Microsoft Edge suffers from a Flash click2play bypass with CObjectElement::FinalCreateObject.
fdda336815ac63fe08759882eed8c25471acba4310abb045c2527612f4538060There is an issue in VBScript in the VbsErase function. In some cases, VbsErase fails to clear the argument variable properly, which can trivially lead to crafting a variable with the array type, but with a pointer controlled controlled by an attacker.
e3cbf1077875f9a05eea70f53538809230cbe1a14641ae99c456cce2835e9409GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
1bf9ed46dc1ec5d8cfa13ba1ad47f94981f3b6a7ec16ad9123cc2549c4cbf87bThe SAML SSO addon in JFrog Artifactory version 6.5.9 does not properly validate the XML signature in the SAMLResponse field send to the URL /webapp/saml/loginResponse. An attacker can use this flaw to login as any user if they already can login as some user.
2210b15f819271c6a55202eb862e9978ee5dcea5cb47625f5426dc464569ec4dSlackware Security Advisory - New libssh2 packages are available for Slackware 14.2 and -current to fix security issues.
fdb3fcc010d3bb0703e700dfb40e08b1ab9651ec7797a5e379ce91b14de2ca66Debian Linux Security Advisory 4409-1 - Erik Olof Gunnar Andersson discovered that incorrect validation of port settings in the iptables security group driver of Neutron, the OpenStack virtual network service, could result in denial of service in a multi tenant setup.
368cd395f5b140bbcb545c37df7d256407e2b6dea2573867aa6fc9a29c5f6cc9Red Hat Security Advisory 2019-0600-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web application development. Action Pack implements the controller and the view components. Issues addressed include a deserialization vulnerability.
24506c94945d77f1e69082d8877ef9e168907f81511d95811e8962ffa7ee64a0Gentoo Linux Security Advisory 201903-15 - Multiple vulnerabilities have been found in NTP, the worst of which could result in the remote execution of arbitrary code. Versions less than 4.2.8_p13 are affected.
eeba10aa41c8236e0d57e96ec364f7f0bda2a9f0a77b6dde38cd6a4b9fb93411There's a race condition in the destruction of the BindingState for bindings to the StoragePartitionService in Chrome. It looks like the root cause of the issue is that since we can get two concurrent calls to callbacks returned from mojo::BindingSet::GetBadMessageCallback() from the same BindingSet, which results in a data race destroying the same BindingState.
e74b2b8256d75d7a1f9c0936ff14ed0a0b8cf12cea0653834d4403581f08f4b0MSHTML only checks for the CLSID associated with VBScript when blocking in the Internet Zone, but doesn't check other VBScript CLSIDs which allow a web page to bypass the security zone policy.
a033e526788dc652d88a6718933e8da263d965274cd8d51465eee224f1f23696Chrome suffers from a use-after-free vulnerability in MidiManagerWin.
5561abfbf792852e4be2a5a6f9908418ba3bb61c352292347a907340f971abf6Chrome suffers from a use-after-free vulnerability in FileSystemOperationRunner.
175e33f2fe84321b31ba9922dcb3c0c36eff272a29a2b1a39380be7b60162958Advanced Host Monitor version 11.92 Beta suffers from a buffer overflow vulnerability.
991f24e5abedf0208aaf8909cb74bb3f4da2987ea0625e395168ad6efb12aea7There appears to be a race condition in the destruction of the ExtensionsGuestViewMessageFilter if the ProcessIdToFilterMap is modified concurrently in Chrome.
153cc2f98cfe6458909e177b32d616e5357adc7532ae04962d456870e9b99131The Password Manager Extension in Abine Blur versions 7.8.24x allows attackers to bypass the multi-factor authentication and macOS disk-encryption protection mechanisms, and consequently exfiltrate secured data, because the right-click context menu is not secured. NOTE: this vulnerability exists because of a CVE-2018-7213 regression.
d3eb22c37afbe328ea52dfe0b3495fc88d89d8a4c97d74acb0389578a1bbcf37eNdonesia Portal version 8.7 suffers from remote SQL injection and iframe injection vulnerabilities.
41b84ab34be5877ca18d905eeee6474e22e36e8aaa89b3eee420bcc443861ca6Netartmedia PHP Mall version 4.1 suffers from a remote SQL injection vulnerability.
9b66d537d32b242cc56ff43abfd92b0709a01c6777547e439f392de1cff4abb8Gila CMS version 1.9.1 suffers from a cross site scripting vulnerability.
cececfc54d68461e108ae5f091aeab3df0c530f0f51ee7f09e729bf7d1a2f9b7Netartmedia Event Portal version 2.0 suffers from a remote SQL injection vulnerability.
5a44080084849def55ffca9f3edc849f7c32ad5b324e6b66de6a171f238655c8Netartmedia Real Estate Portal version 5.0 suffers from a remote SQL injection vulnerability.
976790f17d6a0a343305ec3e7fd444eee43b7d9f3bb975b491b64eb7a89f4935MyBB Upcoming Events plugin version 1.32 suffers from a cross site scripting vulnerability.
40d568e3193578e0d130eff7d2b6b0d39f9ce083e43ce1526c5dae38735b037aThis Metasploit module exploits a vulnerability in Jenkins dynamic routing to bypass the Overall/Read ACL and leverage Groovy metaprogramming to download and execute a malicious JAR file. The ACL bypass gadget is specific to Jenkins versions 2.137 and below and will not work on later versions of Jenkins. Tested against Jenkins 2.137 and Pipeline: Groovy Plugin 2.61.
1fa7a0581a082a2a0c1e14681f05b88994d45c7f8daeb7fbed7b6dacc77b9a72
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed