Security News

CVE-2019-8411

National Vulnerability Database - Sun, 02/17/2019 - 14:29
admin/dl_data.php in zzcms 2018 (2018-10-19) allows remote attackers to delete arbitrary files via action=del&filename=../ directory traversal.
Categories: Security News

CVE-2019-8412

National Vulnerability Database - Sun, 02/17/2019 - 14:29
FeiFeiCms 4.0.181010 on Windows allows remote attackers to read or delete arbitrary files via index.php?s=Admin-Data-Down-id-..\ or index.php?s=Admin-Data-Del-id-..\ directory traversal.
Categories: Security News

CVE-2019-8413

National Vulnerability Database - Sun, 02/17/2019 - 14:29
On Xiaomi MIX 2 devices with the 4.4.78 kernel, a NULL pointer dereference in the ioctl interface of the device file /dev/elliptic1 or /dev/elliptic0 causes a system crash via IOCTL 0x4008c575 (aka decimal 1074316661).
Categories: Security News

CVE-2018-20782

National Vulnerability Database - Sun, 02/17/2019 - 13:29
The GloBee plugin before 1.1.2 for WooCommerce mishandles IPN messages.
Categories: Security News

CVE-2019-8407

National Vulnerability Database - Sun, 02/17/2019 - 13:29
HongCMS 3.0.0 allows arbitrary file read and write operations via a ../ in the filename parameter to the admin/index.php/language/edit URI.
Categories: Security News

CVE-2019-8408

National Vulnerability Database - Sun, 02/17/2019 - 13:29
OneFileCMS 3.6.13 allows remote attackers to modify onefilecms.php by clicking the Copy button twice.
Categories: Security News

CVE-2016-10742

National Vulnerability Database - Sun, 02/17/2019 - 11:29
Zabbix before 2.2.21rc1, 3.x before 3.0.13rc1, 3.1.x and 3.2.x before 3.2.10rc1, and 3.3.x and 3.4.x before 3.4.4rc1 allows open redirect via the request parameter.
Categories: Security News

CVE-2019-8393

National Vulnerability Database - Sun, 02/17/2019 - 10:29
Hotels_Server through 2018-11-05 has SQL Injection via the API because the controller/api/login.php telephone parameter is mishandled.
Categories: Security News

CVE-2019-8396

National Vulnerability Database - Sun, 02/17/2019 - 01:29
A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."
Categories: Security News

CVE-2019-8397

National Vulnerability Database - Sun, 02/17/2019 - 01:29
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_close_real in H5T.c.
Categories: Security News

CVE-2019-8398

National Vulnerability Database - Sun, 02/17/2019 - 01:29
An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5T_get_size in H5T.c.
Categories: Security News

CVE-2019-8400

National Vulnerability Database - Sun, 02/17/2019 - 01:29
ORY Hydra before v1.0.0-rc.3+oryOS.9 has Reflected XSS via the oauth2/fallbacks/error error_hint parameter.
Categories: Security News

CVE-2019-7399

National Vulnerability Database - Sat, 02/16/2019 - 23:29
Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages.
Categories: Security News

CVE-2019-8392

National Vulnerability Database - Sat, 02/16/2019 - 23:29
An issue was discovered on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to enable Guest Wi-Fi via the SetWLanRadioSettings HNAP API to the web service provided by /bin/goahead.
Categories: Security News

CVE-2019-8394

National Vulnerability Database - Sat, 02/16/2019 - 23:29
Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization.
Categories: Security News

CVE-2019-8395

National Vulnerability Database - Sat, 02/16/2019 - 23:29
An Insecure Direct Object Reference (IDOR) vulnerability exists in Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10007 via an attachment to a request.
Categories: Security News

CVE-2019-8389

National Vulnerability Database - Sat, 02/16/2019 - 22:29
A file-read vulnerability was identified in the Wi-Fi transfer feature of Musicloud 1.6. By default, the application runs a transfer service on port 8080, accessible by everyone on the same Wi-Fi network. An attacker can send the POST parameters downfiles and cur-folder (with a crafted ../ payload) to the download.script endpoint. This will create a MusicPlayerArchive.zip archive that is publicly accessible and includes the content of any requested file (such as the /etc/passwd file).
Categories: Security News

CVE-2019-8376

National Vulnerability Database - Sat, 02/16/2019 - 21:29
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
Categories: Security News

CVE-2019-8377

National Vulnerability Database - Sat, 02/16/2019 - 21:29
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
Categories: Security News

CVE-2019-8378

National Vulnerability Database - Sat, 02/16/2019 - 21:29
An issue was discovered in Bento4 1.5.1-628. A heap-based buffer over-read exists in AP4_BitStream::ReadBytes() in Codecs/Ap4BitStream.cpp, a similar issue to CVE-2017-14645. It can be triggered by sending a crafted file to the aac2mp4 binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
Categories: Security News

Pages