Monthly Archive: April 2018

In Dell EMC Unisphere for VMAX Virtual Appliance versions prior to 8.4.0.8, Dell EMC Solutions Enabler Virtual Appliance versions prior to 8.4.0.8, Dell EMC VASA Provider Virtual Appliance versions prior to 8.4.0.512, Dell EMC...

A flaw was found in source-to-image function as shipped with Openshift Enterprise 3.x. An improper path validation of tar files in ExtractTarStreamFromTarReader in tar/tar.go leads to privilege escalation. Date published : 2018-04-30 https://bugzilla.redhat.com/show_bug.cgi?id=1562246 https://access.redhat.com/errata/RHSA-2018:1227

An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. Improper authentication handling by the native Access Point web UI allows authentication using a local system account (instead of...

An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. Hardcoded credentials exist for an unprivileged SSH account with a shell of /bin/false. Date published : 2018-04-30 https://watchguardsupport.secure.force.com/publicKB?type=KBSecurityIssues&SFDCID=kA62A0000000LIy https://www.watchguard.com/wgrd-blog/new-firmware-available-ap100ap102ap200ap300-security-vulnerability-fixes

site/index.php/admin/trees/add/ in BigTree 4.2.22 and earlier allows remote attackers to upload and execute arbitrary PHP code because the BigTreeStorage class in core/inc/bigtree/apis/storage.php does not prevent uploads of .htaccess files. Date published : 2018-04-30 https://github.com/bigtreecms/BigTree-CMS/commit/609bd17728ee1db0487a42d96028d30537528ae8...

interface/fax/fax_dispatch.php in OpenEMR before 5.0.1 allows remote authenticated users to bypass intended access restrictions via the scan parameter. Date published : 2018-04-30 OpenEMR 弱點分析 https://github.com/openemr/openemr/commit/699e3c2ef68545357cac714505df1419b8bf2051

interface/patient_file/letter.php in OpenEMR before 5.0.1 allows remote authenticated users to bypass intended access restrictions via the newtemplatename and form_body parameters. Date published : 2018-04-30 OpenEMR 弱點分析 https://github.com/openemr/openemr/commit/699e3c2ef68545357cac714505df1419b8bf2051

Multiple reflected cross-site scripting (XSS) vulnerabilities in OpenEMR before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) patient parameter to interface/main/finder/finder_navigation.php; (2) key parameter to interface/billing/get_claim_file.php; (3) formid...

Frog CMS 0.9.5 has XSS in /install/index.php via the [‘config’][‘admin_username’] field. Date published : 2018-04-30 https://github.com/philippe/FrogCMS/issues/9

In Octopus Deploy before 2018.4.7, target and tenant tag variable scopes were not checked against the list of tenants the user has access to. Date published : 2018-04-30 https://github.com/OctopusDeploy/Issues/issues/4454

BigTree before 4.2.22 has XSS in the Users management page via the name or company field. Date published : 2018-04-30 https://github.com/bigtreecms/BigTree-CMS#changelog https://github.com/bigtreecms/BigTree-CMS/commit/b2eff67e45b90ca26a62e971e8f0d5d0d70f23e6

Imagely NextGEN Gallery version 2.2.30 and earlier contains a Cross Site Scripting (XSS) vulnerability in Image Alt & Title Text. This attack appears to be exploitable via a victim viewing the image in the...

Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML. Date published : 2018-04-30 https://www.qnap.com/zh-tw/security-advisory/nas-201804-27...

Etherpad Lite before 1.6.4 is exploitable for admin access. Date published : 2018-04-29 https://github.com/ether/etherpad-lite/blob/develop/CHANGELOG.md https://github.com/ether/etherpad-lite/commit/ffe24c3dd93efc73e0cbf924db9a0cc40be9511b