Apple Zeed ALL YOUR STYLE CMS version 1.00 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
819d8de13b5bbf5aa37e5ee01c05a0e9be1fd1539b1445d5a483b33d39bb43dcRed Hat Security Advisory 2023-3264-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.
e8f110482b397ce1e47cf5d7e98aa19d70eb562abdcedf32f01dd4d680b158e4Red Hat Security Advisory 2023-3278-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.
0c9c4be37f755ee51ae7b725cdcca1230f6081fa2f578d8c3de0c2bec8f64fe1Gin Markdown Editor version 0.7.4 suffers from an arbitrary code execution vulnerability.
98732a25daf4328a414e42c26152a0155fef214cdd05de38962b3608b053e4f6Stackposts Social Marketing Tool version 1.0 suffers from a remote SQL injection vulnerability.
e6af5aa2bf108585bdd4e0f51679301e84b5a80e574e11efc9fe741ad75762c6SitemagicCMS version 4.4.3 suffers from a remote shell upload vulnerability.
e81c1c2d5a6e4753bef17f0fc6ccb3caf6ce9d2eb88c286e5843d50fb1cd964aA Cart version 1.0 suffers from a database disclosure vulnerability.
88ac4e5b373c0ea5029c7e27e9dc3d0f6253e9099a6ce21ab1a22e4f7cd6a2761Two Ecommerce version 1.0 appears to be missing authentication on the administrative interface.
9a2951b26c7d433326fd409b6a8b60258bacc429adb56e4882b1e5a23a3085b3Ubuntu Security Notice 6088-2 - USN-6088-1 fixed vulnerabilities in runC. This update provides the corresponding updates for Ubuntu 16.04 LTS. It was discovered that runC incorrectly performed access control when mounting /proc to non-directories. An attacker could possibly use this issue to escalate privileges. Felix Wilhelm discovered that runC incorrecly handled netlink messages. An attacker could possibly use this issue to escalate privileges.
228e4e8430141c4a888658c04e39158326161025cc9773182744d3522bc81a9dRed Hat Security Advisory 2023-3262-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.
11d9dda85ca2c49f645d2c1b7dcd437b36abe926970a4eb90e03bad63db3e459e107 version 2.3.2 suffers from a cross site scripting vulnerability.
a6b456793e5bb9514494489b12e17a5e039c2a8073ea5fab19e598715d39fbd8Apache Superset version 2.0.0 suffers from an authentication bypass vulnerability.
11c1d6dfc40e04e78fe7f63e883ffe51cb8c28f41378508a535f0b0c6713a793Cameleon CMS version 2.7.4 suffers from a persistent cross site scripting vulnerability.
5dc396ed249c414f3b77455ff090f1be9259d4bc8fb0328eb404d8ed9cb41cc2Prestashop version 8.0.4 suffers from a CSV injection vulnerability.
6229a8cdd9bbaece5b99cb7509088a9fdd2aafbcb1e771a450a8ba09039e6857Best POS Management System version 1.0 remote shell upload exploit. This is a variant exploit with the original discovery being attributed to Ahmed Ismail in February of 2023.
3074358cb31b2d86e231b6d456108ebd704d4d01aa067483b1f950c3bbe1d51eHubstaff version 1.6.14-61e5e22e suffers from a DLL hijacking vulnerability.
bb6183cbbbf93e7cdd9260e520ff6659d0338e17fcde70b1ff8208dfabc97c36Red Hat Security Advisory 2023-3277-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.
a5a1aaa3bec744722a19ee3c0fdb895fac172d9a80f1238fc255cada2233e7bcRed Hat Security Advisory 2023-3265-01 - Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform.
2f4d2ce380c06ad992921a601a6736c8d549adc40181508ee18c6df486235315WordPress Backup Migration plugin version 1.2.8 suffers from a database disclosure vulnerability.
54bfb2eecc242ef9dd0f6982f9909de6c5939c256b9a2ca0aed8bb82c04f7e1fPodcastGenerator version 3.2.9 suffers from multiple persistent cross site scripting vulnerabilities.
c2bbcc87fe7171fec37583497ba0ac2e8147d37c4f2de4b951f50aafbf2f6b13Trend Micro OfficeScan Client version 10.0 suffers from an ACL service related local privilege escalation vulnerability.
5586052ddea883443fe0930aa1c130b975e1449e028a541a6718e573b19c887aPaperCut NG/MG version 22.0.4 remote code execution exploit.
1539d637da722a1ee7e83cceb9ee205cf15d43f93160ae5fe247b21150b68f96PnPSCADA version 2.x suffers from a remote SQL injection vulnerability.
a90480352a33b2a16ff983871d3c2adfe6fc29ea87acbb9afbad0fffdd5938d3TinyWebGallery version 2.5 suffers from a remote shell upload vulnerability.
843af9f8ac15605e751c3f42672d40e393faccdca39dd76e41acfca4f9ec1b21
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed