There is a heap-based buffer over-read at liblas::SpatialReference::GetGTIF() (spatialreference.cpp) in libLAS 1.8.1 that will cause a denial of service. Date published : 2018-12-27 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3TPVZSUWM5TEAMCBL3Y7QLGQSLCCJFIT/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YFI3F3PRKPXOITWD47LF6ON4L5MJQQYM/
There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt. Date published : 2018-12-27 https://bugzilla.nasm.us/show_bug.cgi?id=3392530
** DISPUTED ** There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue...
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service. Date published : 2018-12-27 https://bugzilla.redhat.com/show_bug.cgi?id=1652599 https://github.com/openSUSE/libsolv/pull/291
There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service. Date published : 2018-12-27 https://bugzilla.redhat.com/show_bug.cgi?id=1652605 https://github.com/openSUSE/libsolv/pull/291
PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896. Date published : 2018-12-27 PHP Scripts Mall website-seller Script 2.0.5 Stored and...
JEECMS 9 has SSRF via the ueditor/getRemoteImage.jspx upfile parameter. Date published : 2018-12-27 http://hacker.feiyulive.com/wordpress/index.php/116/
The Chat Anywhere extension 2.4.0 for Chrome allows XSS via crafted use of
MiniCMS V1.10 has XSS via the mc-admin/post-edit.php query string, a related issue to CVE-2018-10296 and CVE-2018-16233. Date published : 2018-12-27 https://github.com/bg5sbk/MiniCMS/issues/27
An issue was discovered in 74cms v4.2.111. It allows remote authenticated users to read or modify arbitrary resumes by changing a job-search intention, as demonstrated by the index.php?c=Personal&a=ajax_save_basic pid parameter. Date published : 2018-12-27...
An issue was discovered in the Linux kernel before 4.18.11. The ipddp_ioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel address information by leveraging CAP_NET_ADMIN to read the ipddp_route dev and next...
CrashFix 1.0.4 has SQL Injection via the User[status] parameter. This is related to actionIndex in UserController.php, and the protectedmodelsUser.php search() function. Date published : 2018-12-27 https://sourceforge.net/p/crashfix/tickets/21/
FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter "filterType" in /attachments.php that can allow the attacker to grab the entire database of the application. Date published : 2018-12-27 https://www.exploit-db.com/exploits/46037...
Logisim Evolution version 2.14.3 and earlier contains an XML External Entity (XXE) vulnerability in Circuit file loading functionality (loadXmlFrom in src/com/cburch/logisim/file/XmlReader.java) that can result in information leak, possible RCE depending on system configuration. This...