Web Ofisi E-Ticaret version 3 suffers from a remote SQL injection vulnerability.
7437ac5aa2847a7b983ed6607274391bWeb Ofisi Emlak version 3 suffers from a remote SQL injection vulnerability.
bbaf456b027e33df396413601723412bWeb Ofisi Emlak version 2 suffers from a remote SQL injection vulnerability.
acb2c38c14f06b7981c22fc021efba3dWeb Ofisi Platinum E-Ticaret version 5 suffers from a remote SQL injection vulnerability.
e955a8dea20f701a89460c42b02c090eWeb Ofisi Firma version 13 suffers from a remote SQL injection vulnerability.
2f9e04f372779e233112abf19aebb546Web Ofisi Rent a Car version 3 suffers from a remote SQL injection vulnerability.
a5d470c60fe210d7fc74f1549a7e6e81Web Ofisi Firma Rehberi version 1 suffers from a remote SQL injection vulnerability.
f92543b358ec74c2815f6389befe02b0Red Hat Security Advisory 2019-1790-01 - Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Issues addressed include a buffer overflow vulnerability.
a298004fd012ab317d6dcdc6bd10d9eaUbuntu Security Notice 4059-1 - It was discovered that Squid incorrectly handled certain SNMP packets. A remote attacker could possibly use this issue to cause memory consumption, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. It was discovered that Squid incorrectly handled the cachemgr.cgi web module. A remote attacker could possibly use this issue to conduct cross-site scripting attacks. Various other issues were also addressed.
bf7b4c06d599e5f9a96a8cba60efc48bCentOS Control Web Panel version 0.9.8.838 suffers from a user enumeration vulnerability.
c0097370579f6ba471afee6e2a345e0bCentOS Control Web Panel version 0.9.8.836 suffers from an authentication bypass vulnerability.
010e4c768075759ac870b22afd37ce05CentOS Control Web Panel version 0.9.8.836 suffers from a privilege escalation vulnerability.
a9210bf1e43adfc4a34316bfb77c32edThis Metasploit module exploits a vulnerability in the PHP Laravel Framework for versions 5.5.40, 5.6.x up to 5.6.29. Remote command execution is possible via a correctly formatted HTTP X-XSRF-TOKEN header, due to an insecure unserialize call of the decrypt method in Illuminate/Encryption/Encrypter.php. Authentication is not required, however exploitation requires knowledge of the Laravel APP_KEY. Similar vulnerabilities appear to exist within Laravel cookie tokens based on the code fix. In some cases the APP_KEY is leaked which allows for discovery and exploitation.
7094c48d642dbb2c66067663c6ef39d9Microsoft Windows suffers from an HTTP to SMB NTLM reflection that leads to a privilege escalation.
62e80bf3709f00ac9657fb8dd16d9822This Metasploit module exploits a command injection vulnerability in Xymon versions before 4.3.25 which allows authenticated users to execute arbitrary operating system commands as the web server user. When adding a new user to the system via the web interface with useradm.sh, the user's username and password are passed to htpasswd in a call to system() without validation. This module has been tested successfully on Xymon version 4.3.10 on Debian 6.
5d1fdb4c7a1abc1fbc3c13a84a4a2eefDebian Linux Security Advisory 4479-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
1e90e6a1c90fc8275f2fadb11f5d1fc8Red Hat Security Advisory 2019-1763-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.
4d0b8355d6f907b18f24fcab1f430520Red Hat Security Advisory 2019-1764-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.
e62ece17b5f9558a1cb3afc322f148d3Red Hat Security Advisory 2019-1765-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.
60068e89de7c74f2c2339f38525e4fbaPowerPanel Business Edition version 3.4.0 is vulnerable to cross site request forgery vulnerability. This can be exploited by tricking an authenticated user into visiting a web page controlled by a malicious person.
a9ab16dd95ed0e4e8b09539a84c83b30Whitepaper called Bypassing Web Application Firewalls with HTTP Parameter Pollution. Written in Turkish.
5e515a4b949177e71c30bead05663400Red Hat Security Advisory 2019-1712-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 7 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution and denial of service vulnerabilities.
b873acd280d331eebb5b9a89a00a2f19Red Hat Security Advisory 2019-1711-01 - Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector, JBoss HTTP Connector, Hibernate, and the Tomcat Native library. This release of Red Hat JBoss Web Server 3.1 Service Pack 7 serves as a replacement for Red Hat JBoss Web Server 3.1, and includes bug fixes, which are documented in the Release Notes document linked to in the References. Issues addressed include a denial of service vulnerability.
2a275448735516008619b561fd01c504Debian Linux Security Advisory 4476-1 - Three security issues were found in Django, a Python web development framework, which could result in denial of service, incomplete sanitization of clickable links or missing redirects of HTTP requests to HTTPS.
87af8c2663aa991c6a2708adceac437cRed Hat Security Advisory 2019-1696-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.7.2 ESR. Issues addressed include type confusion and sandbox escape vulnerabilities.
cbdcf1b81bf4297a845eb11a184de06d
© 2019 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed