GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimp_write_and_read_file function in app/tests/test-xcf.c. This might be leveraged by attackers to...
DIGISOL DG-BR4000NG devices have a Buffer Overflow via a long Authorization HTTP header. Date published : 2018-06-24 https://www.exploit-db.com/exploits/44934/ https://hackings8n.blogspot.com/2018/06/cve-2018-12706-digisol-dg-br4000ng.html
DIGISOL DG-BR4000NG devices have XSS via the SSID (it is validated only on the client side). Date published : 2018-06-24 https://www.exploit-db.com/exploits/44935/ https://hackings8n.blogspot.com/2018/06/cve-2018-12705-digisol-wireless-router.html
A Stack Exhaustion issue was discovered in debug_write_type in debug.c in GNU Binutils 2.30 because of DEBUG_KIND_INDIRECT infinite recursion. Date published : 2018-06-23 http://www.securityfocus.com/bid/104541 https://security.gentoo.org/glsa/201908-01
finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds write of 8 bytes. This...
demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption (aka OOM) during the "Create an array for saving the template argument values" XNEWVEC call....
A NULL pointer dereference (aka SEGV on unknown address 0x000000000000) was discovered in work_stuff_copy_to_from in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. This can occur during execution of objdump. Date published...
mao10cms 6 allows XSS via the article page. Date published : 2018-06-23 https://github.com/chenrui1896/mao10cms_xss/wiki/The-xss-vulnerability-of-mao10cms https://github.com/nsmaomao/mao10cms/issues/3
mao10cms 6 allows XSS via the m=bbs&a=index page. Date published : 2018-06-23 https://github.com/chenrui1896/mao10cms_xss/wiki/The-xss-vulnerability-of-mao10cms https://github.com/nsmaomao/mao10cms/issues/2
TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote attackers to cause a denial of service (reboot) via data/reboot.json. Date published : 2018-06-23 https://medium.com/advisability/the-in-security-of-the-tp-link-technologies-tl-wa850re-wi-fi-range-extender-26db87a7a0cc
Stack-based buffer overflow in TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote authenticated users to cause a denial of service (outage) via a long type parameter to /data/syslog.filter.json. Date published :...
TP-Link TL-WA850RE Wi-Fi Range Extender with hardware version 5 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the wps_setup_pin parameter to /data/wps.setup.json. Date published : 2018-06-23 https://www.exploit-db.com/exploits/44912/ https://medium.com/advisability/the-in-security-of-the-tp-link-technologies-tl-wa850re-wi-fi-range-extender-26db87a7a0cc
The webService binary on Insteon HD IP Camera White 2864-222 devices has a Buffer Overflow via a crafted pid, pwd, or usr key in a GET request on port 34100. Date published : 2018-06-23...
The webService binary on Insteon HD IP Camera White 2864-222 devices has a stack-based Buffer Overflow leading to Control-Flow Hijacking via a crafted usr key, as demonstrated by a long remoteIp parameter to cgi-bin/CGIProxy.fcgi...