Libpcap is a portable packet capture library which is used in many packet sniffers, including tcpdump.

NetSetManPro version 4.7.2 suffers from a privilege escalation vulnerability.

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions. This is the LTS release.

Accela Civic Platform version 21.1 suffers from a cross site scripting vulnerability.

Backdoor.Win32.Zombam.gen malware suffers from a buffer overflow vulnerability.

WordPress Database Backups plugin version 1.2.2.6 suffers from a cross site request forgery vulnerability in the databased backup download functionality.

Ubuntu Security Notice 4987-1 - It was discovered that ExifTool did not properly sanitize user data for the DjVu file format. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code.

Grocery Crud version 1.6.4 suffers from a remote SQL injection vulnerability.

Ubuntu Security Notice 4986-3 - USN-4986-1 fixed a vulnerability in rpcbind. The update caused a regression resulting in rpcbind crashing in certain environments. This update fixes the problem. It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Various other issues were also addressed.

OpenEMR version 5.0.0 authenticated remote shell upload exploit.

Backdoor.Win32.Zombam.gen malware suffers from a code execution vulnerability.

Backdoor.Win32.Zombam.gen malware suffers from a cross site scripting vulnerability.

WoWonder Social Network Platform version 3.1 suffers from an authentication bypass vulnerability.

Zenario CMS version 8.8.52729 suffers from authenticated blind and error-based remote SQL injection vulnerabilities.

Red Hat Security Advisory 2021-2380-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation.

Cerberus FTP Web Service version 11 suffers from a persistent cross site scripting vulnerability.

Microsoft SharePoint Server version 16.0.10372.20060 suffers from a GetXmlDataFromDataSource server-side request forgery vulnerability.

Ability FTP server version 2.34 APPE denial of service exploit.

Solar-Log 500 version 2.8.2 suffers from password disclosure vulnerabilities.

Solar-Log 500 version 2.8.2 suffers from an incorrect access control vulnerability.

Ubuntu Security Notice 4971-2 - USN-4971-1 fixed several vulnerabilities in libwebp. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

Red Hat Security Advisory 2021-2375-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.

This Metasploit module allows an attacker with knowledge of the admin password of NSClient++ to start a privileged shell. For this module to work, both web interface of NSClient++ and ExternalScripts feature should be enabled.