ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote SQL injection vulnerability.
c5fe07e7b05786d6f07d6f09a432fc4fea83c7125de5549570e1eaafcc13b2a5ManageEngine ServiceDesk version 9.0 prior to build 9031 suffers from a remote user enumeration vulnerability.
b0b6bf9a9dab1ec3d533b6e5cd4cc1c40202b20474bcd7c7949b11077ff22ef3ManageEngine ServiceDesk Plus version 9.0 prior to build 9031 suffers from a remote privilege escalation vulnerability due to improper access controls.
1c879d55c033a0142d5afd25967e70e6b4b9946140355cc35138584d329406e7The Hack In The Box 2015 AMS Call For Papers closes at the end of January. It will be held May 26th through the 29th, 2015 at De Beurs van Berlage, Amsterdam.
ca24531f98a84457fd6625bab0661ea0ff3c4709f92e9fe52660ec5afbb4d564ferretCMS version 1.0.4-alpha suffers from cross site scripting and remote SQL injection vulnerabilities.
e833ccba84d5f20433f71ab680b92585696d02bcf2c559cbe91d1e54827ceb49SmartCMS version 2 suffers from multiple cross site scripting vulnerabilities.
d555b444dbeca536ed18b052a1222905eb7bad519789a5478cf859d96838bbc8SmartCMS version 2 suffers from multiple remote SQL injection vulnerabilities.
e1e15790d42f90cde2cfadfe486a281cb2d46f6ec3aa8cb911ff47fef02976c6Red Hat Security Advisory 2015-0079-01 - Oracle Java SE version 7 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
1e4eb67838f3d02b116ae14de77f7b06c75e052a30e2411763c237dc29b21ad6Red Hat Security Advisory 2015-0074-01 - JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.
767c871e838506d9d4f9cdf7a1f3235d99f9a9298412bdbae9ccced050a4fc3bRed Hat Security Advisory 2015-0080-01 - Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes several vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Development Kit.
15087d6179c42125f49eacdd2d3db0d4acdfa841b070da99a6f33bd8dbd2c82fUbuntu Security Notice 2482-1 - Alexander Cherepanov discovered that libelf1 incorrectly handled certain filesystem paths while extracting ar archives. An attacker could use this flaw to perform a directory traversal attack on the root directory if the process extracting the ar archive has write access to the root directory.
0501eb5ac15bf63c79698d578fb24ba1292e1cb67bffeeaf249be1b94aca86ddProgram-O version 2.4.6 suffers from http response splitting, cross site scripting, and local file inclusion vulnerabilities.
76658244af3e987274e86b16084fa6ffaf0d26aebcfead558ea9f4ca01983a80The USAA Mobile app for Android versions prior to 7.10.1 suffer from an information disclosure vulnerability.
5885b9f88356cacbdd18637c155b3a61531b959d43dbc55fb93a82fdcff79bdfarticleFR CMS version 3.0.5 suffers from a cross site scripting vulnerability.
a7eec6dd3bb01b1d47f2da23b35af63ca219b46a7c1690081c0abac2fbb389cbVarious Alibaba sites suffer from cross site scripting and open redirect vulnerabilities.
4122adb3397a297f4e601144cc131e86b766b44301d48f154f47babf55aaeed6ecommerceMajor suffers from remote SQL injection vulnerabilities.
130972cbcc57088872f5ad921761903a21a4ffdef387d6ce66b050a87a8f21e4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed