Ubuntu Security Notice 3796-3 - USN-3796-1 fixed a vulnerability in Paramiko. This update provides the corresponding update for Ubuntu 18.10. Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials. Various other issues were also addressed.
bd9323b300f55025ce3f4e55310f69ccUbuntu Security Notice 3792-3 - USN-3792-1 fixed a vulnerability in Net-SNMP. This update provides the corresponding update for Ubuntu 18.10. It was discovered that Net-SNMP incorrectly handled certain certain crafted packets. A remote attacker could possibly use this issue to cause Net-SNMP to crash, resulting in a denial of service. Various other issues were also addressed.
6922096eae4f9412061212a2f8908aebUbuntu Security Notice 3795-2 - USN-3795-1 fixed a vulnerability in libssh. This update provides the corresponding update for Ubuntu 18.10. Peter Winter-Smith discovered that libssh incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials. Various other issues were also addressed.
e89cc04e069eca9525fb55fb63903774Viva Visitor and Volunteer ID Tracking version 0.95.1 suffers from a remote SQL injection vulnerability.
a7bdb1af85aa0c2d43e314a0d6343f09Traq version 3.7.1 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.
0aef457c83d6fd108fe4b17521b80e1beNdonesia Portal version 8.7 suffers from a remote SQL injection vulnerability.
3cc4ca7ebbc356b5f8a59b1fbde6e3f1School ERP Ultimate version 2018 suffers from a remote SQL injection vulnerability.
895a26f1d022712bfe28574ffce213eeThe Open ISES Project version 3.30A suffers from a remote SQL injection vulnerability.
177af646b329a8c58f5910646e929802MySQL Edit Table version 1.0 suffers from a remote SQL injection vulnerability.
19c3b4630111dd4e32c4693e85b43bd9OwnTicket version 1.0 suffers from a remote SQL injection vulnerability.
971c98dc732f76cc5a566f0ad1449e62Learning with Texts version 1.6.2 suffers from a remote SQL injection vulnerability.
e369d05342f296346bcb78320742e5e8Time and Expense Management System version 3.0 suffers from a remote SQL injection vulnerability.
a86c2de37553ce740ad519f2189592dbUbuntu Security Notice 3796-2 - USN-3796-1 fixed a vulnerability in paramiko. This update provides the corresponding update for Ubuntu 12.04 ESM. Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials. Various other issues were also addressed.
eeeaa8c000eef211a5eee310a1781232Dell EMC Secure Remote Services Virtual Edition versions prior to 3.32.00.08 suffer from improper file permission, plaintext password storage, and information exposure vulnerabilities.
8f160751ece08d6712da5b33a8d87a36Ubuntu Security Notice 3796-1 - Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.
d5067a79d01993a7f40de7ec1a88689eUbuntu Security Notice 3795-1 - Peter Winter-Smith discovered that libssh incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass authentication without any credentials.
1dcc29f274ef1d151985494c2d04c5d4Ubuntu Security Notice 3789-2 - USN-3789-1 fixed a vulnerability in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that ClamAV incorrectly handled unpacking MEW executables. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.
fde2b8334433786ac95fc46db3f82541Red Hat Security Advisory 2018-2927-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include cross site scripting, denial of service, deserialization, information leakage, and remote SQL injection vulnerabilities.
86e3c320e364310aabefd92cb6e9d762Ubuntu Security Notice 3792-2 - USN-3792-1 fixed a vulnerability in Net-SNMP. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that Net-SNMP incorrectly handled certain certain crafted packets. A remote attacker could possibly use this issue to cause Net-SNMP to crash, resulting in a denial of service. Various other issues were also addressed.
bbb68331d63976d5a997a0dc75dd3c41GIU Gallery Image Upload version 0.3.1 suffers from a remote SQL injection vulnerability.
b4147b04b6553a51704799585aace41bMV Video Sharing Software version 1.2 suffers from a remote SQL injection vulnerability.
0ad174012d13e10d8404214629fdd430Rukovoditel Project Management CRM version 2.3 suffers from a remote SQL injection vulnerability.
1f62d6bd79243759ee523b6e54d6e4a8Vishesh Auto Index version 3.1 suffers from a remote SQL injection vulnerability.
5f3ff3098c17830600ee8f4fe611a4a8Kados R10 GreenBee suffers from a remote SQL injection vulnerability.
36a39e7b3ab07b4125f648f2b9242a48HotelDruid version 2.2.4 suffers from a remote SQL injection vulnerability.
80d1a55cde41a577c9a05ce3877a5802
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed