Monthly Archive: August 2018

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be...

Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can force...

The mirror:// method implementation in Advanced Package Tool (APT) 1.6.x before 1.6.4 and 1.7.x before 1.7.0~alpha3 mishandles gpg signature verification for the InRelease file of a fallback mirror, aka mirrorfail. Date published : 2018-08-20...

** DISPUTED ** An issue was discovered in the license editor in Reprise License Manager (RLM) through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/edit_lf_get_data lf parameter via GET or POST. NOTE:...

** DISPUTED ** An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe...

The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduct userspace-userspace spectreRSB attacks. Date published :...

In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter. Date published : 2018-08-19 https://github.com/caokang/waimai/issues/4

my little forum 2.4.12 allows CSRF for deletion of users. Date published : 2018-08-19 http://owendarlene.com/csrf-my-little-forum/

tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html. Date published : 2018-08-19 https://github.com/fmsdwifull/tp5cms/issues/3

CMSUno before 1.5.3 has XSS via the title field. Date published : 2018-08-19 https://github.com/boiteasite/cmsuno/issues/7

tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter. Date published : 2018-08-19 https://github.com/fmsdwifull/tp5cms/issues/2

An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not require authentication for adding a page. This can also be exploited via CSRF. Date published : 2018-08-19 https://github.com/daveismyname/simple-cms/issues/2 https://github.com/daveismyname/simple-cms/issues/3

An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8. Date published : 2018-08-19 https://github.com/daveismyname/simple-cms/issues/4

PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c, related to the AESNI_encrypt and AESNI_decrypt functions, leading to the mishandling of messages shorter than 16 bytes. Date published : 2018-08-19...