The ‘checksum’ parameter of the ‘/common/download_attachment.php’ script in the Quest KACE System Management Appliance 8.0.318 can be abused to read arbitrary files with ‘www’ privileges via Directory Traversal. No administrator privileges are needed to...
The ‘orgID’ parameter received by the ‘/common/download_agent_installer.php’ script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a blind time-based type). Date published : 2018-05-31 https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities
The script ‘/adminui/error_details.php’ in the Quest KACE System Management Appliance 8.0.318 allows authenticated users to conduct PHP object injection attacks. Date published : 2018-05-31 https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities
In order to perform actions that requires higher privileges, the Quest KACE System Management Appliance 8.0.318 relies on a message queue managed that runs with root privileges and only allows a set of commands....
The ‘fmt’ parameter of the ‘/common/run_cross_report.php’ script in the the Quest KACE System Management Appliance 8.0.318 is vulnerable to cross-site scripting. Date published : 2018-05-31 https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities
In order to perform actions that require higher privileges, the Quest KACE System Management Appliance 8.0.318 relies on a message queue that runs daemonized with root privileges and only allows a set of commands...
Ruckus SmartZone (formerly Virtual SmartCell Gateway or vSCG) 3.5.0, 3.5.1, 3.6.0, and 3.6.1 (Essentials and High Scale) on vSZ, SZ-100, SZ-300, and SCG-200 devices allows remote attackers to obtain sensitive information or modify data....
An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 10.5.8, 10.6.x before 10.6.5, and 10.7.x before 10.7.2. The Move Issue feature contained a persistent XSS vulnerability. Date published :...
Cross-site request forgery (CSRF) vulnerability in the login form in Zimbra Collaboration Suite (aka ZCS) before 8.6.0 Patch 10, 8.7.x before 8.7.11 Patch 2, and 8.8.x before 8.8.8 Patch 1 allows remote attackers to...
In Stealth Authorization Server before 3.3.017.0 in Unisys Stealth Solution, an encryption key may be left in memory. Date published : 2018-05-30 http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=47
SeaCMS 6.61 has stored XSS in admin_collect.php via the siteurl parameter. Date published : 2018-05-30 https://gist.github.com/alice19940905/88b194b89e83c5c0a394f7f297111e12
An issue was discovered in mass-pages-posts-creator.php in the MULTIDOTS Mass Pages/Posts Creator plugin 1.2.2 for WordPress. Any logged in user can launch Mass Pages/Posts creation with custom content. There is no nonce or user...
class-woo-banner-management.php in the MULTIDOTS WooCommerce Category Banner Management plugin 1.1.0 for WordPress has an Unauthenticated Settings Change Vulnerability, related to certain wp_ajax_nopriv_ usage. Anyone can change the plugin’s setting by simply sending a request...
GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault. Date published : 2018-05-30 https://github.com/Edward-L/fuzzing-pocs/tree/master/ngiflib https://github.com/miniupnp/ngiflib/issues/5