News aggregator

CVE-2018-6578

National Vulnerability Database - Fri, 02/02/2018 - 12:29
SQL Injection exists in the JE PayperVideo 3.0.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request.
Categories: Security News

CVE-2018-6579

National Vulnerability Database - Fri, 02/02/2018 - 12:29
SQL Injection exists in the JEXTN Reverse Auction 3.1.0 component for Joomla! via a view=products&uid= request.
Categories: Security News

CVE-2018-6580

National Vulnerability Database - Fri, 02/02/2018 - 12:29
Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request.
Categories: Security News

CVE-2018-6581

National Vulnerability Database - Fri, 02/02/2018 - 12:29
SQL Injection exists in the JMS Music 1.1.1 component for Joomla! via a search with the keyword, artist, or username parameter.
Categories: Security News

CVE-2017-18121

National Vulnerability Database - Fri, 02/02/2018 - 10:29
The consentAdmin module in SimpleSAMLphp through 1.14.15 is vulnerable to a Cross-Site Scripting attack, allowing an attacker to craft links that could execute arbitrary JavaScript code on the victim's web browser.
Categories: Security News

CVE-2017-18122

National Vulnerability Database - Fri, 02/02/2018 - 10:29
A signature-validation bypass issue was discovered in SimpleSAMLphp through 1.14.16. A SimpleSAMLphp Service Provider using SAML 1.1 will regard as valid any unsigned SAML response containing more than one signed assertion, provided that the signature of at least one of the assertions is valid. Attributes contained in all the assertions received will be merged and the entityID of the first assertion received will be used, allowing an attacker to impersonate any user of any IdP given an assertion signed by the targeted IdP.
Categories: Security News

CVE-2017-5727

National Vulnerability Database - Fri, 02/02/2018 - 10:29
Pointer dereference in subsystem in Intel Graphics Driver 15.40.x.x, 15.45.x.x, 15.46.x.x allows unprivileged user to elevate privileges via local access.
Categories: Security News

CVE-2018-6561

National Vulnerability Database - Fri, 02/02/2018 - 10:29
dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute of an SVG element.
Categories: Security News

CVE-2017-18080

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The saveConfigureSecurity resource in Atlassian Bamboo before version 6.3.1 allows remote attackers to modify security settings via a Cross-site request forgery (CSRF) vulnerability.
Categories: Security News

CVE-2017-18081

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The signupUser resource in Atlassian Bamboo before version 6.3.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the value of the csrf token cookie.
Categories: Security News

CVE-2017-18082

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The plan configure branches resource in Atlassian Bamboo before version 6.2.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the name of a branch.
Categories: Security News

CVE-2017-18083

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The editinword resource in Atlassian Confluence Server before version 6.4.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the contents of an uploaded file.
Categories: Security News

CVE-2017-18084

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The usermacros resource in Atlassian Confluence Server before version 6.3.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the description of a macro.
Categories: Security News

CVE-2017-18085

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The viewdefaultdecorator resource in Atlassian Confluence Server before version 6.6.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability through the key parameter.
Categories: Security News

CVE-2017-18086

National Vulnerability Database - Fri, 02/02/2018 - 09:29
Various resources in Atlassian Confluence Server before version 6.4.2 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the issuesURL parameter.
Categories: Security News

CVE-2018-6486

National Vulnerability Database - Fri, 02/02/2018 - 09:29
XML External Entity (XXE) vulnerability in Micro Focus Fortify Audit Workbench (AWB) and Micro Focus Fortify Software Security Center (SSC), versions 16.10, 16.20, 17.10. This vulnerability could be exploited to allow a XML External Entity (XXE) injection.
Categories: Security News

CVE-2018-6551

National Vulnerability Database - Fri, 02/02/2018 - 09:29
The malloc implementation in the GNU C Library (aka glibc or libc6), from version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not properly handle malloc calls with arguments close to SIZE_MAX and could return a pointer to a heap region that is smaller than requested, eventually leading to heap corruption.
Categories: Security News

CVE-2018-6560

National Vulnerability Database - Fri, 02/02/2018 - 09:29
In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x before 0.10.3, crafted D-Bus messages to the host can be used to break out of the sandbox, because whitespace handling in the proxy is not identical to whitespace handling in the daemon.
Categories: Security News

CVE-2017-14177

National Vulnerability Database - Fri, 02/02/2018 - 09:29
Apport through 2.20.7 does not properly handle core dumps from setuid binaries allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1324.
Categories: Security News

CVE-2017-14178

National Vulnerability Database - Fri, 02/02/2018 - 09:29
In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions.
Categories: Security News

Pages