WordPress Polls plugin version 1.2.4 suffers from a remote SQL injection vulnerability.
e1e3b4c479d0946e2296b490351e6c39It was discovered that the api/storage web interface in Unitrends Backup (UB) before 10.0.0 has an issue in which one of its input parameters was not validated. A remote attacker could use this flaw to bypass authentication and execute arbitrary commands with root privilege on the target system.
a515b24571a355cc139de851e5a2e690It was discovered that the Unitrends bpserverd proprietary protocol, as exposed via xinetd, has an issue in which its authentication can be bypassed. A remote attacker could use this issue to execute arbitrary commands with root privilege on the target system.
6b1ce2c3fcd74a7db43ca487c3706403The login component of the Polycom Command Shell on Polycom HDX video endpoints, running software versions 3.0.5 and earlier, is vulnerable to an authorization bypass when simultaneous connections are made to the service, allowing remote network attackers to gain access to a sandboxed telnet prompt without authentication. Versions prior to 3.0.4 contain OS command injection in the ping command which can be used to execute arbitrary commands as root.
19e483d20fd0e5d1252e6caf45e27fbaNumerous remote code execution paths were discovered in TP-Link's WR940N home WiFi router. Valid credentials are required for this attack path. It is possible for an authenticated attacker to obtain a remote shell with root privileges.
6bceaa1fe350d1c27550d6f8f857b131ZKTime Web Software version 2.0 suffers from an insecure direct object reference vulnerability.
b777dd4813f975f9032626bc736f801aZKTime Web Software version 2.0 suffers from a cross site request forgery vulnerability.
f8c4d4b15229d25be5aec0554197f32dMozilla Firefox versions prior to 55 suffer from a long username denial of service vulnerability.
d045383f0ddfecdc908bd3897dc709ceCheck_mk versions 1.2.8p25 and below suffer from a save_users() race condition that leads to sensitive information disclosure.
20c85c9a771f1de93e046c52df63537cXen allows pagetables of the same level to map each other as readonly in PV domains. This is useful if a guest wants to use the self-referential pagetable trick for easy access to pagetables by mapped virtual address.
7b0613bdfa02a772faa0631e1daf6f95Microsoft Windows Game Definition File Editor (GDFMaker) version 6.3.9600.16384 suffers from an XML external entity injection vulnerability.
c7d0ae4a7bf14a2d1e2cae2ae115040aApache Solar version 7.0.1 suffers from XML external entity injection and remote code execution vulnerabilities.
c5a11c70eb9d20e9abf2fb6d5efc3959Hashicorp vagrant-vmware-fusion versions 4.0.24 and below suffer from a local privilege escalation vulnerability. This is the same issue that affected the last version but the vendor failed to properly address the issue.
6c5c0f0f63ac31c446e807ee7d596117Career Portal version 1.0 suffers from a remote SQL injection vulnerability.
c35d9e9437faf629db8b4cbdeec660ccWordPress Car Park Booking plugin suffers from a remote SQL injection vulnerability.
eef7c64d55a3975b1e686ced7ec5a15fAfian AB FileRun version 2017.03.18 suffers from cross site request forgery, cross site scripting, open redirection, remote shell upload, and various other vulnerabilities.
3ff1edbfd9d2d8fe8f706e14236d4010Linksys E series devices suffer from cross site request forgery, cross site scripting, header injection, denial of service, and various other vulnerabilities.
0ce91d638136df599d22cc0f4b0e53b1Webtrekk Pixel Track versions 3.24 to 3.40, 4.00 to 4.40, and 5.00 to 5.04 suffer from a cross site scripting vulnerability.
b3b27563cb47af66f17f10561156cccc3CX Phone System version 15.5.3554.1 suffers from an authentication directory traversal vulnerability.
a9779e9950c10976260d9d215e0f3f96It was discovered that the nt!NtQueryObject syscall handler discloses portions of uninitialized pool memory to user-mode clients when certain conditions are met.
f4f91d01df5144f04444581ce5fe7b80Micro Focus VisiBroker C++ version 8.5 SP2 suffers from multiple memory corruption vulnerabilities.
49e5b10ae54b8581b0809387e9a79239Webmin version 1.850 suffers from server side request forgery, cross site request forgery, and cross site scripting vulnerabilities, the last of which can lead to remote command execution.
e8275ecd6d49c4502a0718560697279cWordPress Influencer Marketing and Press Release System plugin version 2.2 suffers from a cross site scripting vulnerability.
bb9fd8af678bc4aeb2ce39173e2416cbMicrosoft Edge Chakra accesses uninitialized pointers in StackScriptFunction::BoxState::Box.
18e6e8dec6b5f143ccd448fce096def8The "String.prototype.replace" method can be inlined in the JIT process. So in the method, all the calls which may break the JIT assumptions must be invoked with updating "ImplicitCallFlags". But "RegexHelper::StringReplace" calls the replace function without updating the flag. Therefore it fails to detect if a user function was called.
59bdc94ef54bad4cc587d3c9269d17cb
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed