A reflected Cross-Site scripting (XSS) vulnerability in SEMCO Semcosoft 5.3 allows remote attackers to inject arbitrary web scripts or HTML via the username parameter to the Login Form. Date published : 2019-02-23 https://atomic111.github.io/article/semcosoft-cross-site-scripting
An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malformed MIPS option section. Date published : 2019-02-23 http://www.securityfocus.com/bid/107139 https://security.netapp.com/advisory/ntap-20190314-0003/
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c. Date published : 2019-02-23...
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is a heap-based buffer overflow in _bfd_archive_64_bit_slurp_armap in archive64.c. Date published : 2019-02-23 https://security.netapp.com/advisory/ntap-20190314-0003/...
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c, when called...
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in _bfd_elf_slurp_version_tables in elf.c. Date published : 2019-02-23...
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c. Date published : 2019-02-23...
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a stack consumption issue in d_count_templates_scopes in cp-demangle.c after many recursive calls. Date published : 2019-02-23 http://www.securityfocus.com/bid/107147 https://security.netapp.com/advisory/ntap-20190314-0003/
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls. Date published : 2019-02-23 http://www.securityfocus.com/bid/107147 https://security.netapp.com/advisory/ntap-20190314-0003/
PHP Scripts Mall PHP Appointment Booking Script 3.0.3 allows HTML injection in a user profile. Date published : 2019-02-23 PHP Scripts Mall PHP Appointment Booking Script has HTML injection via an edit my profile: [CVE-2019-9066]
PHP Scripts Mall Custom T-Shirt Ecommerce Script 3.1.1 allows parameter tampering of the payment amount. Date published : 2019-02-23 PHP Scripts Mall Custom T-Shirt Ecommerce Script has Parameter Tampering: [CVE-2019-9065]
PHP Scripts Mall Cab Booking Script 1.0.3 allows Directory Traversal into the parent directory of a jpg or png file. Date published : 2019-02-23 Path Traveler vulnerability in Cab Booking Script (PHP-Script-Mall): [CVE-2019-9064]
PHP Scripts Mall Auction website script 2.0.4 allows parameter tampering of the payment amount. Date published : 2019-02-23 PHP Scripts Mall Auction website script has Parameter Tampering: [CVE-2019-9063]
PHP Scripts Mall Online Food Ordering Script 1.0 has Cross-Site Request Forgery (CSRF) in my-account.php. Date published : 2019-02-23 PHP Scripts Mall Online Food Ordering Script has Cross-Site Request Forgery [CSRF] (PHP-Script-Mall):[CVE-2019-9062]