Lansweeper version 6.0.100.29 suffers from an XML external entity injection vulnerability.
ac359c8576cebe46e9bfc2fd930fc500RSA Archer GRC version 6.2.0.5 suffers from cross site scripting, privilege escalation and remote file upload vulnerabilities.
ff86d3a0cf645804901bcb7686be5d89EMC Network Configuration Manager (NCM) is affected by a reflected cross site scripting Vulnerability that could potentially be exploited by malicious users to compromise the affected system. Versions 9.3.x, 9.4.0.x, 9.4.1.x, and 9.4.2.x are affected.
d70b3a9108ef7564849d77bacd8d19a8WordPress version 4.8.2 fails to have an expiration mechanism tied to activation keys allowing for eternal use.
3c28a295dac492af383a14d0c08a3698Ubuntu Security Notice 3440-1 - It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service. It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service. This issue only affected Ubuntu 17.04 and 16.04. Various other issues were also addressed.
a7184fb5c2d1967aa5ee4d3cd110c968This is a collection of exploits for the recently-patched win32kfull!bFill vulnerability. Executing the Palette or Bitmap exploit will give you SYSTEM privileges on the affected system. The exploits should work fine on Windows 10 x64 with Creators Update, build 15063.540 (latest version of Win10 before the release of Microsoft's September Updates).
1bbb2193435fcfc4958108cf2fde83e9
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed