KildClient 3.1.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, related to prefs.c and worldgui.c....
In agent/Core/SpawningKit/Spawner.h in Phusion Passenger 5.1.10 (fixed in Passenger Open Source 5.1.11 and Passenger Enterprise 5.1.10), if Passenger is running as root, it is possible to list the contents of arbitrary files on a...
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with super_admin privileges to view the current SSL VPN web portal session info...
In vBulletin through 5.3.x, there is an unauthenticated deserialization vulnerability that leads to arbitrary file deletion and, under certain circumstances, code execution, because of unsafe usage of PHP’s unserialize() in vB_Library_Template’s cacheTemplates() function, which...
vBulletin through 5.3.x on Windows allows remote PHP code execution because a require_once call is reachable with an unauthenticated request that can include directory traversal sequences to specify an arbitrary pathname, and because ../...
There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunk_int.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack. Date published : 2017-12-13 https://github.com/Exiv2/exiv2/issues/187 https://usn.ubuntu.com/3852-1/
In Octopus Deploy before 4.1.3, the machine update process doesn’t check that the user has access to all environments. This allows an access-control bypass because the set of environments to which a machine is...
A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4 and Certified Asterisk before 13.13-cert9. Certain compound RTCP packets cause a crash in the...
Entrepreneur Dating Script 2.0.1 has SQL Injection via the search_result.php marital, gender, country, or profileid parameter. Date published : 2017-12-13 https://www.exploit-db.com/exploits/43278
Basic Job Site Script 2.0.5 has SQL Injection via the keyword parameter to /job. Date published : 2017-12-13 https://www.exploit-db.com/exploits/43314/ https://packetstormsecurity.com/files/145354/Basic-Job-Site-Script-2.0.5-SQL-Injection.html
Resume Clone Script 2.0.5 has SQL Injection via the preview.php id parameter. Date published : 2017-12-13 https://www.exploit-db.com/exploits/43312/ https://packetstormsecurity.com/files/145353/Resume-Clone-Script-2.0.5-SQL-Injection.html
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter. Date published : 2017-12-13 https://www.exploit-db.com/exploits/43311/ https://packetstormsecurity.com/files/145352/Advanced-World-Database-2.0.5-SQL-Injection.html
Muslim Matrimonial Script 3.02 has SQL Injection via the success-story.php succid parameter. Date published : 2017-12-13 https://www.exploit-db.com/exploits/43310/ https://packetstormsecurity.com/files/145351/Muslim-Matrimonial-Script-3.02-SQL-Injection.html
Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php state_id parameter. Date published : 2017-12-13 https://www.exploit-db.com/exploits/43309/ https://packetstormsecurity.com/files/145350/Groupon-Clone-Script-3.01-SQL-Injection.html