Gentoo Linux Security Advisory 202011-19 - Multiple vulnerabilities have been found in libexif, the worst of which could result in the arbitrary execution of code. Versions less than 0.6.22_p20201105 are affected.
938499afbe532d0782213795b0b110ef947cfbc3c7b099c19a15220c3a2d3428Artworks Gallery version 1.0 suffers from multiple remote shell upload vulnerabilities.
05cc23392079332f733baecdf6b22052cb8e4f07f3e0a5d424bd1264ad458013nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.
fbc6a56970f3f71d3e3b40a317a26b70cea4c0fc8436228e99582978f07c251dGentoo Linux Security Advisory 202011-18 - Apache Ant uses various insecure temporary files possibly allowing local code execution. Versions less than 1.10.9 are affected.
ae7ebf4ed2150b9c5f51c3107b74f776bd30832ad056d03c4e2e43b4db461035SugarCRM version 6.5.18 suffers from a persistent cross site scripting vulnerability.
73219fed971a5ec458c75e943bcbf977c3f431496cc648b5d1fca72cb4d15889Red Hat Security Advisory 2020-5112-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an improper authorization vulnerability.
bb11a4092664279ec8b7bada321d7439800225dcfd6117bedff41204c18861e6Intel NUC suffers from a local privilege escalation vulnerability.
4515ad6e66e1783f8cb8987d1fa3313ce314d88a0e44b4586e45190847548b34Red Hat Security Advisory 2020-5110-01 - PostgreSQL is an advanced object-relational database management system.
d2865de5cc9cebb0175acf177f2e3e341e5eef45d94778f6f4f349f2dbf291ecWordPress plugin Buddypress version 6.2.0 suffers from a persistent cross site scripting vulnerability.
c3636c3b43f4f08bd6d2b1d279848cf878460bb83850058602ce2f3ecc6223c4Red Hat Security Advisory 2020-5111-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a double free vulnerability.
ddf74902d6bdf5ad2efc6e49771591014cbbdd9d7d0201e09855f3daa72f7f05Froxlor version 0.10.16 suffers from persistent cross site scripting vulnerabilities.
2f9886a105116c301e9a7e4b4596cfc35de95fb04807e3f0ea620414f3439677AIX version 5.3L /usr/sbin/lquerypv local root privilege escalation exploit.
0897775bf394074a0899890bf9b6b3c6e0a4fdb790821736714ba4384b53bd9cMachosec is a script that checks the security of Mach-O 64-bit executables and application bundles for dyld injection vulnerabilities, LC_RPATH vulnerabilities leading to dyld injection, symlinks pointing to attacker controlled locations, writable by others vulnerabilities, missing stack canaries, disabled PIE (ASLR), and disabled FORTIFY_SOURCE (keeping insecure functions such as strcpy, memcpy etc.).
70ca6a3df8488e0268a0db7c2449c2bc9eb3212694506ee5ada98c1deea6a708Kaa IoT Platform version 1.2.0 suffers from a persistent cross site scripting vulnerability.
baabed0268ed003076986e3c52fa3b1f3fc51922c6e853897cbc95dde091bc5aGentoo Linux Security Advisory 202011-17 - A vulnerability in MIT Kerberos 5 could lead to a Denial of Service condition. Versions less than 1.18.2-r2 are affected.
18afd5f226c2deff09603d3534c28e367df369676dffb5fb7f0dd0ede4fafea6Fuel CMS version 1.4 suffers from a remote code execution vulnerability.
291fe5bb50db9c427fe22ed5bc2893e3d0b8edcccce7f8c12d6f4f5035056f37SugarCRM version 6.5.18 suffers from a persistent cross site scripting vulnerability.
0798563b5a3ae3ca51c0af6069c5c026f1ce326e5026603dedf29d24602a7732SIGE versions 3.4.1 and 3.5.3 Pro suffer from cross site scripting and remote file inclusion vulnerabilities.
5265804569866a12a9641ca1a815352cb45dd364d43c7a6445548094e751f265MailDepot version 2033 (2.3.3022) suffers from a cross site scripting vulnerability.
f82776b6e406fc3d421c55e64c73955573843831dc5dcd361b30f289b3c99402Gentoo Linux Security Advisory 202011-16 - Multiple vulnerabilities have been found in Chromium and Google Chrome, the worst of which could result in the arbitrary execution of code. Versions less than 86.0.4240.198 are affected.
9522426a5de91a3713cbbdc2a4cf52b185bc2a85694b662c84e38ec5ccf5b393Cisco 7937G suffers from denial of service and privilege escalation vulnerabilities.
1a85b1824e9e138ebbade8a3b9f4aa8efdff5e15d8a48bb3135fca92e2eff047Car Rental Management System version 1.0 suffers from a remote shell upload vulnerability.
ea1955bf4e554af26932143481fcd5de176399779008faaf30af89bbaeadecd3RED-V Super Digital Signage System RXV-A740R is vulnerable to a sensitive information disclosure vulnerability. An unauthenticated attacker can visit several endpoints and disclose the webserver's log file list containing sensitive system resources and debug log information running on the device.
de09419a6625a08c5c653a4a0158f007d4e91c9ab31e72409a37bc77843119dePMB version 5.6 suffers from a local file disclosure vulnerability.
c2eaf557d483dd562839fae773eab52db661bcf646193e6dd36a63ea9523ffc3Car Rental Management System version 1.0 suffers from a remote SQL injection vulnerability. This version was already found to be susceptible to SQL injection by Fortunato Lodari in November of 2020.
a6abf5b2f08e07b0e8510f422537cf0f47e9b4f279510b88d961160fe1bc1363
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed