pack 1.38 is out
Message-ID: <CAGZXBLiGEP3YiuPu2QeBUKuKhR1cAfkexmw_66YsLG7D73hj4A@mail.gmail.com>

Hi, List,

1.38 ver. of DefPack contains 5 modules. List:

- Unitrends UEB 9.1 - Unauthenticated Remote Code Execution.
[CVE-2017-12477.]
- TrustPort Management - Remote Code Execution. public
- TP-Link Technologies TL-WA850RE Wi-Fi Range Extender - Unauthorized
Remote Reboot.
- Cisco Prime Collaboration Provisioning < 12.1 - Authentication Bypass /
Remote Code Execution. [CVE-2017-6622]
- Cisco RV110W Password Disclosure and OS Command Execute. [CVE-2014-0683],
[CVE-2015-6396]

Happy pentesting,
Gleg`s Security team <http://gleg.net/>
Follow us on Twitter: GlegExploitPack <https://twitter.com/GlegExploitPack>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/canvas/attachments/20181226/84e80d28/attachment.html>

From audit at gleg.net  Wed Dec 26 17:15:46 2018
From: audit at gleg.net (Yuriy Gurkin)
Date: Wed, 26 Dec 2018 20:15:46 +0300
Subject: [Canvas] Agora pack 2.84 is out
Message-ID: <CAGZXBLhAupBs26ffFtr1eqDJRZSQ7YQv6H4RMEAW=x8h8wE+eA@mail.gmail.com>

Hi, List,

2.84 ver. of Agora contains 4 modules. List:

- AGG Software GPS Tracker Monitor Info Disclosure [1day]
- IceHRM Info Disclosure [1day]
- weonlydo ActiveX Remote Code Execution Vulnerability [1day]
- weonlydo wodSSH ActiveX Remote File Overwrite Vulnerability [1day]

Happy pentesting,
Gleg`s Security team <http://gleg.net/>
Follow us on Twitter: GlegExploitPack <https://twitter.com/GlegExploitPack>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/canvas/attachments/20181226/d250b920/attachment.html>

From audit at gleg.net  Wed Dec 26 17:17:07 2018
From: audit at gleg.net (Yuriy Gurkin)
Date: Wed, 26 Dec 2018 20:17:07 +0300
Subject: [Canvas] MedPack 1.27 is out
Message-ID: <CAGZXBLjH1aQj7a0NyRT1Ju6OY1Pp1e_CbXoGcSTRL3GwDOMbgg@mail.gmail.com>

Hi, List,

1.27 ver. of MedPack contains 2 module. List:

- NowMD medical insurance billing billing dbServer DoS. [1Day]
- Drager X-dock DxManager - Remote Denial of Service. [1Day]

Happy pentesting,
Gleg`s Security team <http://gleg.net/>
Follow us on Twitter: GlegExploitPack <https://twitter.com/GlegExploitPack>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.immunityinc.com/pipermail/canvas/attachments/20181226/4200284f/attachment.html>