Hasan MWB version 1 suffers from a cross site scripting vulnerability.
4a53646feef7ce0d66491bbe2483dcbe70097fdb2aef17667fd6e5a2c356c92eharaj version 1.1 suffers from an add administrator vulnerability.
38347d0a131136cce1051f1386796e18ac8b0e64ff8dac9089ad81afcde8e236HaasCMS version 1.0 suffers from a cross site scripting vulnerability.
d387c18431b97602ac99d6b219b32088892e08d8f0884502b0292a6bc46a7997Gusto Recipes Management version 1.5.1 suffers from a cross site scripting vulnerability.
3613351a536ae9c11c36a6e5d1ff97a489b87a8ec78ffe729345f070a7cf64faGlobal Domains International version 2.0 suffers from a cross site scripting vulnerability.
1656973dc4ca8be554bd994e0d038a8fe766777d182f249ab7cb0daedc1b1076FlightPath LMS version 5.0-rc2 suffers from a cross site scripting vulnerability.
7d3f1bd6b6c6d8035f02559a5410382e6ffb21461d8d42cfa4f11b0a6e656bf4Ubuntu Security Notice 6307-1 - It was discovered that JOSE for C/C++ AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the JWE. An attacker could use this to cause a denial of service or might expose sensitive information.
0fe1a24114e00e5ae9f25a559d718911b8f95a69aeb879b5dabc16383b1d3100Ubuntu Security Notice 6306-1 - It was discovered that Fast DDS incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause a denial of service and information exposure. This issue only affected Ubuntu 22.04 LTS. It was discovered that Fast DDS incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash.
8112de7e7bb9012f06bcecc49b76cc664db02b07546a4635fbe0104870bd0e76Debian Linux Security Advisory 5482-1 - Edbo and Cedric Krier discovered that the Tryton application server does enforce record rules when only reading fields without an SQL type.
db39b6059e17e6fbce67ad1fed139ed2bab834101ae55fcd954cc2f780332cf1Business Directory Script version 3.2 suffers from a remote SQL injection vulnerability.
70beafbc3bc77ef2706b657991478e81d839a8727871b92bc885284db5f7ddbdGusto Recipes Management version 1.5.1 suffers from an ignored default credential vulnerability.
32d7aefee98e0a012396d1b6b1d374bc146494b7a53c02640c0c74560f4f3f38Groupoffice version 3.4.21 suffers from a directory traversal vulnerability.
af3ae7eb776652fc303d2525606aca9ffb8fe19c67d2388b4d47c78078badb01Grawlix CMS version 1.1.1 suffers from a cross site scripting vulnerability.
8ad66853091e8bbea73a95ba47f340da0444431f040779c2e81229c7c52c689dGravigra CMS version 1.0 suffers from a remote SQL injection vulnerability.
d63c15d485ec65c19a876c0bd313c19bbd8cdc74e8c552260439c2f5f53d42b7Global Domains International version 2.0 suffers from an html injection vulnerability.
fb087830fc216043aff6e7499d4513b206b06bfd2260f51fa2875744afbab21bGetSimple CMS version 3.3.2 suffers from a cross site scripting vulnerability.
248bf69c42979908312c5a15b7db76779a02426a5c3d039f534bf1298482142cG and G Corporate CMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
0f3b11f5ba0b3acc1637cac9aaef798d7b9bfc9ed225d72b67b0aaec9d20ea43Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. This is the source code release.
16663585c0ffefd5593a6628d4a20cc8241b9703b11283cfe71ead2b750888c8Red Hat Security Advisory 2023-4671-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container images for Red Hat OpenShift Container Platform 4.12.30.
ed14c54c0dcb242c5472de4d8937781210cd32a78805d4c4caf4ca0fb8d98f2eRed Hat Security Advisory 2023-4720-01 - Red Hat Middleware for OpenShift provides images for many of the Red Hat Middleware products for use within the OpenShift Container Platform cloud computing Platform-as-a-Service for on-premise or private cloud deployments. This release of the AMQ Broker 7.11.1 aligned Operator includes security and bug fixes, and enhancements. For further information, refer to the release notes linked to in the References section.
a606711b915ef5f8c331cf3b871618a55263fd81b6c844ce00cf23539efaae0aRed Hat Security Advisory 2023-4674-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.30.
8ad5199a7093a9e00e4ea3c706c6ed639af45a001f9d4a98403a5d111d3b2e37Ubuntu Security Notice 6305-1 - It was discovered that PHP incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information. It was discovered that PHP incorrectly handled certain PHAR files. An attacker could possibly use this issue to cause a crash, expose sensitive information or execute arbitrary code.
1dc8c3dad3030fd034169b595c1d037465ec0558c0e070e9e64ad1aef797927dThis Metasploit module exploits an unauthenticated remote command execution vulnerability that affects Chamilo versions 1.11.18 and below. Due to a functionality called Chamilo Rapid to easily convert PowerPoint slides to courses on Chamilo, it is possible for an unauthenticated remote attacker to execute arbitrary commands at the OS level using a malicious SOAP request at the vulnerable endpoint /main/webservices/additional_webservices.php.
9eddd6c9a39fb97ca77aeebd1ec713969953ce2f89e609c528b4a46ca5ec152dGEN Security+ version 4.0 suffers from a cross site scripting vulnerability.
51e895e6cd551b6e23dcd06f67a4d88f76ae1b0b246de1aa9eb199c1459a5f5fGeeklog version 2.1.0b1 suffers from a remote SQL injection vulnerability.
6eef51eb7e68e2bb28b9aa972a42bade6056888b3ec14f52822a849f11a72cd1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed