Monthly Archive: February 2019

An issue was discovered in Pluck 4.7.9-dev1. There is a CSRF vulnerability that can delete pictures via a /admin.php?action=deleteimage&var1= URI. Date published : 2019-02-23 https://github.com/pluck-cms/pluck/issues/69

An issue was discovered in Pluck 4.7.9-dev1. There is a CSRF vulnerability that can delete articles via a /admin.php?action=deletepage&var1= URI. Date published : 2019-02-23 https://github.com/pluck-cms/pluck/issues/69

An issue was discovered in Pluck 4.7.9-dev1. It allows administrators to execute arbitrary code by using action=installmodule to upload a ZIP archive, which is then extracted and executed. Date published : 2019-02-23 https://github.com/pluck-cms/pluck/issues/70

An issue was discovered in Pluck 4.7.9-dev1. There is a CSRF vulnerability that can delete modules via a /admin.php?action=module_delete&var1= URI. Date published : 2019-02-23 https://github.com/pluck-cms/pluck/issues/69

An issue was discovered in Pluck 4.7.9-dev1. There is a CSRF vulnerability that can delete a theme (aka topic) via a /admin.php?action=theme_delete&var1= URI. Date published : 2019-02-23 https://github.com/pluck-cms/pluck/issues/69

GoRose v1.0.4 has SQL Injection when the order_by or group_by parameter can be controlled. Date published : 2019-02-23 https://github.com/huzr2018/orderby_SQLi/tree/master/gorose

** DISPUTED ** An issue was discovered in Sitemagic CMS v4.4. In the index.php?SMExt=SMFiles URI, the user can upload a .php file to execute arbitrary code, as demonstrated by 404.php. This can only occur...

An issue was discovered in ZZZCMS zzzphp V1.6.1. In the inc/zzz_template.php file, the parserIfLabel() function’s filtering is not strict, resulting in PHP code execution, as demonstrated by the if:assert substring. Date published : 2019-02-23...

S-CMS PHP v3.0 has a CSRF vulnerability to add a new admin user via the admin/ajax.php?type=admin&action=add URI, a related issue to CVE-2018-19332. Date published : 2019-02-23 http://www.iwantacve.cn/index.php/archives/113/

An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is an out-of-bounds read problem with a SEGV in the function ReadNextCell() in mat5.c. Date published : 2019-02-23 https://github.com/TeamSeri0us/pocs/tree/master/matio...

An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a buffer over-read in the function Mat_VarPrint() in mat.c. Date published : 2019-02-23 https://github.com/TeamSeri0us/pocs/tree/master/matio https://github.com/tbeu/matio/issues/103

An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a heap-based buffer overflow in the function ReadNextFunctionHandle() in mat5.c. Date published : 2019-02-23 https://github.com/TeamSeri0us/pocs/tree/master/matio https://github.com/tbeu/matio/issues/103

An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a stack-based buffer over-read in the function ReadNextStructField() in mat5.c. Date published : 2019-02-23 https://github.com/TeamSeri0us/pocs/tree/master/matio https://github.com/tbeu/matio/issues/103

An issue was discovered in libmatio.a in matio (aka MAT File I/O Library) 1.5.13. There is a stack-based buffer over-read for a memcpy in the function ReadNextCell() in mat5.c. Date published : 2019-02-23 https://github.com/TeamSeri0us/pocs/tree/master/matio...