Joomla Remository component version 3.58 suffers from database disclosure, remote shell upload, and remote SQL injection vulnerabilities.
0b8a3fd3fb2c96d845763215df15bf6230cd38540015adf11d9101520ce038cb
Joomla MorfeoShow component version 1.2.0 suffers from a remote SQL injection vulnerability.
6c8fbcb938603949f29764f9b348ddc8932b7238b0523c32a2b6486c41488787
Joomla JUserTube component version 8.3.1 suffers from a remote SQL injection vulnerability.
d7908d85bb166d7c8aa0dbb477f6198b1109bb530796620271313fd791c6d325
Joomla JooMap component version 2.0.6 suffers from a remote SQL injection vulnerability.
ba274efa3f2751546516e01b7f2036c1b2eaf3fcc7e39e969a16c74004600e06
Joomla JEvents component version 3.4.47 suffers from a remote SQL injection vulnerability.
561875d1a0bf13d024259943e104c26eebb5c0c704e3f8a58ddabb1794863834
Joomla JComments component version 3.0.5 suffers from a remote SQL injection vulnerability.
31b34f759421df36315a242862bae605693e126d38a942133e42fbd2d48040dc
Joomla JCalPro Calendar component version 4.3.26 suffers from a remote SQL injection vulnerability.
1db22131b57e10d5fe99d1144b14ae0b34eb2ec2edf213ece9353bc5dd5f6169
Joomla HWDVideoShare component version 1.5 suffers from bypass, database disclosure, and remote SQL injection vulnerabilities.
711ad2aa21514600ccdc335befa494e8199c5acbac1ff1ff9ab0b042fd72e346
Joomla HotelGuide component version 1.0 suffers from a remote SQL injection vulnerability.
fbf7ede2739e039115291db912cf37de0cf44c402bd866b2853fa1cda72dfd8a
Joomla Formularz component version 1.0.2 suffers from a remote SQL injection vulnerability.
1bd4f42de3c10d508f03204abb3916b04c526232993d397a3606c97ed20b5d23
WeBid version 1.2.2 suffers from multiple cross site scripting vulnerabilities.
664795ab23255cbc8b85734dbf2e570c5d2010fe63665bf3278f21d340f67273
Ubuntu Security Notice 3876-2 - USN-3876-1 fixed a vulnerability in Avahi. This update provides the corresponding update for Ubuntu 12.04 ESM. Chad Seaman discovered that Avahi incorrectly handled certain messages. An attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.
534ed3e8821dc2c6659ee366ead6ba94eac2668ade728ba640d133a073ca6ca5
Ubuntu Security Notice 3876-1 - Chad Seaman discovered that Avahi incorrectly handled certain messages. An attacker could possibly use this issue to cause a denial of service.
ecd33e9fdc0496684eebe6cc33ebb1d0db04916edfc7e746fe047c4f2255c5fc
Slackware Security Advisory - New kernel packages are available for Slackware 14.2 to fix security issues.
b00c9750a9d1a5293cf1b00be4962a74b7a8b39c5ae241b16f2e5d2e209b667b
Ubuntu Security Notice 3875-1 - It was discovered that a memory disclosure issue existed in the OpenJDK Library subsystem. An attacker could use this to expose sensitive information and possibly bypass Java sandbox restrictions.
b8000d2283c05e4e0b377807f40d4d13096a58c131b3b0ae930ed8fee16f9d08
Ubuntu Security Notice 3874-1 - Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, gain additional privileges by escaping the sandbox, or execute arbitrary code. It was discovered that Firefox allowed PAC files to specify that requests to localhost are sent through the proxy to another server. If proxy auto-detection is enabled, an attacker could potentially exploit this to conduct attacks on local services and tools. Various other issues were also addressed.
849e56e87e660f92ac3299e134feb4c3b7036ae3b970cdc33d069972baca43c4
UltraISO version 9.7.1.3519 local buffer overflow SEH exploit.
6ab8a0be9621c72336bf3c3a52766bd10ac6041fa0b278ef35cb5cc1496ef4e2
AnyBurn x86 version 4.3 suffers from a denial of service vulnerability.
f0b728371088f2c5e8db6b8d83c58786df87204d9660153e3bd8f547200264d1
R i386 version 3.5.0 local buffer overflow SEH exploit.
a4af3b0cf6c770e0a4bffd814b8b4abd7a0fc4844ab958cf2b588386d96df166
Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
f23dd57561f273a7e39e4597277571973dadbab6a131a4712340a6d0b36091f5
iOS and MacOS suffer from a kernel heap overflow in PF_KEY due to lack of bounds checking when retrieving statistics.
bdaf091fad9a237fd95f4fa168b1b385cfb161f48fc179a6801b4e62a8099278
XNU vm_map_copy optimization which requires atomicity is not atomic. This violates the semantics of mach message OOL memory, and leads to TOCTOU issues which can lead to memory corruption.
b373ad17106c25ccfb2435934691e9a515824d6d61c83d2a4930737e86b27e33
XNU suffers from a copy-on-write behavior bypass via partial-page truncation of file.
ce2ac26d2111768bdd27f895202eac13116d1f30581d7892e8a671a7f8ac55db
iOS and MacOS suffers from sandbox escape vulnerabilities due to type confusions and memory safety issues in iohideventsystem.
b146623feeb4a1369ee8ad78d27a529480b21c17737e192ad3c2686b0448d8cb
libxpc on MacOS version 10.14.1 suffers from an arbitrary mach port name deallocation in XPC services due to invalid mach message parsing in _xpc_serializer_unpack.
861787c4c8e28e6258f60f01561930d07585075db06c25a1f80b7aadb5eeb770