Progress WhatsUp Gold WriteDatafile unauthenticated remote code execution proof of concept exploit.
8555b3fc19ed4287c691eed2de41c35a867aa34e1477c6e4b70035490dca6662Progress WhatsUp Gold GetFileWithoutZip unauthenticated remote code execution proof of concept exploit.
645be8b10a258029fe6ad8527b1a56a51a5c0b7d9500967dd05deb6a107887f2Progress WhatsUp Gold SetAdminPassword local privilege escalation proof of concept exploit.
4fdd4c3d26080412d3e0343ba88ccb320022c89ddf9ee90fd9e8f72c6264afdeGentoo Linux Security Advisory 202407-21 - Multiple vulnerabilities have been discovered in the X.Org X11 library, the worst of which could lead to a denial of service. Versions greater than or equal to 1.8.7 are affected.
7393de6db9c62c6eb63d27cc45ab8025049a8af894e4bedea9041d0aa8fe972fResidenceCMS versions 2.10.1 and below suffer from a persistent cross site scripting vulnerability.
20b7a4597deb8715d92b2b5400238ba03b7c014bacae223117baf013fd78b75cGentoo Linux Security Advisory 202407-20 - A vulnerability has been discovered in KDE Plasma Workspaces, which can lead to privilege escalation. Versions greater than or equal to 5.27.11.1 are affected.
8e0fbc84904536255c58a250a312fc910d32fefda4bcbdec8735713ac9b316a4PMS 2024 version 1.0 suffers from a remote SQL injection vulnerability.
c711d2f4feff4ed6618cc15ac11a514fae1dd104362ddfad24a78f6db25c1d58This whitepaper discusses eBPF technology in the Linux kernel and introduces the BPF Runtime Fuzzer (BRF), a fuzzer that can satisfy the semantics and dependencies required by the verifier and the eBPF subsystem.
8d7d42a9efa0c15df2a3a0e4462495f6a65acfd39a1058f872b1863580c0bfb6Gentoo Linux Security Advisory 202407-19 - Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. Versions greater than or equal to 115.11.0 are affected.
9fec4eb505ff6af126db7d4f5d32e738cbc8ffcdbf00c9c6fe99b8512102d038Simple Online Banking System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
be87a33d81196063cb38dc4ffd6dd0a63a54fa2eff13bc6bd520d1260c04567cGentoo Linux Security Advisory 202407-18 - A vulnerability has been discovered in Stellarium, which can lead to arbitrary file writes. Versions greater than or equal to 23.1 are affected.
e175f6de535305f42966b4bccaca9a7134cf420fd89f90e393db13b6c87fcd2bMicrosoft Office 365 appears susceptible to macro code execution that can result in remote code execution.
1e4fbb78f44f5e35a8da0e5c528b0748e67bdf17e1f2fbdb7bfb05362961e84fRed Hat Security Advisory 2024-4353-03 - An update for the nodejs:16 package is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a denial of service vulnerability.
37b465bda546bb90a3a653074297dd11a32863bd950cf8101a369d2d8a8139a9Red Hat Security Advisory 2024-4352-03 - An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Issues addressed include double free, memory leak, null pointer, spoofing, and use-after-free vulnerabilities.
6753d1ede114a88a701f57d325732b54425b4efd7136a2e309ec55415143e4d5Red Hat Security Advisory 2024-4351-03 - An update for the virt:rhel and virt-devel:rhel modules is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include a use-after-free vulnerability.
af8ebb64489a8787b50d2f7d00035c9fbc4d29b0f2722c28ed8300b38da3a1ffRed Hat Security Advisory 2024-4349-03 - An update for kernel is now available for Red Hat Enterprise Linux 9. Issues addressed include double free and use-after-free vulnerabilities.
8f0a098e30f5191a8dd71da89db567368183f9bfb37de7c5ce7fd7309dcc8d9aRed Hat Security Advisory 2024-4340-03 - An update for openssh is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a code execution vulnerability.
c53b87cd593b7bec1642c356e080fc22f1cbbcbe61de4b22d509103635c42045Red Hat Security Advisory 2024-4173-03 - New Red Hat build of Cryostat 3.0.0 on RHEL 8 container images are now available.
93cf9eebc417f079bdf63b522bdc8612cde3910fcfd7cdbded060d9b3367be58WordPress Video Gallery - YouTube Gallery And Vimeo Gallery version 2.3.6 suffers from a remote SQL injection vulnerability.
012d59f6bf2194035050256720e3f27a15d7b84f7333ba8a2b7de8ed79331ec5Cinema Booking System version 1.0 suffers from remote SQL injection and cross site request forgery vulnerabilities.
17d99c784f15844038509b9dcb7cc2e0afbcdebbac5e213e1d14c2427df6d660Gentoo Linux Security Advisory 202407-17 - Multiple vulnerabilities have been discovered in BusyBox, the worst of which could lead to arbitrary code execution. Versions greater than or equal to 1.34.0 are affected.
97b5bc217bf269ff4fab48d58e08f68f870b8dac3e73db14e72a9e75983817dfGentoo Linux Security Advisory 202407-16 - A vulnerability has been discovered in Coreutils, which can lead to a heap buffer overflow and possibly arbitrary code execution. Versions greater than or equal to 9.4-r1 are affected.
a5c85b1a7dc70f7dc3fc84243a8127d4b472c043eef104c7e5321314f795c9c4Ubuntu Security Notice 6879-1 - Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly handled certain crafted SQL statements. An attacker could possibly use this issue to crash the program, resulting in a denial of service. Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly handled certain crafted SQL statements. An attacker could possibly use this issue to crash the program, resulting in a denial of service. This issue only affects Ubuntu 22.04 LTS and Ubuntu 24.04 LTS.
98e180e044eed603f9a4cee8bea8824daa1c968bd93677cfe135caad6745fd27Ubuntu Security Notice 6873-2 - It was discovered that the Intel Data Streaming and Intel Analytics Accelerator drivers in the Linux kernel allowed direct access to the devices for unprivileged users and virtual machines. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
c6ac4f82b8d217d6ffa83b471acea0e6a5e0a00a59df64731f980c99d7ac9239Gentoo Linux Security Advisory 202407-15 - Multiple vulnerabilities have been discovered in GraphicsMagick, the worst of which could lead to arbitrary code execution. Versions greater than or equal to 1.3.40 are affected.
67c8b31f0544a9e0e62bde7445b72bb4fb9dfe473c6d6026feed647bffb6df4d
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed