Ubuntu Security Notice 6964-1 - Noriko Totsuka discovered that ORC incorrectly handled certain crafted file. An attacker could possibly use this issue to execute arbitrary code.
3a6c2ed109728d0536c92b4df06420e05854b036b09d244f6158fe238f8b4584WordPress Shield Security plugin versions 20.0.5 and below cross site scripting exploit that adds an administrative user.
705e2276f9150db10c6e5b1e68e86831e4cde8ecf32c63988f9cecbbcc2e80d0Ubuntu Security Notice 6963-1 - It was discovered that GNOME Shell incorrectly opened the portal helper automatically when detecting a captive network portal. A remote attacker could possibly use this issue to load arbitrary web pages containing JavaScript, leading to resource consumption or other attacks.
3cae09853348edef16718240a08f0dae3c90185f9ca6feaec73a9afdc7a5c07fBuild Your Own Botnet (BYOB) version 2.0.0 exploit that works by spoofing an agent callback to overwrite the sqlite database and bypass authentication and exploiting an authenticated command injection in the payload builder page.
e760438fc4aae0279f9451d259bb80bd3bc3ac05c79dc80b0f66a0ea69910f54Red Hat Security Advisory 2024-5482-03 - A security update is now available for Red Hat JBoss Enterprise Application Platform 8.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include denial of service and server-side request forgery vulnerabilities.
3958d9c7fc126ba0f4c02e11e5fdac78b92fbabe5003b9b0e0cb257e60791bb9Red Hat Security Advisory 2024-5481-03 - A security update is now available for Red Hat JBoss Enterprise Application Platform 8.0 for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include denial of service and server-side request forgery vulnerabilities.
aaeec23a3a3b2c8426247e4d87106e536a58c711ec8a8d203097b77302c13c72Ubuntu Security Notice 6962-1 - It was discovered that LibreOffice incorrectly allowed users to enable macros when a cryptographic signature failed to validate. If a user were tricked into opening a specially crafted document, a remote attacker could possibly execute arbitrary macros.
5895f04ac2be62b6ac2b10b1218fcf985ae1f2d30f63e3e7eeb4edfbb05a28e5Insurance version 1.2 suffers from an ignored default credential vulnerability.
6c9cae927874e9bb8f72a2161ca3b5dd9f0c9e51e35775faf16093ac8dd4bce4Red Hat Security Advisory 2024-5479-03 - A security update is now available for Red Hat JBoss Enterprise Application Platform 8.0 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. Issues addressed include denial of service and server-side request forgery vulnerabilities.
e64c818815940a66911f1595497daeb46a4dcf2d0b7f1d8d1d4558410bd2d001Red Hat Security Advisory 2024-5453-03 - This is an updated version of the Fence Agents Remediation Operator. This Operator is delivered by Red Hat Workload Availability, and version 0.4.1 is now available for RHEL 8. Issues addressed include a code execution vulnerability.
763ec89e64480d4a9fec7faad214636541efb726729db29f8942b2e644d4cc45Human Resource Management System 2024 version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
3800f1816111f1edbb9091c2250c05c9601784c51aa09742476281c2862e85c3Ubuntu Security Notice 6909-3 - USN-6909-1 fixed vulnerabilities in Bind. This update provides the corresponding updates for Ubuntu 16.04 LTS. Toshifumi Sakaguchi discovered that Bind incorrectly handled having a very large number of RRs existing at the same time. A remote attacker could possibly use this issue to cause Bind to consume resources, leading to a denial of service.
b15dffba36e7e1c55604183574dfed07c627a98e9016a21d12c76c9fdbb726beHotel Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
2536c30b03f92e1a431ba68657f0b804165f343b2b4f604f1211f7bfc5be9a1aRed Hat Security Advisory 2024-5363-03 - An update for kernel is now available for Red Hat Enterprise Linux 9.
8b7d77185f1055d2423b24cab44e878066f63022e4f7b242f851f895e45bc89eRed Hat Security Advisory 2024-5334-03 - An update for.NET 8.0 is now available for Red Hat Enterprise Linux 9. Issues addressed include an information leakage vulnerability.
2a90c7e9f23714fac35e026403edda34e30802529bc1cc83423847021cd5bb22Red Hat Security Advisory 2024-5322-03 - An update for firefox is now available for Red Hat Enterprise Linux 9. Issues addressed include bypass, out of bounds read, and use-after-free vulnerabilities.
7fe709f106321e1ae25224d15de62b3dd89db90bdff84a7715f6a0b2ede5eccdHotel Booking System version 1.0 suffers from a remote shell upload vulnerability.
30e109a72aa50be38d3b11de95969eede34fe16c3710c319c4bd7d3b9aaf5378Home Owners Collection Management System version 1.0 suffers from an ignored default credential vulnerability.
94fb8d8c82f8132953cb67c97a9b682c8e63a436a475a575173b89ddf54daa9fRed Hat Security Advisory 2024-5279-03 - An update for python3.11-setuptools is now available for Red Hat Enterprise Linux 9. Issues addressed include a code execution vulnerability.
acc567c72de776cf7bbda3385521eb6bbc3e4af43bebe22243c3c03c9fe1e983Red Hat Security Advisory 2024-5231-03 - An update for bind and bind-dyndb-ldap is now available for Red Hat Enterprise Linux 9.
2cde8239a3a2fa93761f931b5d716c3e6192042a4dc5c6b906d08376fa60dac1Red Hat Security Advisory 2024-5160-03 - Red Hat OpenShift Container Platform release 4.15.27 is now available with updates to packages and images that fix several bugs and add enhancements.
ea1616b93aa26ff1ff54bb8909eea10b4907b2a9224c662f9ed3890d09be0726Giftora version 1.0 suffers from a cross site scripting vulnerability.
571b1691f68912443e4375f4b2eeed71940910d33468d76246e2f0a264a6ff84Bhojon Restaurant Management System version 3.0 suffers from an insecure direct object reference vulnerability.
98c12c7a5556d4399b71f053e8f21eaf5c59e49e15d4bf7f6b1980de56fec3c2
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed