Monthly Archive: July 2018

An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add a user account via adm1n/admin_manager.php?action=add. Date published : 2018-07-08 https://github.com/MichaelWayneLIU/seacms/blob/master/seacms1.md

An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add an admin account via adm1n/admin_manager.php?action=save&id=2. Date published : 2018-07-08 https://github.com/MichaelWayneLIU/seacms/blob/master/seacms1.md

The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf file, as demonstrated by...

WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL. Date published : 2018-07-08 https://packetstormsecurity.com/files/148390/WeChat-Pay-SDK-XXE-Injection.html

Boostnote v0.11.7 allows XSS during highlighting of Markdown text, as demonstrated by an onerror attribute of an IMG element. Date published : 2018-07-08 https://github.com/BoostIO/Boostnote/issues/2184

admin/themes/default/items/tag-form.php in Omeka before 2.6.1 allows XSS by adding or editing a tag. Date published : 2018-07-07 https://github.com/omeka/Omeka/commit/ba841892116544847d76d3838781c9708cb92221 https://github.com/omeka/Omeka/releases/tag/v2.6.1

TCExam before 14.1.2 has XSS via an ff_ or xl_ field. Date published : 2018-07-07 https://github.com/tecnickcom/tcexam/pull/223

Fast C++ CSV Parser (aka fast-cpp-csv-parser) before 2018-07-06 has a heap-based buffer over-read in io::trim_chars in csv.h. Date published : 2018-07-07 https://github.com/ben-strasser/fast-cpp-csv-parser/issues/67

** DISPUTED ** Google gperftools 2.7 has a memory leak in malloc_extension.cc, related to MallocExtension::Register and InitModule. NOTE: the software maintainer indicates that this is not a bug; it is only a false-positive report...

** DISPUTED ** An issue has been found in libsndfile 1.0.28. There is a memory leak in psf_allocate in common.c, as demonstrated by sndfile-convert. NOTE: The maintainer and third parties were unable to reproduce...

script.php in Jirafeau before 3.4.1 is affected by two stored Cross-Site Scripting (XSS) vulnerabilities. These are stored within the shared files description file and allow the execution of a JavaScript payload each time an...

An issue was discovered in Jirafeau before 3.4.1. The file "search by name" form is affected by one Cross-Site Scripting vulnerability via the name parameter. Date published : 2018-07-07 https://www.bishopfox.com/news/2018/06/jirafeau-version-3-3-0-multiple-vulnerabilities/

The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link. Date published : 2018-07-07 https://www.bishopfox.com/news/2018/06/jirafeau-version-3-3-0-multiple-vulnerabilities/

TrackR Bravo device allows unauthenticated pairing, which enables unauthenticated connected applications to write to various device attributes. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to...