Ubuntu Security Notice 4546-2 - USN-4546-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, conduct cross-site scripting attacks, spoof the site displayed in the download dialog, or execute arbitrary code. Various other issues were also addressed.
fb28fc67ccf3d5335d2f50642f5cdb2fCompany Visitor Management System (CVMS) version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
4157302994cd9e55e94b6aa44dd0fed1Ubuntu Security Notice 4584-1 - It was discovered that HtmlUnit incorrectly initialized Rhino engine. An attacker could possibly use this issue to execute arbitrary Java code.
b7189a4381921c21c27a3059b8f5a87fUbuntu Security Notice 4585-1 - It was discovered that Newsbeuter didn't handle the command line input properly. An remote attacker could use it to ran remote code by crafting a special input file. It was discovered that Newsbeuter didn't handle metacharacters in its filename properly. An remote attacker could use it to ran remote code by crafting a special filename.
328a24e2a98284b91341a4629d487991Hotel Management System version 1.0 authenticated remote code execution exploit.
b1e5c8ead51128c4406e997548fee939Details for performing a local file inclusion attack on CS-Cart version 1.3.3, a really old version.
efd32d23b8016e8ae463a6c744326e4eDetails for achieving remote code execution on CS-Cart version 1.3.3, a really old version.
0df18b37ecb146e84ab2c6be59243438Ubuntu Security Notice 4589-2 - USN-4589-1 fixed a vulnerability in containerd. This update provides the corresponding update for docker.io. It was discovered that containerd could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials. Various other issues were also addressed.
0ff1cab3c8d8dd33e88294428bb3c3f2aaPanel version 6.6.6 suffers from an authenticated privilege escalation vulnerability.
ac5ca21c395c29533c6fbe1f9acd7f8eUbuntu Security Notice 4589-1 - It was discovered that containerd could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials.
6b7595a2ebb73feb35765b548371311fAlumni Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
7b8afdc94572790d06c5077a22852933Employee Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
6d7ec2c19f434bf7f9aa62926297c104Employee Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
a80ca0838198403530e102e443f586df
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed