Red Hat Security Advisory 2021-5130-02 - A minor version update is now available for Red Hat Camel K that includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a code execution vulnerability.
68c8a64ff7bad5739dc048138d6f18fe663311a5a857e025bb4533995862f1a7Ubuntu Security Notice 5193-1 - Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain inputs. An attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code and escalate privileges.
4e4f264689b278b23f361c0ecb104937f53de731a86cebe798772242a988c5d8Simple Cold Storage Management System version 1.0 suffers from a remote SQL injection vulnerability.
f541ba94bd28ae5ac8158b4bec546fd24af5dcb47f823b53d6d76baa4328262fOliver Library Server 5 versions prior to 8.00.008.053 suffer from an arbitrary file download vulnerability. Softlink Education has contacted Packet Storm and although they were unable to replicate this issue in their hosting environment, they have proactively made changes to the software to mitigate attempts for this attack.
010a7aadffe845f1451dfb359525b2199ba13983bb2b53cad92938a1bf21c363log4j-payload-generator is a plugin for the woodpecker framework to produce log4 jndi injection vulnerability payload. Five types of payloads can be produced with one click.
9319f5c8420c855db8f2e53dd3489078c212cfa37c4333ed77c190d1645962f9If you are curious about web application firewall (WAF) bypass payloads that can be leveraged to exploit the log4j2 code execution vulnerability, you should look at this tool.
5190d813d12a89606e135d8c589f145817422880d89b61e91356a92b89d6fafd
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed