Rockwell LOGIX 5324 ER suffers from cross site scripting and html injection vulnerabilities.
067b15345d33d64dcf2b2997a4726b76fd183947968c22049504017ad5dee336
Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.
8e965fd282bc0c09e7c4eba5f08a555d0ccf40a7d1544b939e01b90bc893d5fe
This Metasploit module will generate and upload a plugin to ProcessMaker resulting in execution of PHP code as the web server user. Credentials for a valid user account with Administrator roles is required to run this module. This Metasploit module has been tested successfully on ProcessMaker versions 1.6-4276, 2.0.23, 3.0 RC 1, 3.2.0, 3.2.1 on Windows 7 SP 1; and version 3.2.0 on Debian Linux 8.
faad1d2312ae0d7dd34fbd480806e8825f7ad43505887b1148461306fb56eabf
A security fix applied for Microsoft Edge Chakra JIT is incomplete.
7fa9ae7d44d240e41a8c31b515d60a4f1624eb25e026c49221e4151fba5ea6c4
This Microsoft bulletin summary holds information regarding Microsoft security updates for April, 2018.
667da4a16b92472c99154fffd96a51627262e006c9822e95ea42b310e251ad9e
A security fix applied for Microsoft Edge Chakra JIT is incomplete.
3218d20b4b0f7b38f5401ba0b1f959df90c67629ecd1eb26504d9375a5243f97
Chrome V8 has multiple bugs in Genesis::InitializeGlobal.
a4ae91099b943cc5ac37c117d80d600d10db590d6f64307f0ed1895f3364aaa1
Ubuntu Security Notice 3616-1 - It was discovered that Python Crypto incorrectly generated ElGamal key parameters. A remote attacker could possibly use this issue to obtain sensitive information.
626f4ce7734e7319141061eec69bc6c85cae4bec67f5f4efc6d4474c0f813ec2
Ubuntu Security Notice 3615-1 - It was discovered that LibRaw incorrectly handled photo files. If a user or automated system were tricked into processing a specially crafted photo file, a remote attacker could cause applications linked against LibRaw to crash, resulting in a denial of service, or possibly execute arbitrary code.
8062ae5b2121db4575d5563f452b1d6ae2d90188f2c8abea78afb4c986cddf94
Chrome V8 suffers from a type confusion vulnerability in ElementsAccessorBase::CollectValuesOrEntriesImpl.
ac6fee41baa624a52e82aa1b36ff3b3ed8a2add6a9505c1256898fb3cc24c9bb
This Metasploit module exploits a vulnerability in browsers using well-known property of WebRTC (Web Real-Time Communications) which enables Web applications and sites to capture or exchange arbitrary data between browsers without requiring an intermediary.
173585a0e4bca69957479fdee88e7944f21f65e0265a5608921174f45f3a0e5b