BigTree CMS version 4.4.10 suffers from a remote code execution vulnerability.
92f4a303fee246d434165dc019b78a49fcc67be677212629c4facc2f010f054c
Anchor CMS version 0.12.7 suffers from a persistent cross site scripting vulnerability.
2288d0c14aa10c3089a21d3372596ca0880f0ee28d0af1aa294dfcf4eef0c75d
Ubuntu Security Notice 4539-1 - Andrew Bartlett discovered that DAViCal Andrew's Web Libraries did not properly manage session keys. An attacker could possibly use this issue to impersonate a session.
6d02431319a656e8d45195cc5f364b7c2b59a67654b4b6f8dd3a10bb69ce68f4
Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.
be832fb86d9c455c5be8b225a755cdc77cb0e92356bdfc1fe4b000d93f7d70da
Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about falco as a mix between snort, ossec and strace.
fbc43adf116c2d1ad6d475100a9ac80ddd368b51d14e5128d88085dea62d9bf2
Simple Online Food Ordering System version 1.0 suffers from a remote SQL injection vulnerability.
5be9ad3712f81aa3338ec6d04c94ef713c4e4f4a6227007e4eb1f455fa7c71f1
Ubuntu Security Notice 4536-1 - Youssouf Boulouiz discovered that SPIP incorrectly handled login error messages. A remote attacker could potentially exploit this to conduct cross-site scripting attacks. Gilles Vincent discovered that SPIP incorrectly handled password reset requests. A remote attacker could possibly use this issue to cause SPIP to enumerate registered users. Guillaume Fahrner discovered that SPIP did not properly sanitize input. A remote authenticated attacker could possibly use this issue to execute arbitrary code on the host server. Various other issues were also addressed.
30f54360516cd591f67d9ab3a8f5d1256d5b3229e6a41af49cf458f85fb95a0b
Ubuntu Security Notice 4538-1 - Vaisha Bernard discovered that PackageKit incorrectly handled certain methods. A local attacker could use this issue to learn the MIME type of any file on the system. Sami Niemimäki discovered that PackageKit incorrectly handled local deb packages. A local user could possibly use this issue to install untrusted packages, contrary to expectations.
0727ab6776e639630a5e5a5e7b10a7c0f2d23864de9dee99c279ad03b990ae7e
Ubuntu Security Notice 4537-1 - Vaisha Bernard discovered that Aptdaemon incorrectly handled the Locale property. A local attacker could use this issue to test for the presence of local files.
815736b0ec981d8eda1504e2479ccd1ea50235c60829dcac09ac3fee95d3e2ec
Red Hat Security Advisory 2020-3835-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.3.0 ESR. Issues addressed include cross site scripting, spoofing, and use-after-free vulnerabilities.
18b29df533065191c527692851af1732b3fab4997d7419742c3abbf89794f9e2
Red Hat Security Advisory 2020-3832-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.3.0 ESR. Issues addressed include cross site scripting, spoofing, and use-after-free vulnerabilities.
9d0ccabb754e8997597ad7e6560ab959ccfc652c9d9c3f2ee3fead93ed7c7c57
Red Hat Security Advisory 2020-3836-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a null pointer vulnerability.
140dcda5b042e51a9300dc0ac4326d3a49dd5bec9a518d3a0cb7a639e5aad1b3
Red Hat Security Advisory 2020-3833-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.3.0 ESR. Issues addressed include cross site scripting, spoofing, and use-after-free vulnerabilities.
7b897b678876f205df73b45424176cbd8bc2dbae2ddc2a86473f50f230ed65d4
Red Hat Security Advisory 2020-3834-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.3.0 ESR. Issues addressed include cross site scripting, spoofing, and use-after-free vulnerabilities.
7a1634fceb80d3195ab9619a297cdf21f5a04fce8c2264e690f072f8d589b9bc
Ubuntu Security Notice 4535-1 - Gabriel Corona discovered that RDFLib did not properly load modules on the command-line. An attacker could possibly use this issue to cause RDFLib to execute arbitrary code.
7caead45a96b1c7f3f71671bfeb403cff6caecb91ccebe3721c00d19c30b15a7
Red Hat Security Advisory 2020-3806-01 - Red Hat support for Spring Boot provides an application platform that reduces the complexity of developing and operating applications for OpenShift as a containerized platform. This release of Red Hat support for Spring Boot 2.2.6.SP2 serves as a replacement for Red Hat support for Spring Boot 2.2.6.SP1, and includes security and bug fixes and enhancements. For further information, refer to the release notes linked to in the References section. Issues addressed include cross site scripting and denial of service vulnerabilities.
a1962e62b3f7a356e133f67a8d370d90845ab39b571847bb91f06c91a0552aba
Red Hat Security Advisory 2020-3807-01 - The org.ovirt.engine-root is a core component of oVirt. Issues addressed include code execution and cross site scripting vulnerabilities.
23fb99a110d6ca6419a2e912c2d9c19988b46b08f68a5dcd98206209ee65733b
Whitepaper called iOS Swift Anti-Jailbreak Bypass with Frida.
0bbd66f367356086c12e07df9456f96e99b2ff41cbae2bc41796dac87704aff2
Ubuntu Security Notice 4534-1 - It was discovered that Perl DBI module incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash or expose sensitive information.
6c317958affc415d3d29a4fa3c0b4000793a47b1fc9535237fae8de51bc4602f
Red Hat Security Advisory 2020-3809-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
53df49b9faa7c83fd4d21fd9a99b87f6d0b04e0093c110db1ed95a75bae3b40b
Red Hat Security Advisory 2020-3808-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Issues addressed include a cross site scripting vulnerability.
b7331aff073d815f6e01e6459b93fa13ca828d759222d2f6c43a4863d4cf35ab
Red Hat Security Advisory 2020-3817-01 - Red Hat AMQ Clients enable connecting, sending, and receiving messages over the AMQP 1.0 wire transport protocol to or from AMQ Broker 6 and 7. This update provides various bug fixes and enhancements in addition to the client package versions previously released on Red Hat Enterprise Linux 6, 7, and 8. Issues addressed include a denial of service vulnerability.
c31e8a62adaba2912f29ff3f05dec778352f1114344bfcbd0a5cdb4a27329b11
Ubuntu Security Notice 4533-1 - Veeti Veteläinen discovered that the LTSP Display Manager incorrectly handled user logins from unsupported shells. A local attacker could possibly use this issue to gain root privileges.
d21d981ecc29bd17909e7ea728408b6c17d2f5dec1bee6846f8e041e59f4f552
Ubuntu Security Notice 4532-1 - It was discovered that Netty incorrectly handled certain HTTP headers. By sending an HTTP header with whitespace before the colon, a remote attacker could possibly use this issue to perform an HTTP request smuggling attack. It was discovered that Netty incorrectly handled certain HTTP headers. By sending an HTTP header that lacks a colon, a remote attacker could possibly use this issue to perform an HTTP request smuggling attack. Various other issues were also addressed.
2f54f490a7d1b2412572a85a25f8724e577ce5e656973f71b6cf173cdf22ca6b
Online Food Ordering System version 1.0 suffers from a remote code execution vulnerability.
b00e3e55a7092bb1191e37b676c6ea8eb89f153da41044bc07a0adbccb450ff2