News aggregator

CVE-2018-17795

National Vulnerability Database - Sun, 09/30/2018 - 16:29
The function t2p_write_pdf in tiff2pdf.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, a similar issue to CVE-2017-9935.
Categories: Security News

CVE-2018-17796

National Vulnerability Database - Sun, 09/30/2018 - 16:29
An issue was discovered in MRCMS (aka mushroom) through 3.1.2. The WebParam.java file directly accepts the FIELD_T parameter in a request and uses it as a hash of SQL statements without filtering, resulting in a SQL injection vulnerability in getChannel() in the ChannelService.java file.
Categories: Security News

CVE-2018-17797

National Vulnerability Database - Sun, 09/30/2018 - 16:29
An issue was discovered in zzcms 8.3. user/zssave.php allows remote attackers to delete arbitrary files via directory traversal sequences in the oldimg parameter in an action=modify request. This can be leveraged for database access by deleting install.lock.
Categories: Security News

CVE-2018-17798

National Vulnerability Database - Sun, 09/30/2018 - 16:29
An issue was discovered in zzcms 8.3. user/ztconfig.php allows remote attackers to delete arbitrary files via an absolute pathname in the oldimg parameter in an action=modify request. This can be leveraged for database access by deleting install.lock.
Categories: Security News

CVE-2018-17793

National Vulnerability Database - Sun, 09/30/2018 - 15:29
Virtualenv 16.0.0 allows a sandbox escape via "python $(bash >&2)" and "python $(rbash >&2)" commands.
Categories: Security News

CVE-2018-17785

National Vulnerability Database - Sun, 09/30/2018 - 11:29
In blynk-server in Blynk before 0.39.7, Directory Traversal exists via a ../ in a URI that has /static or /static/js at the beginning, as demonstrated by reading the /etc/passwd file.
Categories: Security News

Pages