WordPress Duplicator plugin version 3.8.7 appears to leave backups in a world accessible directory under the document root.
8f7867098777bfb7d7988fcc7cf6d15c45a7a00aa260411393d341e6ecc3e473Debian Linux Security Advisory 5456-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
1daff8e7c0219332defdf3bdce5b00d7219aa4d2baadfabb109bfa319c387d3dUbuntu Security Notice 6237-2 - USN-6237-1 fixed vulnerabilities in curl. The update caused a certificate wildcard handling regression on Ubuntu 22.04 LTS. This update fixes the problem. Hiroki Kurosawa discovered that curl incorrectly handled validating certain certificate wildcards. A remote attacker could possibly use this issue to spoof certain website certificates using IDN hosts. Hiroki Kurosawa discovered that curl incorrectly handled callbacks when certain options are set by applications. This could cause applications using curl to misbehave, resulting in information disclosure, or a denial of service. It was discovered that curl incorrectly handled saving cookies to files. A local attacker could possibly use this issue to create or overwrite files. This issue only affected Ubuntu 22.10, and Ubuntu 23.04.
e8dd9101762b6b8471b622e391d8e553d5793d3028a030db99705ea7fe07b3a9ABB FlowX version 4.00 suffers from a sensitive information exposure vulnerability.
51f0b2495450b9b0407ce67b986a86cf1eedbd6d6f5862a78323951ca8b7962eUbuntu Security Notice 6237-1 - Hiroki Kurosawa discovered that curl incorrectly handled validating certain certificate wildcards. A remote attacker could possibly use this issue to spoof certain website certificates using IDN hosts. Hiroki Kurosawa discovered that curl incorrectly handled callbacks when certain options are set by applications. This could cause applications using curl to misbehave, resulting in information disclosure, or a denial of service.
51f46d8ba4e11574eb483e508710565644dc207c352aed8e601c8ec28e6a4ba4BookingWizz version 5.5 leaves an install file in place that discloses administrative credentials.
3239c62fc69e4bde9d16404629a68f3d37708d438184769abf0ca4c0c3a06269Business Directory Store Finder Local version 1.6.4 suffers from an information leakage vulnerability.
11d14034dabbef618cdc6ffda8128b2ae557915573a0fcad463db20be887e7e8Blackboard version 2.0.2 suffers from a database disclosure vulnerability.
69cfd0715c11702d44f48382ee72a9c82a1e54680430fbedc52b9b31e7233b08Banner RotatorCMS version 1.0 suffers from a database disclosure vulnerability.
b27246139e06d65cee5536bab5d85839356bd732a55ae71b5d58cba4d91b2cb3Banner Management CMS version 1.0 suffers from a database disclosure vulnerability.
cab97923d024d938d826c31690ee755915a702749e39d95a218277b20af3071cBahardowload CMS version 2 suffers from a database disclosure vulnerability.
ce3e95169035256331c2b4e9dd4b7fd07c62451aa00d80d3b8dc1a65937a2615DANGEROUS MAILER-CLONED version 2.0 suffers from an information leakage vulnerability.
f03de4c422ac25cb41a8b39e9d9538bb67cf2f33c39a55e2b1808c8e26ab5956Debian Linux Security Advisory 5447-1 - Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, a bypass of vandalism protections or information disclosure.
e511da2a3822e1112beed6351e773b662687842336390f353b7c9ee161a236eeWordPress Duplicator plugin version 3.8.8 appears to leave backups in a world accessible directory under the document root.
dfcfcb24ad253ea2d39768da7b6e22274d168bdda3f278dad5f23b74f4c9b5ddDebian Linux Security Advisory 5440-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
f84596c62fb724d073ebd5b72c07a6885f8cf5d47b41525b97b64ea0282c14bcMCL-Net version 4.3.5.8788 suffers from an information disclosure vulnerability.
0d9966ba2e021b0a315a3258cc773efd603dcddd8af2b24188e84d5a992fd665WordPress Duplicator plugin version 4.0.5 appears to leave backups in a world accessible directory under the document root.
ad0fa51ec975187287b8a06f41bafe979783319f010750beeb70fcc957fc356aAdvanced Testimonials Manager version 5.7 allows for unauthorized administrative access.
0c09440011efa5310ce82df2e1cac2aedb532ea66b9c268083a2eca678c654f3Debian Linux Security Advisory 5435-2 - Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in information disclosure or denial of service.
c1fcf596ee1cf44b8cea35182003229a26d8a8252f42c3fdec4a778bcd034ed3Advanced ASP Chat version 2.0 suffers from a database disclosure vulnerability.
d0759a6a21a6859cc658221b9d3c3eb88a0dccd988e1af4d2a9d075c3eedc50bSmart Office Web version 20.28 suffers from information disclosure due to an insecure direct object reference vulnerability.
0e404965ef5239207c525c44d321cb98b5082332677616c1825d478aca12e3c8WordPress BackUpWordPress version 3.8 appears to leave backups in a world accessible directory under the document root.
0aa2086e4896317bbe3e7bdbf4459a1d7ed4b988564f1de3d17a4038856e606eZstore version 6.5.4 suffers from a database disclosure vulnerability.
59ef2a6ae2dedf274f03866554742255b38accdbc92491e12e38cf45e9ba3fd8Debian Linux Security Advisory 5435-1 - Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in information disclosure or denial of service.
dfca8e4b23324ea3fd1686d46452b9a26062e6cab430b4598ba6351a0f959fc6Ad Manager Pro version 3.05 suffers from a backup disclosure vulnerability.
9849adf143ac40f826534802c5f270e16d48ad28e11911067998927a139fda16
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed