FLIR Camera PT-Series suffers from multiple unauthenticated remote command injection vulnerabilities. The vulnerability exist due to several POST parameters in controllerFlirSystem.php script when calling the execFlirSystem() function not being sanitized when using the shell_exec() PHP function while updating the network settings on the affected device. This allows the attacker to execute arbitrary system commands as the root user and bypass access controls in place.
5ddf109d3a422df75105565034f680b0Gentoo Linux Security Advisory 201709-21 - Multiple vulnerabilities have been found in PHP, the worst of which could result in the execution of arbitrary code. Versions less than 5.6.31:5.6 are affected.
e37ef91858dce51d5410cc67c898748fPHP Auction Ecommerce Script version 1.6 suffers from a remote SQL injection vulnerability.
1bbb761c85a0eeb2c41619563fcc7584This Metasploit module exploits a directory traversal vulnerability found in Carlo Gavazzi Powersoft versions 2.1.1.1 and below. The vulnerability is triggered when sending a specially crafted GET request to the server. The location parameter of the GET request is not sanitized and the sendCommand.php script will automatically pull down any file requested
7ead626f719b2712cc6f6e65a79e2c9fPHP Dashboards NEW version 4.4 suffers from a remote SQL injection vulnerability.
db1a533b5870ca5c881efd5b9d56039ePHP Dashboards NEW version 4.4 suffers from an arbitrary file read vulnerability.
62b7d50497d65bc8022a41ef2f61bdacjRank Topsites version 1.0 suffers from a cross site request forgery vulnerability that allows for PHP code injection vulnerability.
f9c9dacf3c805760fedafa777dff54beAdvertiz PHP Script version 0.2 suffers from a cross site request forgery vulnerability.
fd1b21d9f8c84d00c07247ec58d57074HP Security Bulletin HPESBHF03770 1 - A potential security vulnerability has been identified in Comware 7 MSR Routers using PHP, Go, Apache Http Server, and Tomcat. The vulnerability known as "httpoxy" could be remotely exploited to execute arbitrary code. Revision 1 of this advisory.
e89a7ac16ee1b5fb1e53d79ab6e79b09This Metasploit module exploits an unauthenticated remote PHP code execution vulnerability in IBM OpenAdmin Tool included with IBM Informix versions 11.5, 11.7, and 12.1. The 'welcomeServer' SOAP service does not properly validate user input in the 'new_home_page' parameter of the 'saveHomePage' method allowing arbitrary PHP code to be written to the config.php file. The config.php file is executed in most pages within the application, and accessible directly via the web root, resulting in code execution. This Metasploit module has been tested successfully on IBM OpenAdmin Tool 3.14 on Informix 12.10 Developer Edition (SUSE Linux 11) virtual appliance.
b78839adcfa2b9b750dba9d03fc684b8PHP Coupon Script version 6.0 suffers from a remote SQL injection vulnerability.
4d5d302c3fc2243a45c1479db0daa87ePHP-Lance version 1.52 suffers from a remote SQL injection vulnerability.
e8d2d0097ba26f9be292396680c25676PHP Jokesite version 2.0 suffers from a remote SQL injection vulnerability.
74908aabc66977a18175cabb83584b15PHP Scripts Theater Management Script version 3.1.5 suffers from a remote SQL injection vulnerability.
0edd3fed74a5ea3eac00393ea22745faUbuntu Security Notice 3389-1 - A vulnerability was discovered in GD Graphics Library , as used in PHP before that does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read A bytes from the top of the stack.
a18b834386443bb94f1292269976dec0Ubuntu Security Notice 3389-2 - USN-3389-1 fixed a vulnerability in GD Graphics Library. This update provides the corresponding update for Ubuntu 12.04 ESM. A vulnerability was discovered in GD Graphics Library , as used in PHP that does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to A read bytes from the top of the stack. Various other issues were also addressed.
9723c2c8c1e56692e9c61e6c12d17618Ubuntu Security Notice 3382-1 - It was discovered that the PHP opcache created keys for files it cached based on their filepath. A local attacker could possibly use this issue in a shared hosting environment to obtain sensitive information. This issue only affected Ubuntu 14.04 LTS. It was discovered that the PHP URL parser incorrectly handled certain URI components. A remote attacker could possibly use this issue to bypass hostname-specific URL checks. This issue only affected Ubuntu 14.04 LTS. Various other issues were also addressed.
984ca408a3f1b29c60c732d8e6ab82d4Joomla PHP-Bridge component version 1.2.3 suffers from a remote SQL injection vulnerability.
e758c0825c15612d960b25a95f55f5f7Pelco IP cameras suffer from a code execution vulnerability. The affected cameras suffer from authenticated remote code execution vulnerability. The POST parameter 'enable_leds' located in the update() function called via the GeneralSetupController.php script is not properly sanitised before being used in writeLedConfig() function to enable led state to on or off. A remote attacker can exploit this issue and execute arbitrary system commands granting her system access with root privileges using a specially crafted request and escape sequence to system shell.
f60def224c0da5db858f33bf6eef0e47Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.
b0ea49baf368fafefa60aaacd3034567Xavier PHP Login Script and User Management Admin Panel version 2.4 suffers from a remote SQL injection vulnerability.
1da452202b8527a25808c6c827c89575IBM Informix Dynamic Server suffers from dll injection, PHP code injection, and heap buffer overflow vulnerabilities.
acf1047cf6ec465e6ff49df652940fd6This Metasploit module exploits an option injection vulnerability in the SyntaxHighlight extension of MediaWiki. It tries to create and execute a PHP file in the document root. The USERNAME and PASSWORD options are only needed if the Wiki is configured as private. This vulnerability affects any MediaWiki installation with SyntaxHighlight version 2.0 installed and enabled. This extension ships with the AIO package of MediaWiki version 1.27.x and 1.28.x. A fix for this issue is included in MediaWiki version 1.28.2 and version 1.27.3.
1b15a640f92c98f62fa52a0340553730google-api-php-client versions 2.1.3 and below suffer from multiple cross site scripting vulnerabilities.
01570bb024997801f85e3290dadda5efBanManager WebUI version 1.5.8 suffers from PHP code injection and cross site scripting vulnerabilities.
9be975678becc6c229ea7ef576b4a2ff
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed