Ubuntu Security Notice 6189-1 - It was discovered that etcd leaked credentials when debugging was enabled. This allowed remote attackers to discover etcd authentication credentials and possibly escalate privileges on systems using etcd.
443d3a8a6e7caa2bf8c6b13067e3de7bbb990acd084159431af4cf9b7839603a
NewsLetter Script version 2.4 suffers from a cross site scripting vulnerability.
eade9add78542b133899c291862a5dafb680af729a6902f9d5cf777a500283a1
Red Hat Security Advisory 2023-3885-01 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.4 on RHEL 9 serves as a replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a cross site scripting vulnerability.
1180496b90fd4322854a4b267131a13447532fb61bb4791a419b5fb1ed002d40
Simple Forum version 2.7 suffers from a cross site scripting vulnerability.
6e02ef12ebffd325fe8f8889963a07e9c358164eff694ff8d5fcff4a609496a3
Red Hat Security Advisory 2023-3892-01 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.4 serves as a replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution, cross site scripting, and deserialization vulnerabilities.
c028114f9f831e46de9d7546cb402a0dea9be7bc7aa8cc74b62ab59d22957f30
Simple Blog version 3.2 suffers from a cross site scripting vulnerability.
c97d8192845fc942626ac5b01d84f3c1910076ad36657a9c8f686537ec67166b
Ubuntu Security Notice 6190-1 - Kevin Backhouse discovered that AccountsService incorrectly handled certain D-Bus messages. A local attacker could use this issue to cause AccountsService to crash, resulting in a denial of service, or possibly execute arbitrary code.
3216e509dc38095c43047e7f903ca0c4c52b6e38f5539e46493ed1c1efe768eb
Zip and RAR FileExtractor version 5.7 suffers from a cross site scripting vulnerability.
8c0cc72c928cd5db6083893e219deb8db5509b9ef245ca49e8ef2afc45d21459
WordPress Social Login and Register plugin versions 7.6.4 and below suffer from an authentication bypass vulnerability.
355d1e82bf7db5273d7e13d3ac241fd8bef9e7323b7acc69cad35cc7b8d55e18
Photo Gallery version 2.0 suffers from a cross site scripting vulnerability.
caa0e1fa5c054dc3cd11c64c302302c86229bff8bf5b5d94969d8c815845f09f
Red Hat Security Advisory 2023-3884-01 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.4 on RHEL 8 serves as a replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a cross site scripting vulnerability.
d8af414652546f1575db762f11439ef98f5fbac2ca06360edf4bfd5d7be12db4
SPIP version 4.2.3 suffers from a remote SQL injection vulnerability.
a6b46a90d6f11991785f04be5365d0580524184e71ab608add03d8f6cbd05fda
News Script Pro version 2.4 suffers from a cross site scripting vulnerability.
d080c0f745faae46e64233bd4aa89bbe1a281c730b0885a4e9f434cbcaa35ce5
Red Hat Security Advisory 2023-3888-01 - Red Hat Single Sign-On is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat Single Sign-On for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services. This erratum releases a new image for Red Hat Single Sign-On 7.6.4 for use within the OpenShift Container Platform 3.10, OpenShift Container Platform 3.11, and within the OpenShift Container Platform 4.12 cloud computing Platform-as-a-Service for on-premise or private cloud deployments, aligning with the standalone product release. Issues addressed include a cross site scripting vulnerability.
6967f44158b808b88b81705a81e5d1447634d53ebcf4dccabe1da7c8b120f313
Funeral Script version 3.1 suffers from a cross site scripting vulnerability.
c9047c173163fb9b502845dd6c3531cf7828fb20f17fd7e9c927c463aa3bce95
Red Hat Security Advisory 2023-3883-02 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.4 on RHEL 7 serves as a replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a cross site scripting vulnerability.
75a4aee07be3d648f59b1c1533619cd4d0b5dcfbcd66d6654aeb454d12df714b
FAQ Script version 2.3 suffers from a cross site scripting vulnerability.
553d4ad61133d616d46d3d1e923d92f20cc28de908240b72043b48088a302ca1
Red Hat Security Advisory 2023-3814-01 - Migration Toolkit for Runtimes 1.1.1 ZIP artifacts. Issues addressed include a denial of service vulnerability.
2ebea47b4400cef9a851f5dba3bbdd2ae36e79c48b3fc9b2cea7df3d4786c197
AMSS++ version 2,0 appears to leave default credentials installed after installation.
e1548b6d2e71ed56a0c5088aa406ecf556dba52314124843dd61103ed84b8dcb
Event Script version 2.1 suffers from a cross site scripting vulnerability.
e5b85d6eb3861f65156f30058b3fb6a8df3ec8d708a641c7ee144bbd043cd7db
Classified Ads Script version 1.8 suffers from a cross site scripting vulnerability.
80cf7e202e682e3ee7d4ad15e65c72d6141f4c801b9469480b190fb56bb73ead
Red Hat Security Advisory 2023-3853-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include privilege escalation and use-after-free vulnerabilities.
e4055c6dd354a0adc72226682b0bc76f0f7d45c68d6b8a87c6852d79ce0909d4
GuestBook Script version 2.2 suffers from a cross site scripting vulnerability.
d40a9f0d8d521181824eda0d7023f67c085ecd501bd381f53280d858e5bd7918
Red Hat Security Advisory 2023-3813-01 - An update for mtr-operator-bundle-container, mtr-operator-container, mtr-web-container, and mtr-web-executor-container is now available for Migration Toolkit for Runtimes 1 on RHEL 8.
4a6085b8018ab9119a04178776c94e000071d542fb3b2c381d6905231da0cdc1
Alumni Club Management Tools version 2.2.7 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
429a7b0a5559c16d016ecb32a60dffa31325ab335adf4d6cfdfa2b4da839c295