Apple Security Advisory 2021-03-26-3 - watchOS 7.3.3 addresses a cross site scripting vulnerability.
2d3b82207d679fc2aab5b632500c62df6acf43d56b9b140cb1f369103d832356Apple Security Advisory 2021-03-26-2 - iOS 12.5.2 addresses a cross site scripting vulnerability.
dacc1e3fa48f1db701018731460aa69380023e4fea23674ae72a0c9cacba26e7vsftpd version 3.0.3 suffers from a denial of service vulnerability.
71ee1380b9d63f9f1dab1c9683f8127c0251426f939688ea47b83c9268dc1dacApple Security Advisory 2021-03-26-1 - iOS 14.4.2 and iPadOS 14.4.2 addresses a cross site scripting vulnerability.
d41c9cf22eedd097dfe71ea0899b433c276a159c4028b04acb35cd0b707156b8Novel Boutique House-plus version 3.5.1 suffers from an arbitrary file download vulnerability.
0ec465e44d38be2f29340b6a95314a988f35cfbdadad1553447259ab0ea0ba9bConcrete5 version 8.5.4 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version is attributed to nu11secur1ty in March of 2021.
85b90184d4fc5f1bb1bad2e1800e72fd5f21249b52f09b95dfbc02fe3864fd2dBackdoor.Win32.Delf.zs malware suffers from a code execution vulnerability.
4a5d3b89e3bd8aeb3967a57fbde5fc5f72b548929392f50c8f378b8a7b2c7fb4WordPress WP Super Cache plugin versions 1.7.1 and below suffer from a remote code execution vulnerability.
18a64716dacbf0e8c19c600cecb0946447c3ee415cd85fdf4b26eac64a846b13Debian Linux Security Advisory 4867-1 - Several vulnerabilities have been discovered in the GRUB2 bootloader.
537768c2310ba33e047d7788f7bdfd32c9b759d9df6d5d342d3e6d4c2a7fbb7bDebian Linux Security Advisory 4868-1 - Anton Lydike discovered that sandbox restrictions in Flatpak, an application deployment framework for desktop apps, could by bypassed via a malicious .desktop file.
9246a129a35b9c6ff0025f10d7c8cbe9f8fc504b7cdf776c49781b28a60f4554Debian Linux Security Advisory 4869-1 - Two vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service or the execution of arbitrary code if malformed image files are processed.
02ab93d0df1861e1b412f9abf35c2b4044cb0ddbd1cc2fbf8ed40edb8de03e72Debian Linux Security Advisory 4870-1 - It was discovered that Pygments, a syntax highlighting package written in Python, could be forced into an infinite loop, resulting in denial of service.
d168d6024abc57c2d5e0952783f82c23c49f389a219f0e26d52a7831ca39575bDebian Linux Security Advisory 4871-1 - Two vulnerabilities were discovered in Tor, a connection-based low-latency anonymous communication system, which could lead to excessive CPU usage or cause a directory authority to crash.
3d959d348b8fbb745dd745f07ba9df635f23a46149893387bdee4ca841c735cdDebian Linux Security Advisory 4872-1 - Toni Huttunen discovered that the Shibboleth service provider's template engine used to render error pages could be abused for phishing attacks.
6455801217000091067c3be2022f9e384336ce95ca83f73e2aed6306dd51c943Debian Linux Security Advisory 4873-1 - Jianjun Chen discovered that the Squid proxy caching server was susceptible to HTTP request smuggling.
dcb85d9bcf6b67567927c2d3c92e0604891c54b5f57172cdee4e9b6640dbdcddDebian Linux Security Advisory 4874-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure or spoofing attacks.
6cd3d84bb05ea09f2861c694c96bbad37e945fa5766d877edb278eaa2b865e37Debian Linux Security Advisory 4875-1 - A NULL pointer dereference was found in the signature_algorithms processing in OpenSSL, a Secure Sockets Layer toolkit, which could result in denial of service.
3c06d7374d02d3c7cc4b04826876a069de66ce13544c97d7dc498ebc934a37eeDebian Linux Security Advisory 4876-1 - Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure.
1f97e92166976a17da8cad8270152684548a7147977ea4a7f4644cd979d65be9Debian Linux Security Advisory 4877-1 - Vulnerabilities have been discovered in the webkit2gtk web engine.
acdce3423cd9ca597052c1bab085dd29ee46c168a6dd10afa95db660483f9a19Debian Linux Security Advisory 4878-1 - Ben Caller discovered that Pygments, a syntax highlighting package written in Python 3, used regular expressions which could result in denial of service.
5c9ee9c4f43f62b4229c04c226fb1157de6f0f0c08412382a6d97c55e2b1a711Debian Linux Security Advisory 4879-1 - Damian Lukowski discovered a flaw in spamassassin, a Perl-based spam filter using text analysis. Malicious rule configuration files, possibly downloaded from an updates server, could execute arbitrary commands under multiple scenarios.
5b6d2c5cbe5c49ee34932f51f38015dcbcd6c4604d649325a1c09366a2d270daDebian Linux Security Advisory 4880-1 - Kevin Chung discovered that lxml, a Python binding for the libxml2 and libxslt libraries, did not properly sanitize its input. This would allow a malicious user to mount a cross-site scripting attack.
5a338b50348a8a2cbfdeaaaacc36baa39c17a7577fe75e672133625039e5da13Debian Linux Security Advisory 4881-1 - Multiple vulnerabilities were discovered in cURL, an URL transfer library.
bc9e30e2495c14523abe0253c23adf2b8510b307a08eb0748a5275eab7b6de70Id Card Generator version 1.0 suffers from multiple cross site scripting vulnerabilities.
666e78b300e1a151c8982d3f2431665678bd06e5c082424c6516b72d0161988bMoodle version 3.10.3 suffers from a persistent cross site scripting vulnerability.
42d3462e082c64cfc36100896fbf7766b3b9ff2995b24c3ec2b1173c458f0db6
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed