ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote SQL injection vulnerability.
410a8e126e6b661a1e16ec4f39867985ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote user enumeration vulnerability.
969ebed119475cccf82885461bd1189cManageEngine ServiceDesk Plus version 9.0 prior to build 9031 suffers from a remote privilege escalation vulnerability due to improper access controls.
a0c4e91c463cdb5388a57a6abdf28a25The Hack In The Box 2015 AMS Call For Papers closes at the end of January. It will be held May 26th through the 29th, 2015 at De Beurs van Berlage, Amsterdam.
687fb05048580c749fda689f55ef12eaferretCMS version 1.0.4-alpha suffers from cross site scripting and remote SQL injection vulnerabilities.
bd5ac26a49d26e0b1b4cc212bcf86a18SmartCMS version 2 suffers from multiple cross site scripting vulnerabilities.
e30391f528db25a46c1e41080284765eSmartCMS version 2 suffers from multiple remote SQL injection vulnerabilities.
f119039e9a0d09c5d1decee199e43e12Red Hat Security Advisory 2015-0079-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
7f2b97890c194c17828294013583a0cdRed Hat Security Advisory 2015-0074-01 - JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.
0f889a40f6e3a3ce29f2beb4da95201fRed Hat Security Advisory 2015-0080-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
53383b2fe13c67f37abb32082e8d6245Ubuntu Security Notice 2482-1 - Alexander Cherepanov discovered that libelf1 incorrectly handled certain filesystem paths while extracting ar archives. An attacker could use this flaw to perform a directory traversal attack on the root directory if the process extracting the ar archive has write access to the root directory.
c51852198c61de49a7850b03f95336e6Program-O version 2.4.6 suffers from http response splitting, cross site scripting, and local file inclusion vulnerabilities.
c030a1bc76d8a0c8d9edebeee19311efThe USAA Mobile app for Android versions prior to 7.10.1 suffer from an information disclosure vulnerability.
114a564976eb69af6c39e9a8665e45ecarticleFR CMS version 3.0.5 suffers from a cross site scripting vulnerability.
0b07a76437448a785036a7441401dc50Various Alibaba sites suffer from cross site scripting and open redirect vulnerabilities.
ade1643c19ac5b36e1ae30ccc307a608ecommerceMajor suffers from remote SQL injection vulnerabilities.
a03e11efd85b83053f5a366ebc35fa1a
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed