Windscribe 1.81 creates a named pipe with a NULL DACL that allows Everyone users to gain privileges or cause a denial of service via \.pipeWindscribeService. Date published : 2018-05-23 https://gist.github.com/drmint80/e5f8a3b8b8324c50a85d9b8623197c68
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124. Date published : 2018-05-23 http://www.securityfocus.com/bid/104214 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1126
procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a stack-allocated string. When pgrep is compiled with FORTIFY (as...
procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by...
In the Divido plugin for OpenCart, there is SQL injection. Attackers can use SQL injection to get some confidential information. Date published : 2018-05-23 http://foreversong.cn/archives/1183
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that...
procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME unset in an attacker-controlled directory, the attacker could achieve privilege escalation by exploiting one...
There is a Hazelcast Library Java Deserialization Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879
There is an XML External Entity (XXE) Processing Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879 http://packetstormsecurity.com/files/156037/Citrix-XenMobile-Server-10.8-XML-Injection.html
There is a Sensitive Data Leakage issue in Citrix XenMobile Server 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879
There are Open Redirect Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879
There is an Insufficient Path Validation Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879
There is a Cross-Site Scripting Vulnerability in Citrix XenMobile Server 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879
There are Unauthenticated File Upload Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3. Date published : 2018-05-23 https://support.citrix.com/article/CTX234879