Gentoo Linux Security Advisory 201904-16 - Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could result in the arbitrary execution of code. Versions less than 4.8.4 are affected.
5d7df917cdc3e3f4bf658fd761b678b2e710fc3eeaf045a1c7aff56a5653f3f9PCHelpWare 2 version 1.0.0.5 SC denial of service exploit.
113a3b9b408a5fec3cbfa9c7a1641d370fd78b6de9a0680ff7598cbaa486805eUbuntu Security Notice 3947-1 - It was discovered that Libxslt incorrectly handled certain documents. An attacker could possibly use this issue to access sensitive information.
4732d182f3a741f01e2aa682aae9261f0d4251db02c7379818f096956f2f346dDebian Linux Security Advisory 4431-1 - Chris Coulson discovered several vulnerabilities in libssh2, a SSH2 client-side library, which could result in denial of service, information leaks or the execution of arbitrary code.
ca25b9123dbf0e7cd6f76e0d01b5702bb805da272f29716e4ac286686b5dffeeRemoteMouse version 3.008 suffers from an arbitrary remote command execution vulnerability.
274f69332962965caabbd09924c5f55a26074e1cf4a1bb2925679a6c556cd796Seo Panel Newsletter plugin version 1.2.0 suffers from a cross site scripting vulnerability.
29d101e3f9584235217a6e67de1c50dbcea99f3ae734228e4813d2dadc282175UltraVNC Launcher version 1.2.2.4 suffers from a denial of service vulnerability.
5ab41911d0a3d624d9d350d4a3c83191dfb1324fd6991fe01807f5d053fc05a6UltraVNC Viewer version 1.2.2.4 suffers from a denial of service vulnerability.
a8874d60ff75aa07455e18736ef6dc77ad3acf55b4e019d5ea21ab2f399f86fcGentoo Linux Security Advisory 201904-14 - Multiple vulnerabilities have been found in GnuTLS, the worst of which could result in a Denial of Service condition. Versions less than 3.6.7 are affected.
f9923910f24db83df01c6e93b3b7106d5cacf99baaef9a2f759a2ced8e5346c9125 bytes small Linux/x86 cat file encode to base64 and post via curl to webserver shellcode.
2919240ee9666114771f7201d4f70cd1483e03a840365e658c60c14e1af48c2cThis Metasploit module exploits a command execution vulnerability in CuteNews prior to version 2.1.2. The attacker can infiltrate the server through the avatar upload process in the profile area. There is no realistic control of the $imgsize function in "/core/modules/dashboard.php" Header content of the file can be changed and the control can be bypassed. We can use the "GIF" header for this process. An ordinary user is enough to exploit the vulnerability. No need for admin user. The module creates a file for you and allows RCE.
623af1c20140392eea85e311d20f5eb4a793c36624f957a81e2e931d894e980c61 bytes small Linux/x86 MMX-PUNPCKLBW encoder shellcode.
1c90863f3df70f5b09f6aded2f996bf748aa46d19feb3aba4e7bbd6ec5224d33NIT-Warangal Dispensary Management System India version 1.0 suffers from a database disclosure vulnerability.
c56767c2c6c829ccec165312cec10c27c2d404073c52496b1af506b8f2f47931WordPress Download Manager plugin version 2.9.92 suffers from a cross site scripting vulnerability.
230d3bf1127bc1b6e6d0768fb7cfc9dfcfd198f1bb7f6f095463a315b1c474d1
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed