Security News

CVE-2018-11514

National Vulnerability Database - Mon, 05/28/2018 - 10:29
PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in edit_resume_det.php, as demonstrated by changing .docx to .php.
Categories: Security News

CVE-2018-11515

National Vulnerability Database - Mon, 05/28/2018 - 10:29
The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter.
Categories: Security News

CVE-2018-11508

National Vulnerability Database - Mon, 05/28/2018 - 09:29
The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.
Categories: Security News

CVE-2018-11512

National Vulnerability Database - Mon, 05/28/2018 - 09:29
Stored cross-site scripting (XSS) vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to admin/settings/general.
Categories: Security News

CVE-2018-11506

National Vulnerability Database - Mon, 05/28/2018 - 00:29
The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer.
Categories: Security News

CVE-2018-11507

National Vulnerability Database - Mon, 05/28/2018 - 00:29
An issue was discovered in Free Lossless Image Format (FLIF) 0.3. An attacker can trigger a long loop in image_load_pnm in image/image-pnm.cpp.
Categories: Security News

Vuln: VideoLAN VLC 'input/demux_chained.c' Denial of Service Vulnerability

SecurityFocus Vulnerabilities - Mon, 05/28/2018 - 00:00
VideoLAN VLC 'input/demux_chained.c' Denial of Service Vulnerability
Categories: Security News

Vuln: SHA-0/SHA-1 Reduced Operation Digest Collision Weakness

SecurityFocus Vulnerabilities - Mon, 05/28/2018 - 00:00
SHA-0/SHA-1 Reduced Operation Digest Collision Weakness
Categories: Security News

Vuln: Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability

SecurityFocus Vulnerabilities - Mon, 05/28/2018 - 00:00
Apache ZooKeeper CVE-2018-8012 Security Bypass Vulnerability
Categories: Security News

Vuln: strongSwan CVE-2018-5388 Buffer Underflow Vulnerability

SecurityFocus Vulnerabilities - Mon, 05/28/2018 - 00:00
strongSwan CVE-2018-5388 Buffer Underflow Vulnerability
Categories: Security News

CVE-2018-11505

National Vulnerability Database - Sat, 05/26/2018 - 18:29
The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.
Categories: Security News

CVE-2018-6409

National Vulnerability Database - Sat, 05/26/2018 - 18:29
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter.
Categories: Security News

CVE-2018-6410

National Vulnerability Database - Sat, 05/26/2018 - 18:29
An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
Categories: Security News

CVE-2018-6411

National Vulnerability Database - Sat, 05/26/2018 - 18:29
An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap_form_elements SQL Injection.
Categories: Security News

CVE-2018-11500

National Vulnerability Database - Sat, 05/26/2018 - 17:29
An issue was discovered in PublicCMS V4.0.20180210. There is a CSRF vulnerability in "admin/sysUser/save.do?callbackType=closeCurrent&navTabId=sysUser/list" that can add an admin account.
Categories: Security News

CVE-2018-11501

National Vulnerability Database - Sat, 05/26/2018 - 17:29
PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via user_submit.php?upd=2.
Categories: Security News

CVE-2018-11503

National Vulnerability Database - Sat, 05/26/2018 - 17:29
The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.
Categories: Security News

CVE-2018-11504

National Vulnerability Database - Sat, 05/26/2018 - 17:29
The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html.
Categories: Security News

CVE-2018-11494

National Vulnerability Database - Sat, 05/26/2018 - 16:29
The "program extension upload" feature in OpenCart through 3.0.2.0 has a six-step process (upload, install, unzip, move, xml, remove) that allows attackers to execute arbitrary code if the remove step is skipped, because the attacker can discover a secret temporary directory name (containing 10 random digits) via a directory traversal attack involving language_info['code'].
Categories: Security News

CVE-2018-11495

National Vulnerability Database - Sat, 05/26/2018 - 16:29
OpenCart through 3.0.2.0 allows directory traversal in the editDownload function in admin\model\catalog\download.php via admin/index.php?route=catalog/download/edit, related to the download_id. For example, an attacker can download ../../config.php.
Categories: Security News

Pages