Mezzanine version 4.1.0 suffers from an arbitrary file upload vulnerability.
813b0be41d38f600989de17d7d0f45a37145bc000e505054e9460f3620e40ca3
Mezzanine version 4.1.0 suffers from a cross site scripting vulnerability.
524c11303d89f8625930c3101599a2f7925f02d093c9e7b0ba3a472f23ebc8b3
MailPoet Newsletters version 2.6.19 suffers from a cross site scripting vulnerability.
164d446318a7790e67a91feecfaf91ba7753b32b1ca75228424b9a784e8aa388
Debian Linux Security Advisory 3465-1 - Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in breakouts of the Java sandbox, information disclosure, denial of service and insecure cryptography.
0be69940e2375e7cfbc124ce3834ce8622f7c246ff6e8dadd9f5638a96cb207d
Red Hat Security Advisory 2016-0118-01 - Red Hat JBoss Operations Network is a Middleware management solution that provides a single point of control to deploy, manage, and monitor JBoss Enterprise Middleware, applications, and services. This JBoss Operations Network 3.3.5 release serves as a replacement for JBoss Operations Network 3.3.4, and includes several bug fixes.
7194b9c62a49a65018efc34f3d9462be83103fbaba6fdfadf6ed8ab887078a7f
Ubuntu Security Notice 2891-1 - Qinghao Tang discovered that QEMU incorrectly handled PCI MSI-X support. An attacker inside the guest could use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.10. Lian Yihan discovered that QEMU incorrectly handled the VNC server. A remote attacker could use this issue to cause QEMU to crash, resulting in a denial of service. Various other issues were also addressed.
580fef167211b4ece7f738dc32249f6c7969c59f39bd284bc8a9068f2cf50c33
Opendocman version 1.3.4 suffers from a cross site request forgery vulnerability.
fe2c78e4d71daabe83e92e34041a0900b201f58a5ce9f1a8272cb7673fbb3e75
Opendocman version 1.3.4 suffers from an html injection vulnerability.
a53ed3455296d279fd0fe580f3f96ff9ee939163d5459f414db8d322bf6af452
D-Link DVG-N5402SP suffers from path traversal, weak credential management, and information leakage vulnerabilities.
bc547aa0033ab82aa8fde53becfd4db4431c4707fc91ae4fc5ab5866a936dbad
yTree version 1.94-1.1 suffers from a buffer overflow vulnerability.
0e7ead46b42002843a1d0ddc376869245f0850757fbe65783bc64b7a91ae50ad
Atutor version 2.2 suffers from a cross site scripting vulnerability.
50ffe9f30ffc04cbef2b00aabb0430927dda4e691a9a92e61ad6aaff6e67387d
Equibase.com suffers from an html injection vulnerability that may allow for cross site scripting.
db68a1e8b0bb1bf6362553c52c19c3c19de118c927925dbc15bbf4ffd8f8df6c
Red Hat Security Advisory 2016-0103-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. It was found that the x86 ISA is prone to a denial of service attack inside a virtualized environment in the form of an infinite loop in the microcode due to the way delivering of benign exceptions such as #DB is handled. A privileged user inside a guest could use this flaw to create denial of service conditions on the host kernel. A use-after-free flaw was found in the way the Linux kernel's key management subsystem handled keyring object reference counting in certain error path of the join_session_keyring() function. A local, unprivileged user could use this flaw to escalate their privileges on the system.
9927db3d6722b1df950202392e8bc511c9d1a2eb779e99e2d270206e4e63aa86
Baumer VeriSens Application Suite version 2.6.2 suffers from a vulnerability that is caused due to a boundary error in baselibs.dll library when processing device job file, which can be exploited to cause a buffer overflow when a user opens e.g. a specially crafted .APP file. Successful exploitation could allow execution of arbitrary code on the affected machine.
b17d1dfab3582a713cd32e0016fdb381e8b329c48bf88769365d1d41b53cfc3b
Oracle 9i XDB FTP PASS overflow for win32. Ported to python from the oracle9i_xdb_ftp_pass.rb exploit.
c76afb229ccd6ac3298763a1ff4cafc65db00bf77e00f2bd1bfe8a4dfe743f28