SialWeb CMS eCommerce versions 1.0 and 1.1 suffer from cross site scripting and remote SQL injection vulnerabilities.
a7e271d0bde3253b7c7ebef175d6d35518185be729ce0159a946f2eb421f79a4Red Hat Security Advisory 2020-0928-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include a use-after-free vulnerability.
57e0acbe0406b37e642279f30844fe9f9befb4f7f77aa3885e4ff28b7a169449Red Hat Security Advisory 2020-0962-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. A file read / inclusion vulnerability was addressed among other issues.
a1946065dcfdf180d69259931c7181d7662e805df70f77c7517271af0d6bc344Ubuntu Security Notice 4134-3 - USN-4134-1 fixed a vulnerability in IBus. The update caused a regression in some Qt applications and the fix was subsequently reverted in USN-4134-2. The regression has since been resolved and so this update fixes the original vulnerability. Various other issues were also addressed.
2bce0168c26fd6d896cf0cea3a7d16f22e6d4e0ffb39f1595761303cd15a138eRed Hat Security Advisory 2020-0961-01 - Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. A file read / inclusion vulnerability was addressed among other issues.
0a0bda66eed4d4ce62954495d25e86cc15a1ebbce6a80286c0136e66ca4a7abdRed Hat Security Advisory 2020-0952-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This asynchronous patch is a security update for the Undertow package in Red Hat Single Sign-On 7.3.7.
009465e35cf54f80a2caf9f8e36b8895aa4ad7750d2f0b4b2cd9959644a06620Red Hat Security Advisory 2020-0945-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.7 on RHEL 6 serves as a replacement for Red Hat Single Sign-On 7.3.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
68899a4e1dad114cd14cfb721db15ccd0c8cd114ec51a29d7990890388edfaf7Red Hat Security Advisory 2020-0951-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.7 serves as a replacement for Red Hat Single Sign-On 7.3.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
34dac8ae636745443cf5f4c204f5fc6505f448e11d7503980ae0dac5662c15cfRed Hat Security Advisory 2020-0947-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.7 on RHEL 8 serves as a replacement for Red Hat Single Sign-On 7.3.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
5cbe0643eb33ff42c8ea6ef312b1f9b46f62570cdf86e75969c059a54c87fa9aRed Hat Security Advisory 2020-0946-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.7 on RHEL 7 serves as a replacement for Red Hat Single Sign-On 7.3.6, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References.
098ba29b3d4f75a86fb0706afdb0b3ba6e344611f520dcca01071c0aaaeb8f2cUbuntu Security Notice 4309-1 - It was discovered that Vim incorrectly handled certain sources. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and Ubuntu 16.04 LTS It was discovered that Vim incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Various other issues were also addressed.
6295f29baad0191dfd42367951c1879593b3aa9a272e2da5961b0557ca5745c2UCM6202 version 1.0.18.13 suffers from a remote command injection vulnerability.
e44ddf6cc3933c936f1c38067b878120ae2306e3195079e894790e916bce59f5UliCMS 2020.1 suffers from a persistent cross site scripting vulnerability.
6d9cc9963b49c21a0d7a7d2f4efd1bc8e45f0547aa9297b7b2c98ce11061b5d6Veyon version 4.3.4 suffers from a VeyonService unquoted service path vulnerability.
ea30f5bff8a6a15a294abd45dbecfcf85fe49b1d2ce05baea883091ad802a25dWordPress WPForms plugin version 1.5.8.2 suffers from a persistent cross site scripting vulnerability.
c4b28f616ce1dd3aa4b47d64f53c30a37e444b64d6903a69b1624c840a7f3d82The Horde_Data module version 2.1.4 (and before) present in Horde Groupware version 5.2.22 allows authenticated users to inject arbitrary PHP code thus achieving remote code execution the server hosting the web application.
4f53a18b1dcb2a04ca5e0e9ef677195636d3382c8fc8467ec4ad99dcf70a9931Red Hat Security Advisory 2020-0943-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and various information. The Samba packages have been upgraded to upstream version 4.10.4, which provides a number of bug fixes and enhancements over the previous version.
271e4ed1417c47864bce4636b7fbd69dec3e8f00fc38cb11abd4401e37c6655aRed Hat Security Advisory 2020-0942-01 - The runC tool is a lightweight, portable implementation of the Open Container Format that provides container runtime. A race condition has been addressed.
a546335cdeeceb6b8804dfd0cbd426affeca451688b0f8359da23b54f2d297f1FIBARO System Home Center version 5.021 suffers from cross site scripting and remote file inclusion vulnerabilities.
9c5c10c08cb8ee00315f16d3aab6e0a97b68eab7ea458910485e5ff95a150b8bRed Hat Security Advisory 2020-0939-01 - Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency. This release of Red Hat AMQ Streams 1.4.0 serves as a replacement for Red Hat AMQ Streams 1.3.0, and includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include a code execution vulnerability.
99bc63d1d1b7897c5007d7edd2cde6b0584b2ea1fcb8f8b53be733a054867748The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.
f48c0b6fe4769ea9f99b0be3525e912c3195af0896ede4f5d2fcbdbd9485a5b5Joomla HDWPlayer component version 4.2 suffers from a remote SQL injection vulnerability.
1a9d90f77d03d4dd382c5705f1e80c9bc713315b966c1e692f051815afeb773eRed Hat Security Advisory 2020-0924-01 - The GNU Compiler Collection is a portable compiler suite with support for various programming languages, including C, C++, and Fortran. The devtoolset-8-gcc packages provide the Red Hat Developer Toolset version of GCC, as well as related libraries.
e442177f2afb7b6b389586e29aeffddfc02f631fda3659d3b7286d91152384b9rConfig version 3.9.4 suffers from a search.crud.php remote command injection vulnerability.
46da4988737c90304318720180a381f97a3554b50c1410cead0b35bc43ad5e5dRed Hat Security Advisory 2020-0914-01 - Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 68.6.0. Issues addressed include code execution and use-after-free vulnerabilities.
beb85d7ca160735199151f5499918115b209b88e07b683b5ff2dddfb99111ec4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed