Ubuntu Security Notice 3945-1 - It was discovered that Ruby incorrectly handled certain RubyGems. An attacker could possibly use this issue to execute arbitrary commands. It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code.
07662eb98638315d7a099a07debfc7edf0f7ee599416db7060d2ec162c0b8110
Ubuntu Security Notice 3946-1 - It was discovered that rssh incorrectly handled certain command-line arguments and environment variables. An authenticated user could bypass rssh's command restrictions, allowing an attacker to run arbitrary commands.
b3912f7c3ac4d52ac8b9e4852a3b76a0715abb7ec40879e56706a9a715489272
DirectAdmin versions 1.561 and below suffer from multiple cross site scripting vulnerabilities.
dcaf32312339441ba4c692d4b9603ae0978bffa52472b7c46e4e7c952fa3098d
This Metasploit module allows the user to run commands on the server with the teacher user privilege. The 'Upload files' section in the 'File Manager' field contains an arbitrary file upload vulnerability.
e818dbce1a6208f6186c65252ddd95a25f1f0b84f2a4a999e93d6590533bfe01
CyberArk EPM version 10.2.1.603 suffers from a security restrictions bypass vulnerability.
490f42a967a0b32da3a9d5cf8f8530950bf2dcd1de52864b50cbb87f445526cc
Various vulnerabilities have been found in Nagios XI version 5.5.10, which allow a remote attacker able to trick an authenticated victim (with "autodiscovery job" creation privileges) to visit a malicious URL to obtain a remote root shell via a reflected cross site scripting, an authenticated remote code Execution and a local privilege escalation.
bd7ba51447ff283af06552296e4ab6e0b1d5900d3254b328db7bc4d193fd6f66
149 bytes small Linux/x86 add user to passwd file shellcode.
bf73d95b4a5baef9f67e3f2b18778db4bfc0f6b65967c221db6809a94407bca0
OrangeScrum Project Management Software version 1.6.1 suffers from a database disclosure vulnerability.
c4920d9adff7a1fb486ee1561b53f7c9f5078a6c5653819138675c8c5049b811
Opus Online Placement University System version 4.2.0 suffers from a database disclosure vulnerability.
fed769d8c0046136fd9e3b6212221ec9bb2f444e7cab9976321997f8a9301088
JobSkee Open Source JobBoard version 1.1.3 suffers from a database disclosure vulnerability.
798abfaa6d82e45fa0c99107ff3e3f78f74427e328e8e84a823e4ae1ee45ddb6
Gibbonedu The Flexible School Platform version 17.0.00 suffers from a database disclosure vulnerability.
871c837da3fea767e897e8a5a4d450394f9263182f5283d78ba7d67ae85a5223