Monthly Archive: April 2019

Controllers.outgoing in controllers/index.js in NodeBB before 0.7.3 has outgoing XSS. Date published : 2019-04-30 https://github.com/NodeBB/NodeBB/compare/56b79a9…4de7529 https://github.com/NodeBB/NodeBB/pull/3371

A vulnerability was found in tar-fs before 1.16.2. An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a...

A vulnerability was found in node-tar before version 4.4.2 (excluding version 2.2.2). An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system,...

The print_binder_transaction_ilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "*from *code *flags" lines in a debugfs file. Date published : 2019-04-30 http://www.securityfocus.com/bid/108125 https://github.com/Yellow-Pay/CVE/blob/master/CVE-2018-20510

The print_binder_ref_olocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading " ref *desc *node" lines in a debugfs file. Date published : 2019-04-30 https://security.netapp.com/advisory/ntap-20190517-0002/...

Application Links before version 5.0.11, from version 5.1.0 before 5.2.10, from version 5.3.0 before 5.3.6, from version 5.4.0 before 5.4.12, and from version 6.0.0 before 6.0.4 allows remote attackers to inject arbitrary HTML or...

Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a reboot) by placing a Trojan horse file into the permissive bin directory. Date published : 2019-04-30 https://research.digitalinterruption.com/2019/04/15/privilege-escalation-in-manageengine-admanager-plus-6/

BPC SmartVista 2 has Session Fixation via the JSESSIONID parameter. Date published : 2019-04-30 https://neetech18.blogspot.com/2019/03/session-fixation-smart-vista-svfe-2.html

BPC SmartVista 2 has Improper Access Control in the SVFE module, where it fails to appropriately restrict access: a normal user is able to access the SVFE2/pages/finadmin/currconvrate/currconvrate.jsf functionality that should be only accessible to...

BPC SmartVista 2 has CSRF via SVFE2/pages/admpages/roles/createrole.jsf. Date published : 2019-04-30 https://neetech18.blogspot.com/2019/03/cross-site-request-forgery-smartvista.html

An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. An open redirect exists via a /IntellectMain.jsp?IntellectSystem= URI. Date published : 2019-04-30 https://neetech18.blogspot.com/2019/03/polaris-intellect-core-banking-software_31.html

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI. Date published : 2019-04-30 https://neetech18.blogspot.com/2019/03/polaris-intellect-core-banking-software.html

An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. Reflected XSS exists with an authenticated session via the Customerid, formName, FrameId, or MODE parameter. Date published...

An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being...