Ubuntu Security Notice 4610-1 - It was discovered that fastd did not properly handle receive buffers under certain circumstances. A remote attacker could possibly use this issue to cause a memory leak, resulting in a denial of service.
7225f406912029ab5850aa49817a45def40c82882cd9a1c3d4b2da243bdd102cOracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.
269998241a3473e130c36a33e8a41a91634ae92b38578c7c0fcfcf81171abc62Red Hat Security Advisory 2020-4401-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6, 7, and 8. Issues addressed include an XML injection vulnerability.
b7a02e45e46a228bef4652e4bb70313bcdbe4a054740dfa641d3a40949ec80f3Genexis Platinum-4410 version P4410-V2-1.28 suffers from a cross site request forgery vulnerability.
cd3794a1c45a5196d326376b26aa0d62abf73663d405a3b352ac105735b4a929Lot Reservation Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
8fb8b5d6d2181fe1523827a17f4627a5c49aa055796b0e3e5ab5f3bc01aa3b1aLot Reservation Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
82d342e2bf7eda1f9e1546ed794e9b91d12e1025ccb9a63ba9876f781aa39c9eIcewarp WebMail version 11.4.5.0 suffers from a cross site scripting vulnerability.
bd4b225bf09ba2d23836eae6d0eef301010ef1a0c956eef8b47d2a92c566bc58Ubuntu Security Notice 4609-1 - Fabian Henneke discovered that GOsa incorrectly handled client cookies. An authenticated user could exploit this with a crafted cookie to perform file deletions in the context of the user account that runs the web server. It was discovered that GOsa incorrectly handled user access control. A remote attacker could use this issue to log into any account with a username containing the word "success". Various other issues were also addressed.
daa46d595ce73c679a0617cf76033ccd2ccb549456af6f754422eaa95cc0f686Mailman versions 1.x up through 2.1.23 suffer from a cross site scripting vulnerability.
3acd354767ea65719c08384106b042f59668c91d3587059546459b8bc4c33aa3Point of Sales version 1.0 suffers from a persistent cross site scripting vulnerability.
b1abcd5d7eb0894c7563e29ca9a278b410be32cd7afa181ae98954a8747fbcb7Red Hat Security Advisory 2020-4402-01 - Red Hat JBoss Enterprise Application Platform 7.3 is a platform for Java applications based on the WildFly application runtime. This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.3. Issues addressed include an XML injection vulnerability.
f8f28f5ec717284a1b7ad5d39c088e87cc54b36b3b01f6f0b0e3b6a38a22f0aaOnline Examination System version 1.0 suffers from a persistent cross site scripting vulnerability.
abf23d72c2354792e43130404aef9ac045c0c9a640bd817b3ac572f49386bb3c
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed