Monthly Archive: April 2018

Reflected XSS exists in PHP Scripts Mall Website Seller Script 2.0.3 via the Listings Search feature. Date published : 2018-04-12 https://0day4u.wordpress.com/2018/03/19/website-seller-script-reflected-xss/

Arista EOS before 4.20.2F allows remote BGP peers to cause a denial of service (Rib agent restart) via a malformed path attribute in an UPDATE message. Date published : 2018-04-12 https://www.arista.com/en/support/advisories-notices/security-advisories/4403-security-advisory-33

A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution. Date...

A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this vulnerability and gain code execution. Date...

A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting Date published : 2018-04-12 https://talosintelligence.com/vulnerability_reports/TALOS-2018-0547

A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this vulnerability and gain code execution. Date...

pcs before versions 0.9.164 and 0.10 is vulnerable to a debug parameter removal bypass. REST interface of the pcsd service did not properly remove the pcs debug argument from the /run_pcs query, possibly disclosing...

corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c. Date published : 2018-04-12 http://www.securityfocus.com/bid/103758 https://www.debian.org/security/2018/dsa-4174

pcs before version 0.9.164 and 0.10 is vulnerable to a privilege escalation via authorized user malicious REST call. The REST interface of the pcsd service did not properly sanitize the file name from the...

The hi3660_stub_clk_probe function in drivers/clk/hisilicon/clk-hi3660-stub.c in the Linux kernel before 4.16 allows local users to cause a denial of service (NULL pointer dereference) by triggering a failure of resource retrieval. Date published : 2018-04-12...

joyplus-cms 1.6.0 has XSS in manager/admin_vod.php via the keyword parameter. Date published : 2018-04-12 https://github.com/joyplus/joyplus-cms/issues/423

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service (BSOD) via a 0x953827bf DeviceIoControl call. Date published : 2018-04-12 https://github.com/bigric3/windrvr1260_poc3

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service (BSOD) via a 0x953826DB DeviceIoControl call. Date published : 2018-04-12 https://github.com/bigric3/windrvr1260_poc4

The jDownloads extension before 3.2.59 for Joomla! has XSS. Date published : 2018-04-12 https://www.exploit-db.com/exploits/44471/ http://www.jdownloads.com/index.php/news/264-jdownloads-3-2-59-published.html