Monthly Archive: July 2017

Live Helper Chat version 2.06v and older is vulnerable to Cross-Site Scripting in the HTTP Header handling resulting in the execution of any user provided Javascript code in the session of other users. Date...

Stored XSS vulnerabilities in chevereto CMS before version 3.8.11, one in the user profile and one in the Exif data parser. Date published : 2017-07-13 https://chevereto.com/changelog

Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object. Date published : 2017-07-13 https://github.com/kubernetes/kubernetes/issues/43459

Rocket.Chat version 0.8.0 and newer is vulnerable to XSS in the markdown link parsing code for messages. Date published : 2017-07-13 https://www.theblazehen.com/posts/CVE-2017-xxxxxx-rocketchat-xss-with-markdown-url-handling-in-messages/

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to arbitrary code execution in the deserialization functions of Plug.Session. Date published : 2017-07-13 https://elixirforum.com/t/security-releases-for-plug/3913

Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions. Date published : 2017-07-13 https://elixirforum.com/t/security-releases-for-plug/3913

Cross-site scripting (XSS) vulnerability in pad export in XWiki labs CryptPad before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the pad content Date published : 2017-07-13 https://blog.cryptpad.fr/2017/03/06/Security-growing-pains/ https://github.com/xwiki-labs/cryptpad/releases/tag/1.1.1

JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service. Date published :...

the web framework using ljharb’s qs module older than v6.3.2, v6.2.3, v6.1.2, and v6.0.4 is vulnerable to a DoS. A malicious user can send a evil request to cause the web framework crash. Date...

rbenv (all current versions) is vulnerable to Directory Traversal in the specification of Ruby version resulting in arbitrary code execution Date published : 2017-07-13 https://github.com/justinsteven/advisories/blob/master/2017_rbenv_ruby_version_directory_traversal.md

Mautic 2.6.1 and earlier fails to set flags on session cookies Date published : 2017-07-13 https://www.trustmatta.com/advisories/MATTA-2017-002.txt

gtk-vnc 0.4.2 and older doesn’t check framebuffer boundaries correctly when updating framebuffer which may lead to memory corruption when rendering Date published : 2017-07-13 https://git.gnome.org/browse/gtk-vnc/commit/?id=f3fc5e57a78d4be9872f1394f697b9929873a737

Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON name and map share control Date published : 2017-07-13 https://nodesecurity.io/advisories/74...

Mapbox.js versions 1.x prior to 1.6.5 and 2.x prior to 2.1.7 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON Name. Date published : 2017-07-13 https://nodesecurity.io/advisories/49 https://hackerone.com/reports/54327