News aggregator

CVE-2018-0205

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the User Provisioning tab in the Cisco Prime Collaboration Provisioning Tool could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by placing a malicious string in the Prime Collaboration Provisioning database. A successful exploit could allow the attacker to access Cisco Prime Collaboration Provisioning by injecting crafted data into the database. Cisco Bug IDs: CSCvd86609.
Categories: Security News

CVE-2018-0206

National Vulnerability Database - Wed, 02/21/2018 - 19:29
A vulnerability in the web-based management interface of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a user of the web-based management interface to click a link that submits malicious input to the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or allow the attacker to access sensitive browser-based information. Cisco Bug IDs: CSCvg74815.
Categories: Security News

CVE-2018-6936

National Vulnerability Database - Wed, 02/21/2018 - 17:29
Cross Site Scripting (XSS) exists on the D-Link DIR-600M C1 3.01 via the SSID or the name of a user account.
Categories: Security News

CVE-2018-7281

National Vulnerability Database - Wed, 02/21/2018 - 17:29
CactusVPN 5.3.6 for macOS contains a root privilege escalation vulnerability through a setuid root binary called runme. The binary takes a single command line argument and passes this argument to a system() call, thus allowing low privileged users to execute commands as root.
Categories: Security News

CVE-2018-7311

National Vulnerability Database - Wed, 02/21/2018 - 17:29
** DISPUTED ** PrivateVPN 2.0.31 for macOS suffers from a root privilege escalation vulnerability. The software installs a privileged helper tool that runs as the root user. This privileged helper tool is installed as a LaunchDaemon and implements an XPC service. The XPC service is responsible for handling new VPN connection operations via the main PrivateVPN application. The privileged helper tool creates new VPN connections by executing the openvpn binary located in the /Applications/PrivateVPN.app/Contents/Resources directory. The openvpn binary can be overwritten by the default user, which allows an attacker that has already installed malicious software as the default user to replace the binary. When a new VPN connection is established, the privileged helper tool will launch this malicious binary, thus allowing an attacker to execute code as the root user. NOTE: the vendor has reportedly indicated that this behavior is "an acceptable part of their software."
Categories: Security News

CVE-2017-1462

National Vulnerability Database - Wed, 02/21/2018 - 16:29
IBM Rhapsody DM 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 128461.
Categories: Security News

CVE-2017-1604

National Vulnerability Database - Wed, 02/21/2018 - 16:29
IBM Maximo Anywhere 7.5 and 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 132851.
Categories: Security News

CVE-2017-1758

National Vulnerability Database - Wed, 02/21/2018 - 16:29
IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1) is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 135859.
Categories: Security News

CVE-2018-7308

National Vulnerability Database - Wed, 02/21/2018 - 16:29
A CSRF issue was found in var/www/html/files.php in DanWin hosting through 2018-02-11 that allows arbitrary remote users to add/delete/modify any files in any hosting account.
Categories: Security News

CVE-2018-7302

National Vulnerability Database - Wed, 02/21/2018 - 15:29
Tiki 17.1 allows upload of a .PNG file that actually has SVG content, leading to XSS.
Categories: Security News

CVE-2018-7303

National Vulnerability Database - Wed, 02/21/2018 - 15:29
The Calendar component in Tiki 17.1 allows HTML injection.
Categories: Security News

CVE-2018-7304

National Vulnerability Database - Wed, 02/21/2018 - 15:29
Tiki 17.1 does not validate user input for special characters; consequently, a CSV Injection attack can open a CMD.EXE or Calculator window on the victim machine to perform malicious activity, as demonstrated by an "=cmd|' /C calc'!A0" payload during User Creation.
Categories: Security News

CVE-2018-7305

National Vulnerability Database - Wed, 02/21/2018 - 15:29
MyBB 1.8.14 is not checking for a valid CSRF token, leading to arbitrary deletion of user accounts.
Categories: Security News

CVE-2017-12161

National Vulnerability Database - Wed, 02/21/2018 - 13:29
It was found that keycloak before 3.4.2 final would permit misuse of a client-side /etc/hosts entry to spoof a URL in a password reset request. An attacker could use this flaw to craft a malicious password reset request and gain a valid reset token, leading to information disclosure or further attacks.
Categories: Security News

CVE-2018-7289

National Vulnerability Database - Wed, 02/21/2018 - 13:29
An issue was discovered in armadito-windows-driver/src/communication.c in Armadito 0.12.7.2. Malware with filenames containing pure UTF-16 characters can bypass detection. The user-mode service will fail to open the file for scanning after the conversion is done from Unicode to ANSI. This happens because characters that cannot be converted from Unicode are replaced with '?' characters.
Categories: Security News

CVE-2018-7261

National Vulnerability Database - Wed, 02/21/2018 - 11:29
There are multiple Persistent XSS vulnerabilities in Radiant CMS 1.1.4. They affect Personal Preferences (Name and Username) and Configuration (Site Title, Dev Site Domain, Page Parts, and Page Fields).
Categories: Security News

CVE-2018-7280

National Vulnerability Database - Wed, 02/21/2018 - 11:29
The Ninja Forms plugin before 3.2.14 for WordPress has XSS.
Categories: Security News

CVE-2013-4891

National Vulnerability Database - Wed, 02/21/2018 - 11:29
The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag.
Categories: Security News

CVE-2015-5314

National Vulnerability Database - Wed, 02/21/2018 - 11:29
The eap_pwd_process function in eap_server/eap_server_pwd.c in hostapd 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when used with (1) an internal EAP server or (2) a RADIUS server and EAP-pwd is enabled in a runtime configuration, which allows remote attackers to cause a denial of service (process termination) via a large final fragment in an EAP-pwd message.
Categories: Security News

CVE-2015-5315

National Vulnerability Database - Wed, 02/21/2018 - 11:29
The eap_pwd_process function in eap_peer/eap_pwd.c in wpa_supplicant 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when EAP-pwd is enabled in a network configuration profile, which allows remote attackers to cause a denial of service (process termination) via a large final fragment in an EAP-pwd message.
Categories: Security News

Pages