Ubuntu Security Notice 6271-1 - Xiang Li discovered that MaraDNS incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to obtain sensitive information. Huascar Tejeda discovered that MaraDNS incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service.
7f2d611797f2f8ddadb470f6a8f078b6453bb40ffcdec8228c380432f2e47d88WordPress Adivaha Travel plugin version 2.3 suffers from a remote SQL injection vulnerability.
a73161433f7f4c8ae034d0b73662086ffc5a71363f80573c0acbdc2a80a0bd14Red Hat Security Advisory 2023-4449-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20. Issues addressed include code execution, denial of service, and heap corruption vulnerabilities.
a9b46b128acaca32eb52c51946d8dc9b5c96b8d3879c112c05d24504238616f9Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
f394df7d20391fb76e975ae88f3eba1da05ac9c4945e2c7f709326e185e17025PHPJabbers Bus Reservation System version 1.1 suffers from a remote SQL injection vulnerability.
c8f18a9ada80d27f9ca7a1eb72dd97f3c6b158b7ca60e81a5d67b5f8ad6d6a53Ubuntu Security Notice 6270-1 - It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening a specially crafted file, it could cause Vim to crash, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. It was discovered that Vim incorrectly handled memory when deleting buffers in diff mode. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
eed4dfef5b1b3ea6e9149145b4e2d047b6218a0d39042c1f1c0e49d294de54b2OX App Suite suffers from remote SQL injection, server-side request forgery, cross site scripting, improper neutralization, command injection, and exposure of sensitive information vulnerabilities.
719567b07d01c758653bc54850b5ade966278aebda53de372168e4c5c9d605c8Ubuntu Security Notice 6269-1 - It was discovered that GStreamer Good Plugins incorrectly handled certain FLAC image tags. A remote attacker could use this issue to cause GStreamer Good Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code.
c2129784734e3d4571c176c6b7d78d1f14f85b0ac0d3aca7cedbabc9ce27eb4aAcademy LMS version 6.0 suffers from a cross site scripting vulnerability.
bf84f5ec1042540cec811c33af36c267f244e4aea1f784bb5c750d38b4535956Savant Web Server version 3.1 remote buffer overflow exploit with egghunter shellcode.
55105bce6fa65050219f56386fd46c40c00c4c48c7e09a9b26fcab79d90e4458PHPJabbers Rental Property Booking version 2.0 suffers from a cross site scripting vulnerability.
7b0536ee572d03804ca2c245f5c792cd9d5f5538de0698296e1cd71e42c03b17Red Hat Security Advisory 2023-4448-01 - .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.120 and .NET Runtime 6.0.20. Issues addressed include code execution, denial of service, and heap corruption vulnerabilities.
8b1a0d581b0472ed72798ae1cc1f991f8bf01133b11b784c0bc2355b5b1e766fPHPJabbers Taxi Booking version 2.0 suffers from a cross site scripting vulnerability.
d9e0fafe887841b6ce3449522faa7e6d7dfbe087107168c65e93e72303dfcb55PHPJabbers Cleaning Business version 1.0 suffers from a cross site scripting vulnerability.
d315d9af6786daa74665938b85b19ac75548a1452ca22cd901740e5da65a1619WebCalendar version 1.3 suffers from a cross site request forgery vulnerability.
c5cb1f1fc01d47cb00ed9f86129b27622a3e153a0f6f02595a1f6231b64bda44WebCoder CMS version 1.0 suffers from a remote SQL injection vulnerability.
b06b9fef161543a0c00a9c7393cced71a5d63acabef2b30292bccfb14a280688WebCom CMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
c8611fc5ff39f300f88954f5da6c869ea0e00d9ca92cb49160381403b051f1e0PHPJabbers Night Club Booking version 1.0 suffers from a cross site scripting vulnerability.
dce8b1d810c449c8a85e9c1688093f05c64153fef6b2fe0d6283d03262a6aa71PHPJabbers Service Booking Script version 1.0 suffers from a cross site scripting vulnerability.
83dcaa526ef4d5c8f07b95e68347ac8c1fa25d41e883ebda51e510e79c18a70cPHPJabbers Shuttle Booking Software version 1.0 suffers from a cross site scripting vulnerability.
5bf837297b70f30127eb450009994866713540aac513b0ddc9ef72f85b924f42Ubuntu Security Notice 6268-1 - It was discovered that GStreamer Base Plugins incorrectly handled certain FLAC image tags. A remote attacker could use this issue to cause GStreamer Base Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that GStreamer Base Plugins incorrectly handled certain subtitles. A remote attacker could use this issue to cause GStreamer Base Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code.
62d7331e15a92c02979c47ce4bc9712062b94c31671bf36ee4c3cfbfd44c64ffWebIncorp CMS version 1.0 suffers from a cross site scripting vulnerability.
dcf274deb4c1d28157d45d207bac4111aa702151ab77c38489ea4814141ec06aPHPJabbers Bus Reservation System version 1.1 suffers from a cross site scripting vulnerability.
68369d671c0890bf724466db919672d83f55e1f71ca3441eda5de01bd1ee5f1ePHPJabbers Availability Booking Calendar version 5.0 suffers from a cross site scripting vulnerability.
81c166f8b46ae0caabfde193e50b95fcad7deb1a14d4fd15ceeb28c76cd185beWEBinsta Mailing Manager version 1.3 suffers from an information disclosure vulnerability.
d12574b9d2d24c71b331ec5e3cfa01a82cb9d41372a3d1666676b6bf364d21a4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed