Joomla XCloner Backup version 3.5.3 suffers from a local file disclosure vulnerability.
66b5261ea7ccf14e1684d338e34e4975webERP version 4.15.1 suffers from an unauthenticated backup file disclosure vulnerability.
c046b257ecfc8a77adb0160b4cf0e185Ubuntu Security Notice 4349-1 - A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. A buffer overflow was discovered in BlockIo service. An unauthenticated user could potentially enable escalation of privilege, information disclosure and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. Various other issues were also addressed.
f5b3739ba7435473ac014a588c4080a5File Explorer version 1.4 for iOS suffers from an information disclosure vulnerability.
83b0a4ee978a1cc4ed42917bc32a23a3Netis E1+ version 1.2.32533 suffers from an unauthenticated wifi password disclosure vulnerability.
37d000d068348c3de171961a0e429488Edimax EW-7438RPn suffers from an information disclosure vulnerability.
e3c873185770ad98a312b8c27a03ed7cThe Swift File Transfer mobile application for ios, blackberry and android suffers from cross site scripting and information disclosure vulnerabilities.
6fd632a2b00ac6e346ea8245a8726339MicroStrategy Intelligence Server and Web version 10.4 suffers from remote code execution, cross site scripting, server-side request forgery, and information disclosure vulnerabilities.
d7196c7b2e9d5315f3c161ae1a25fb32HP ThinPro versions 7.1, 7.0, 6.2.1, and 6.2 suffer from a local physical access information disclosure vulnerability.
255ed9d1368d7aa40e9fa99b81e489f7Broadcom Wi-Fi device KR00K information disclosure proof of concept exploit. It works on WPA2 AES CCMP with Frequency 2.4GHz WLANs.
98b594cbe4b6ceea6d1932367e850f97Citrix Gateway versions 11.1, 12.0, and 12.1 suffer from an information disclosure vulnerability.
d5d012e0d06c1a3aa0e4cd4c44123f39ManageEngine EventLog Analyzer version 10.0 suffers from an information disclosure vulnerability.
e96d634969087160cfe99473c472b296The Citytv Video Android and iOS applications send potentially sensitive information such as device model and resolution, mobile carrier, days since first use, days since last use, total number of app launches, number of app launches since upgrade, and previous app session length, unencrypted to third party sites (Adobe Experience Cloud, ScorecardResearch). Citytv Video Android versions 4.08.0 and below and iOS versions 3.36 and below are affected.
a4c54d68932b6a368bcb9f373ccb7b24The Global TV Android and iOS applications send potentially sensitive information such as device model and resolution, mobile carrier, days since first use, days since last use, total number of app launches, number of app launches since upgrade, and previous app session length, unencrypted to both first (CNAME to third) and third party sites (Adobe Experience Cloud, ScorecardResearch). Global TV Android versions 2.3.2 and below and iOS versions 4.7.5 and below are affected.
53b85b11c7e2c82b9010d72677aa5e0dDebian Linux Security Advisory 4628-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or incorrect validation of path names.
01708b9f6807865189e459e77166ada4SmartClient version 120 suffers from information disclosure, local file inclusion, remote file upload, and XML external entity injection vulnerabilities.
57f8471ef038330e69a08ce5bd6f84a5Debian Linux Security Advisory 4626-1 - Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or incorrect validation of path names.
12b024e434e48cf965722db6369b01c2An information disclosure vulnerability exists when Centaur and TitanSMA fail to properly protect critical system logs such as 'syslog'. Additionally, the implemented Jetty version (9.4.z-SNAPSHOT) suffers from a memory leak of shared buffers that was (supposedly) patched in Jetty version 9.2.9.v20150224.
92e9f1486147a093937b564e106ffc00LabVantage version 8.3 suffers from an information disclosure vulnerability.
ef585a038e1409c4fa25a36eedfd5953SWAPGS attack proof of concept exploit that demonstrates an information disclosure in the windows kernel.
bc36cf27bccf91e98ad52d648c1882e1Verodin Director Web Console version 3.5.4.0 remote authenticated password disclosure proof of concept exploit.
b80441f581b37ec759191c45b35f987aAVideo Platform version 8.1 suffers from an information disclosure vulnerability that allows for user enumeration.
d62321c216670ae38d7594f28dda9f7aJira version 8.3.4 suffers from a username enumeration information disclosure vulnerability.
3cc6ad6b7584b810553e95e611e2c356Centreon version 19.10.5 suffers from a database credential disclosure vulnerability.
015b6cc11fc60b7914ed4e83bae7f78eRealtek SDK based routers suffer from information disclosure, incorrect access control, insecure password storage, code execution, and incorrectly implemented CAPTCHA vulnerabilities.
655a4e51c6bf4ef1304ab18aee588265
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed