News aggregator

CVE-2018-17108

National Vulnerability Database - Sun, 09/16/2018 - 19:29
The SBIbuddy (aka com.sbi.erupee) application 1.41 and 1.42 for Android might allow attackers to perform Account Takeover attacks by intercepting a security-question response during the initial configuration of the application.
Categories: Security News

CVE-2018-17103

National Vulnerability Database - Sun, 09/16/2018 - 17:29
** DISPUTED ** An issue was discovered in GetSimple CMS v3.3.13. There is a CSRF vulnerability that can change the administrator's password via admin/settings.php. NOTE: The vendor reported that the PoC was sending a value for the nonce parameter.
Categories: Security News

CVE-2018-17104

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in Microweber 1.0.7. There is a CSRF attack (against the admin user) that can add an administrative account via api/save_user.
Categories: Security News

CVE-2018-17106

National Vulnerability Database - Sun, 09/16/2018 - 17:29
In Tinyftp Tinyftpd 1.1, a buffer overflow exists in the text variable of the do_mkd function in the ftpproto.c file. An attacker can overwrite ebp via a long pathname.
Categories: Security News

CVE-2018-17096

National Vulnerability Database - Sun, 09/16/2018 - 17:29
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
Categories: Security News

CVE-2018-17097

National Vulnerability Database - Sun, 09/16/2018 - 17:29
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch.
Categories: Security News

CVE-2018-17098

National Vulnerability Database - Sun, 09/16/2018 - 17:29
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.
Categories: Security News

CVE-2018-17100

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiply_ms in tools/ppm2tiff.c, which can cause a denial of service (crash) or possibly have unspecified other impact via a crafted image file.
Categories: Security News

CVE-2018-17101

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.
Categories: Security News

CVE-2018-17102

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in QuickAppsCMS (aka QACMS) through 2.0.0-beta2. A CSRF vulnerability can change the administrator password via the user/me URI.
Categories: Security News

CVE-2018-17090

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazy_adresow.php and /pages/proxy/add.php are vulnerable to stored XSS that can be triggered by closing <textarea> followed by <script></script> tags.
Categories: Security News

CVE-2018-17091

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in DonLinkage 6.6.8. It allows remote attackers to obtain potentially sensitive information via a direct request for files/temporary.txt.
Categories: Security News

CVE-2018-17092

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages/proxy/add.php can be exploited via specially crafted input, allowing an attacker to obtain information from a database. The vulnerability can only be triggered by an authorized user.
Categories: Security News

CVE-2018-17093

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue has been discovered in mackyle xar 1.6.1. There is a NULL pointer dereference in xar_get_path in lib/util.c.
Categories: Security News

CVE-2018-17094

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue has been discovered in mackyle xar 1.6.1. There is a NULL pointer dereference in xar_unserialize in lib/archive.c.
Categories: Security News

CVE-2018-17095

National Vulnerability Database - Sun, 09/16/2018 - 17:29
An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6. A heap-based buffer overflow in Expand3To4Module::run has occurred when running sfconvert.
Categories: Security News

CVE-2018-17062

National Vulnerability Database - Sun, 09/16/2018 - 13:29
An issue was discovered in SeaCMS 6.64. XSS exists in admin_video.php via the action, area, type, yuyan, jqtype, v_isunion, v_recycled, v_ismoney, or v_ispsd parameter.
Categories: Security News

CVE-2018-17085

National Vulnerability Database - Sun, 09/16/2018 - 13:29
An issue was discovered in OTCMS 3.61. XSS exists in admin/users.php via these parameters: dataTypeCN dataMode dataModeStr.
Categories: Security News

CVE-2018-17086

National Vulnerability Database - Sun, 09/16/2018 - 13:29
An issue was discovered in OTCMS 3.61. XSS exists in admin/share_switch.php via these parameters: fieldName fieldName2 tabName.
Categories: Security News

CVE-2018-17088

National Vulnerability Database - Sun, 09/16/2018 - 13:29
The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because there is an integer overflow during a check for whether a location exceeds the EXIF data length. This is analogous to the CVE-2016-3822 integer overflow in exif.c. This gpsinfo.c vulnerability is unrelated to the CVE-2018-16554 gpsinfo.c vulnerability.
Categories: Security News

Pages