Red Hat Security Advisory 2020-1317-01
Red Hat Security Advisory 2020-1317-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include...
View ArticleSpotAuditor 5.3.4 Denial Of Service
SpotAuditor version 5.3.4 Name denial of service proof of concept exploit.
View ArticleGentoo Linux Security Advisory 202004-07
Gentoo Linux Security Advisory 202004-7 - Multiple vulnerabilities have been found in Mozilla Firefox, the worst of which could result in the arbitrary execution of code. Versions less than 74.0.1 are...
View ArticleZOC Terminal 7.25.5 Denial Of Service
ZOC Terminal version 7.25.5 denial of service proof of concept exploit.
View ArticleRed Hat Security Advisory 2020-1318-01
Red Hat Security Advisory 2020-1318-01 - Telnet is a popular protocol for logging in to remote systems over the Internet. The telnet-server packages include a telnet service that supports remote logins...
View ArticleWhatsApp Desktop 0.3.9308 Cross Site Scripting
WhatsApp Desktop version 0.3.9308 suffers from a persistent cross site scripting vulnerability.
View ArticleUbuntu Security Notice USN-4317-1
Ubuntu Security Notice 4317-1 - Two use-after-free bugs were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could exploit these to cause a denial...
View ArticleVanguard 2.1 Cross Site Scripting
Vanguard version 2.1 suffers from multiple cross site scripting vulnerabilities.
View ArticleRed Hat Security Advisory 2020-1324-01
Red Hat Security Advisory 2020-1324-01 - Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and...
View ArticleBolt CMS 3.7.0 Remote Code Execution
Bolt CMS version 3.7.0 suffers from an authenticated remote code execution vulnerability.
View ArticleRed Hat Security Advisory 2020-1325-01
Red Hat Security Advisory 2020-1325-01 - python-XStatic-jQuery is the jQuery javascript library packaged for Python's setuptools. Issues addressed include code execution and denial of service...
View ArticlepfSense 2.4.4-P3 User Manager Cross Site Scripting
pfSense version 2.4.4-P3 suffers from a User Manager persistent cross site scripting vulnerability.
View ArticleRed Hat Security Advisory 2020-1335-01
Red Hat Security Advisory 2020-1335-01 - Telnet is a popular protocol for logging in to remote systems over the Internet. The telnet-server packages include a telnet service that supports remote logins...
View ArticlePlaySMS index.php Unauthenticated Template Injection Code Execution
This Metasploit module exploits a preauth Server-Side Template Injection vulnerability that leads to remote code execution in PlaySMS before version 1.4.3. This issue is caused by double processing a...
View ArticlePandora FMS Ping Authenticated Remote Code Execution
This Metasploit module exploits a vulnerability found in Pandora FMS 7.0NG and lower. net_tools.php in Pandora FMS 7.0NG allows remote attackers to execute arbitrary OS commands.
View ArticleRed Hat Security Advisory 2020-1334-01
Red Hat Security Advisory 2020-1334-01 - Telnet is a popular protocol for logging in to remote systems over the Internet. The telnet-server packages include a telnet service that supports remote logins...
View ArticleSMBv3 Compression Buffer Overflow
A vulnerability exists within the Microsoft Server Message Block 3.1.1 (SMBv3) protocol that can be leveraged to execute code on a vulnerable server. This local exploit implementation leverages this...
View ArticleVesta Control Panel Authenticated Remote Code Execution
This Metasploit module exploits command injection vulnerability in v-list-user-backups bash script file. Low privileged authenticated users can execute arbitrary commands under the context of the root...
View ArticleLimeSurvey 4.1.11 Cross Site Scripting
LimeSurvey version 4.1.11 suffers from a Survey Groups persistent cross site scripting vulnerability.
View ArticleMicrosoft Windows Net Use Insufficent Authentication
The Windows "net use" network logon type-3 command does not prompt for authentication when the built-in Administrator account is enabled and both remote and originating systems suffer from password...
View ArticleRed Hat Security Advisory 2020-1326-01
Red Hat Security Advisory 2020-1326-01 - OpenStack Shared Filesystem Service provides services to manage network filesystems for use by Virtual Machine instances.
View ArticleRed Hat Security Advisory 2020-1332-01
Red Hat Security Advisory 2020-1332-01 - KornShell is a Unix shell developed by AT+T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The...
View ArticleRed Hat Security Advisory 2020-1331-01
Red Hat Security Advisory 2020-1331-01 - The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface specification. IPMI...
View ArticleRed Hat Security Advisory 2020-1333-01
Red Hat Security Advisory 2020-1333-01 - KornShell is a Unix shell developed by AT+T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The...
View ArticleBotan C++ Crypto Algorithms Library 2.14.0
Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate...
View Article