Ubuntu Security Notice 4610-1 - It was discovered that fastd did not properly handle receive buffers under certain circumstances. A remote attacker could possibly use this issue to cause a memory leak, resulting in a denial of service.
d044b963d293ca0b710d800c0f0cb6b1Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.
24fa9b1def3992595545767d8d82efa2Microsoft Edge suffers from information disclosure and remote code execution vulnerabilities. Affected builds include 85.0.564.83, 85.0.564.86, 85.0.564.70, 86.0.622.38, 86.0.622.43, 86.0.622.48, 86.0.622.51, and 86.0.622.56.
d1283aca7d57dba59274a53c8d4be7c8Red Hat Security Advisory 2020-4401-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6, 7, and 8. Issues addressed include an XML injection vulnerability.
c6734a15901d8b6f939fef6f1ad12e04Genexis Platinum-4410 version P4410-V2-1.28 suffers from a cross site request forgery vulnerability.
146fa3e7e680262eec3c8a7849e57ef6Lot Reservation Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
d59da764d15867b2c8e347b9d1c591e3Lot Reservation Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
3840f5563afd9a3a71808da95da9f196Icewarp WebMail version 11.4.5.0 suffers from a cross site scripting vulnerability.
90afc47a914b4ec45f2b380bd65e99ddUbuntu Security Notice 4609-1 - Fabian Henneke discovered that GOsa incorrectly handled client cookies. An authenticated user could exploit this with a crafted cookie to perform file deletions in the context of the user account that runs the web server. It was discovered that GOsa incorrectly handled user access control. A remote attacker could use this issue to log into any account with a username containing the word "success". Various other issues were also addressed.
4e2b8c585afc2ea3d948b113104fffd5Mailman versions 1.x up through 2.1.23 suffer from a cross site scripting vulnerability.
9f7ee8dc2bea9eb36d07925c4afea9eePoint of Sales version 1.0 suffers from a persistent cross site scripting vulnerability.
07a9e356990714e68a1337f5da907983Red Hat Security Advisory 2020-4402-01 - Red Hat JBoss Enterprise Application Platform 7.3 is a platform for Java applications based on the WildFly application runtime. This asynchronous patch is a security update for Red Hat JBoss Enterprise Application Platform 7.3. Issues addressed include an XML injection vulnerability.
96d6633cd6cef7c456fbbb9879267dc9Online Examination System version 1.0 suffers from a persistent cross site scripting vulnerability.
4f20c0c9e6ff28d87241c91fba29f4e1
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed