Monthly Archive: December 2017

netpub/server.np in Extensis Portfolio NetPublish has XSS in the quickfind parameter, aka Open Bug Bounty ID OBB-290447. Date published : 2017-12-31 https://www.openbugbounty.org/reports/290447/

Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in value.cpp, related to crafted metadata in a TIFF file. Date published : 2017-12-31 https://github.com/Exiv2/exiv2/issues/168

Zurmo 3.2.3 allows XSS via the latitude or longitude parameter to maps/default/mapAndPoint. Date published : 2017-12-31 https://bitbucket.org/zurmo/zurmo/issues/436/to-report-a-xss-security-vulnerability-in

Trustwave Secure Web Gateway (SWG) through 11.8.0.27 allows remote attackers to append an arbitrary public key to the device’s SSH Authorized Keys data, and consequently obtain remote root access, via the publicKey parameter to...

Magento Community Edition and Enterprise Edition before 2.0.10 and 2.1.x before 2.1.2 have XSS via e-mail templates that are mishandled during a preview, aka APPSEC-1503. Date published : 2017-12-30 https://magento.com/security/patches/magento-2010-and-212-security-update

In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343. Date published : 2017-12-30 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14299...

A door-unlocking issue was discovered on Software House iStar Ultra devices through 6.5.2.20569 when used in conjunction with the IP-ACM Ethernet Door Module. The communications between the IP-ACM and the iStar Ultra is encrypted...

custom/run.cgi in Webmin before 1.870 allows remote authenticated administrators to conduct XSS attacks via the description field in the custom command functionality. Date published : 2017-12-30 http://www.securityfocus.com/bid/102339 https://github.com/webmin/webmin/commit/a9c97eea6c268fb83d93a817d58bac75e0d2599e

Red Lion HMI panels allow remote attackers to cause a denial of service (software exception) via an HTTP POST request to a long URI that does not exist, as demonstrated by version HMI 2.41...

PHPJabbers File Sharing Script 1.0 has stored XSS in the comments section. Date published : 2017-12-30 https://pastebin.com/raw/LTZFaL5x

PHPJabbers Night Club Booking Software has stored XSS in the name parameter in the reservations tab. Date published : 2017-12-30 https://pastebin.com/raw/ysWZsJHH

PHPJabbers Star Rating Script 4.0 has stored XSS via a rating item. Date published : 2017-12-30 https://pastebin.com/raw/G1gyUSSa

PHPJabbers PHP Newsletter Script 4.2 has stored XSS in lists in the admin panel. Date published : 2017-12-30 https://pastebin.com/raw/QYxSkH1g

The Direct Mail (direct_mail) extension before 3.1.2 for TYPO3 allows remote attackers to obtain sensitive information by leveraging improper checking of authentication codes. Date published : 2017-12-29 https://extensions.typo3.org/extension/direct_mail/ https://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2013-014/