Monthly Archive: July 2017

Creolabs Gravity version 1.0 is vulnerable to a heap overflow in an undisclosed component that can result in arbitrary code execution. Date published : 2017-07-13 https://github.com/marcobambini/gravity/issues/129

Creolabs Gravity version 1.0 is vulnerable to a Double Free in gravity_value resulting potentially leading to modification of unexpected memory locations Date published : 2017-07-13 https://github.com/marcobambini/gravity/issues/123

Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass in the validateCAS20 function when configured to authenticate against an old CAS server. Date published : 2017-07-13 http://www.securityfocus.com/bid/99609 https://github.com/Jasig/phpCAS/blob/master/docs/ChangeLog

The Bitly oauth2_proxy in version 2.1 and earlier was affected by an open redirect vulnerability during the start and termination of the 2-legged OAuth flow. This issue was caused by improper input validation and...

CSRF in Bitly oauth2_proxy 2.1 during authentication flow Date published : 2017-07-13 https://github.com/bitly/oauth2_proxy/pull/360

TestTrack Server versions 1.0 and earlier are vulnerable to an authentication flaw in the split disablement feature resulting in the ability to disable arbitrary running splits and cause denial of service to clients in...

MODX Revolution version 2.x – 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges. Date published : 2017-07-13...

The entry details view function in KeePass version 1.32 inadvertently decrypts certain database entries into memory, which may result in the disclosure of sensitive information. Date published : 2017-07-13 http://keepass.info/news/news_all.html

Multiple Cross-site scripting (XSS) vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights Management(Users) functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client’s browser. Date published...

kittoframework kitto version 0.5.1 is vulnerable to memory exhaustion in the router resulting in DoS Date published : 2017-07-13 https://elixirforum.com/t/kitto-a-framework-for-interactive-dashboards/2089/13

kittoframework kitto version 0.5.1 is vulnerable to an XSS in the 404 page resulting in information disclosure Date published : 2017-07-13 https://elixirforum.com/t/kitto-a-framework-for-interactive-dashboards/2089/13

kittoframework kitto 0.5.1 is vulnerable to directory traversal in the router resulting in remote code execution Date published : 2017-07-13 https://elixirforum.com/t/kitto-a-framework-for-interactive-dashboards/2089/13

xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service Date published : 2017-07-13 https://github.com/lsh123/xmlsec/issues/43 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3PWHBRWXR3RNPHDSTQI6UWDG5ETOQ7VR/

EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root Date published : 2017-07-13 https://rioru.github.io/pentest/web/2017/03/28/from-unauthenticated-to-root-supervision.html