Monthly Archive: July 2018

IBM Sterling File Gateway 2.2.0 through 2.2.6 could allow a remote authenticated attacker to obtain sensitive information displayed in the URL that could lead to further attacks against the system. IBM X-Force ID: 140688....

views/auth.go in Orange Forum 1.4.0 allows Open Redirection via the next parameter to /login or /signup. Date published : 2018-07-20 https://github.com/s-gv/orangeforum/commit/1f6313cb3a1e755880fc1354f3e1efc4dd2dd4aa

An issue was discovered in WUZHI CMS 4.1.0. The vulnerable file is coreframe/app/order/admin/goods.php. The $keywords parameter is taken directly into execution without any filtering, leading to SQL injection. Date published : 2018-07-20 https://github.com/wuzhicms/wuzhicms/issues/144

dwg_obj_block_control_get_block_headers in dwg_api.c in GNU LibreDWG 0.5.1048 allows remote attackers to cause a denial of service (NULL pointer dereference and SEGV) via a crafted dwg file. Date published : 2018-07-20 https://github.com/LibreDWG/libredwg/issues/32

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_sdspace_decode in H5Osdspace.c. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/hdf5/README3.md

An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store16 in helper.h. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store32 in helper.h. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::UpdateChunks in DLS.cpp. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::SaveString in DLS.cpp. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store32 in helper.h. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store16 in helper.h. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md

An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "always assign the sample of the first dimension region of this region" feature of the function gig::Region::UpdateChunks in gig.cpp. Date...

An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp. Date published : 2018-07-20 https://github.com/TeamSeri0us/pocs/blob/master/libgig/README.md