Monthly Archive: July 2018

Navarino Infinity is prone to session fixation attacks. The server accepts the session ID as a GET parameter which can lead to bypassing the two factor authentication in some installations. This could lead to...

Navarino Infinity web interface up to version 2.2 exposes an unauthenticated script that is prone to blind sql injection. If successfully exploited the user can get info from the underlying postgresql database that could...

An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Processor::ProcessFragments in Core/Ap4Processor.cpp. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/305

An issue has been discovered in Bento4 1.5.1-624. AP4_Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/303

An issue has been discovered in Bento4 1.5.1-624. A NULL pointer dereference can occur in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/302

An issue has been discovered in Bento4 1.5.1-624. AP4_MemoryByteStream::WritePartial in Core/Ap4ByteStream.cpp has a buffer over-read. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/301

An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Mpeg2TsAudioSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp, a different vulnerability than CVE-2018-14532. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/300

An issue has been discovered in Bento4 1.5.1-624. AP4_BytesToUInt16BE in Core/Ap4Utils.h has a heap-based buffer over-read after a call from the AP4_Stz2Atom class. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/299

An issue has been discovered in Bento4 1.5.1-624. AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap-based buffer over-read. Date published : 2018-07-24 https://github.com/axiomatic-systems/Bento4/issues/298 https://github.com/axiomatic-systems/Bento4/issues/304

xyhai.php?s=/Auth/addUser in XYHCMS 3.5 allows CSRF to add a background administrator account. Date published : 2018-07-24 https://github.com/maoGod/xyhcms/issues/1

index.php?r=admini/admin/create in BageCMS V3.1.3 allows CSRF to add a background administrator account. Date published : 2018-07-24 https://github.com/bagesoft/bagecms/issues/2

GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain...

An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files (outside of their permissions) via a symlink to a fake database file. Date...

There was an argument injection vulnerability in Sourcetree for Windows via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit...