D-Link DSL-2640T suffers from a cross site scripting vulnerability.
3712d8f7c8ca36504485f494d58b2c34212804708bf1bdddd31b818b75efc225NoMachine versions 5.3.26 and below suffer from a remote code execution vulnerability when opening a malicious .nxs file.
1b35177650389c33ae56cc8a7bfc0f37b1381c480d455e0ac5f3f9a8f29f8109Ubuntu Security Notice 3791-1 - It was discovered that git did not properly validate git submodule urls or paths. A remote attacker could possibly use this to craft a git repository that causes arbitrary code execution when recursive operations are used.
b0091665b9248495c8ccd5b4aad022e4a512fe99c55c31011b9b7190096a0b38SugarCRM version 6.5.26 suffers from a cross site scripting vulnerability.
5b5de9e424e3497c85b8160eb2ffc960ca9e83bfcac32248398cbd8ffe5061c7Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.
4cce626d1539e2d1d2f295b036e17ec9f4779d6658a6a91f1e7574c7c10e9d5dHaPe PKH version 1.1 suffers from a remote shell upload vulnerability.
c1381522375bbc35662e38fd04bab4a291a5ce49a28cee9f5dee562850bce598Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.
e9d45ff879f8d592742af5d9401af535a0057ffab7ca2663e9027078fd59edd6HaPe PKH version 1.1 suffers from a cross site request forgery vulnerability.
8cab3d56dd06120cca221c89b071fd8b17adb1d036a37856d564f4258d9b397fTeltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with root privileges.
3b891e67dc7f84a78fafd4de519a7224bdb6d898a5ad5c79db67551a91fc0d24Phoenix Contact WebVisit 2985725 suffers from an authentication bypass vulnerability.
efc4f4093ce598b5380b86e65946db5ea1180e4c54224c18d55bb48e206da2cfCockpit CMS suffers from cross site request forgery, cross site scripting, and traversal vulnerabilities. Version 0.6.2 should address these issues.
df06cf06712dc4427222b72d1c1d4ba09f0aa9874a1d8f29577a2e40ea44e7a8HaPe PKH version 1.1 suffers from a remote SQL injection vulnerability.
da51a69dc53c62ded25e0230d961f6779f3388d1d5e56052ecead541886185d0Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.
a06b007e6343f148b8b93443b2fcfc9bb3204311cd268565d54d1b71660bc861LUYA CMS version 1.0.12 suffers from a cross site scripting vulnerability.
e0dbbcc0f8e92030ee904a1a802d603ea7787096573828d4e6337d25be3e29e0Red Hat Security Advisory 2018-2916-01 - The SpamAssassin tool provides a way to reduce unsolicited commercial email from incoming email. Issues addressed include a denial of service vulnerability.
63ef35c2ed09a7cd0af31727ce413e4d316821942dd1155dd05321006dd54dde
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed