Ubuntu Security Notice 4546-2 - USN-4546-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, conduct cross-site scripting attacks, spoof the site displayed in the download dialog, or execute arbitrary code. Various other issues were also addressed.
9fa390400b90725591b05ad6401ad5a2b88ddd36e68f9371f702b46e54d920d1Company Visitor Management System (CVMS) version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
af8fb948a18df47ea84e7177a0d8c922d6ecb85b7b76f77d53c5bf468a71b6d0Ubuntu Security Notice 4584-1 - It was discovered that HtmlUnit incorrectly initialized Rhino engine. An attacker could possibly use this issue to execute arbitrary Java code.
b8124b76f47d019853a112e09a4fda95134bf7fb149e85fd0ad783bb35d8fc9eUbuntu Security Notice 4585-1 - It was discovered that Newsbeuter didn't handle the command line input properly. An remote attacker could use it to ran remote code by crafting a special input file. It was discovered that Newsbeuter didn't handle metacharacters in its filename properly. An remote attacker could use it to ran remote code by crafting a special filename.
c447a0aad4e9947db086e7d4049ea7922567dcab57422db39e7b39ab45b28b73Hotel Management System version 1.0 authenticated remote code execution exploit.
08ff254f1e8a52c56b93012679becb0541e461658d39157a2513fc731b8347c9Details for performing a local file inclusion attack on CS-Cart version 1.3.3, a really old version.
ddf9554006d39786c262545673c21d61bb45fc6461be190a2232a46653661721Details for achieving remote code execution on CS-Cart version 1.3.3, a really old version.
4f690f72e60232a009b2067ca291afec05fa7b7866b7cdeba59bfcaa0b0084bcUbuntu Security Notice 4589-2 - USN-4589-1 fixed a vulnerability in containerd. This update provides the corresponding update for docker.io. It was discovered that containerd could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials. Various other issues were also addressed.
4eeaadc36e62548aa8f1da1618bdeca1854185c3d5e433ccdb2502a10b3c5332aaPanel version 6.6.6 suffers from an authenticated privilege escalation vulnerability.
2211537a3452ffe270f5fed8d6ec95d21b646d444f61e5906a69cb83b03590c7Ubuntu Security Notice 4589-1 - It was discovered that containerd could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials.
9ea02fe8e9f867ac862dbfddcf410407b17d9db9851898275ec3cebab3b08a4dAlumni Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
afc432620a5faf0c07c182432ff57614c22688782ac7f4407527c2558f8916e8Employee Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
a21759c1aa0ba2667463ded7300cde4c3e67bbb611cb84e5532e40643de0fef6Employee Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
9a5f276288b1cae15f194588db58784b9e500432dfc6413bc5bbdd82c2dd46a2
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed