D-Link DIR-615 suffers from cross site scripting and open redirection vulnerabilities. Hardware version E3 with firmware version 5.10 is affected.
a064b4156c0da33a3966fee4dfb137fa8926b8e38df505f768ebfd0be0ab208aJob Portal Script version 9.11 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
0ea65b9f6a2e3b360766ef1d29fe9246523038cdfa9a2b87333af64bea9fa19dOnline Food Delivery version 2.04 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
ef3504e27a729315a77a1c027981acd90a1b9413472dc6138d8c55a39d020b8fCA Technologies support is alerting customers to a potential risk with CA Service Desk Manager. A vulnerability exists in RESTful web services that can potentially allow a remote authenticated attacker to view or modify sensitive information. Fixes are available. The vulnerability is due to incorrect permissions being applied to certain RESTful requests that can allow a malicious user to view or update task information. This vulnerability only affects CA Service Desk Manager installations with RESTful web services running.
5eaa0a51abb6cbbce7313b731afe8060e9963da4b88081a5490512776e70f978Zimbra versions prior to 8.7 suffer from cross site request forgery vulnerabilities in the administrative interface.
d6689d77ee727b28e003d53bf04a4ea2dd4a9bd53747584c37e1020955d450eciTechscripts Freelancer Script version 5.11 suffers from a remote SQL injection vulnerability in the sk parameter.
00de6019f929fa3be1557dc60f6134ac797e31216846a7488b0a4f12961a0820School Management Software version 2.75 suffers from a remote SQL injection vulnerability.
a08d385879fe3d13f118b7eb37ba9769ef3065370ee5045f5aab760fd1b56723aSc Timetables 2017 suffers from buffer overflow and code execution vulnerabilities.
d5591eba2a75ad4da4451ebe6ca866fe3e03950fbc8488579d1b07e642e42f79Zeroshell versions 3.6.0 and 3.7.0 suffer from an unauthenticated remote code execution vulnerability.
74886281cc18d29f2b9886ef752a85acc1ecc5a30e4d7d4bf6051f94dc29067dSapLPD version 7.4.0 suffers from a denial of service vulnerability.
6a747f00b4193f34df702ab1dbb8b2f7bbffd46ffcbb8b3ce24aeed81349ad80Roxy Fileman version 1.4.5 suffers from a cross site scripting vulnerability.
4121ac2901b76a000dc187988c251ad5a0b33ca7110116e14d0094e4806781f2Mozilla Firefox versions prior to 50.1.0 use-after proof of concept exploit.
a0abe49b2a8d81d50d03d1b3cab082178a4422664af16a7ab829a975ef39fb2fUbuntu Security Notice 3172-1 - It was discovered that Bind incorrectly handled certain malformed responses to an ANY query. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. It was discovered that Bind incorrectly handled certain malformed responses to an ANY query. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. It was discovered that Bind incorrectly handled certain malformed DS record responses. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. Various other issues were also addressed.
58c88f10fc8dc7a5397e2e121f5226f25b58d9ff176839ad1ae0624464692314Slackware Security Advisory - New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue.
a540129cdd3a73df81ff38be212bd0ed152c68c38dc566c3cce5c055340718c0Slackware Security Advisory - New gnutls packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.
7a6924404be1d1075d8055a7671a2870b673ecc8a63a6325c6bb28b3ce1dff1dGentoo Linux Security Advisory 201701-35 - Multiple vulnerabilities have been found in Mozilla SeaMonkey, the worst of which could lead to the remote execution of arbitrary code. Versions less than 2.46-r1 are affected.
edb4103926996cc60bdbdba4e04c9d073a6b3369fcdbbd4d3088d21fac388142Red Hat Security Advisory 2017-0061-01 - The java-1.6.0-openjdk packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Java Software Development Kit. Security Fix: It was discovered that the Hotspot component of OpenJDK did not properly check arguments of the System.arraycopy() function in certain cases. An untrusted Java application or applet could use this flaw to corrupt virtual machine's memory and completely bypass Java sandbox restrictions.
23d303b088c7d59e4cdc2a2102510118706c67b44103806f4a5f7be875756777HP Security Bulletin HPSBGN03694 1 - A security vulnerability in DES/3DES block ciphers used in the TLS protocol, could potentially impact HPE SiteScope resulting in remote disclosure of information, also known as the SWEET32 attack. Revision 1 of this advisory.
60499046b8f857f0156f84e87369cb54b40f528e9facee341e0a82bc6cfe1da5Debian Linux Security Advisory 3758-1 - Several denial-of-service vulnerabilities (assertion failures) were discovered in BIND, a DNS server implementation.
3829c8365faeb2e9468ba3e528a71716e2884ebd1d5192cbc1b518876007a5eeGentoo Linux Security Advisory 201701-34 - A vulnerability in runC could lead to privilege escalation. Versions less than 1.0.0_rc2-r2 are affected.
acc098e4b8cff8658e011f271c9acf07c5945fff9a93f1eb6654d461c3f1ac56Gentoo Linux Security Advisory 201701-33 - Multiple vulnerabilities have been found in PostgreSQL, the worst of which could result in execution of arbitrary code or privilege escalation. Versions less than 9.5.4 are affected.
5c1835ce9d97c2296528f8ac7307f5177d1c964c2ef3bec50562a53e37dcd826Debian Linux Security Advisory 3760-1 - Multiple vulnerabilities have been found in the Ikiwiki wiki compiler.
6e19296cb5fc5a258483e73f73dbc2c2eab301083ffe901763aaddbb247034decPanel suffers from cross domain scripting, user enumeration, and information disclosure vulnerabilities.
5e5c0e3ae5d30dcc194ac4a5ec22e901a0d109f805310f2e838290d11f279c21The password reset form in Nextcloud and Owncloud suffers from a user enumeration vulnerability.
da096e428809ed496cecdae0c5425aec544c24d1e1001bda302b6555825ea2ca
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed