An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free. Date published : 2019-05-07 http://www.securityfocus.com/bid/108196 https://seclists.org/bugtraq/2019/Aug/13
Allied Telesis 8100L/8 devices allow XSS via the edit-ipv4_interface.php vlanid or subnet_mask parameter. Date published : 2019-05-07 http://packetstormsecurity.com/files/151327/SirsiDynix-e-Library-3.5.x-Cross-Site-Scripting.html https://pentest.com.tr/exploits/Allied-Telesis-8100L-8-Cross-Site-Scripting.html
IBM TRIRIGA Application Platform 3.5.3 and 3.6.0 could disclose sensitive information to an authenticated user that could aid in further attacks against the system. IBM X-Force ID: 155146. Date published : 2019-05-07 http://www.securityfocus.com/bid/108843 http://www.ibm.com/support/docview.wss?uid=ibm10879463
IBM Cram Social Program Management 6.1.1, 6.2.0, 7.0.4, and 7.0.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website...
The WP Backup+ (aka WPbackupplus) plugin through 2018-11-22 for WordPress allows remote attackers to obtain sensitive information from server folders and files, as demonstrated by download.sql. Date published : 2019-05-07 https://www.easyhack.in/2018/11/21/wordpress-plugin-database-backup-information-disclosure-vulnerability/ http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00006.html
BlogEngine.NET 3.3 allows XXE attacks via the POST body to metaweblog.axd. Date published : 2019-05-07 http://packetstormsecurity.com/files/151063/BlogEngine-3.3-XML-External-Entity-Injection.html https://github.com/rxtur/BlogEngine.NET/commits/master
ecard.php in Coppermine Photo Gallery (CPG) 1.5.46 has XSS via the sender_name, recipient_email, greetings, or recipient_name parameter. Date published : 2019-05-07 http://forum.coppermine-gallery.net/index.php/board,58.0.html http://packetstormsecurity.com/files/151306/Coppermine-1.5.46-Cross-Site-Scripting.html
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is vulnerable to a denial-of-service attack by making more than 120 connections. Date published : 2019-05-07 http://www.securityfocus.com/bid/106737 https://ics-cert.us-cert.gov/advisories/ICSA-19-024-02
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF. Date published : 2019-05-07 http://www.securityfocus.com/bid/106737 https://ics-cert.us-cert.gov/advisories/ICSA-19-024-02
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 allows for plaintext transmission (HTTP) of user credentials by default. Date published : 2019-05-07 http://www.securityfocus.com/bid/106737 https://ics-cert.us-cert.gov/advisories/ICSA-19-024-02
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images. Date published : 2019-05-07 http://www.securityfocus.com/bid/106737 https://ics-cert.us-cert.gov/advisories/ICSA-19-024-02
An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. The collection title is vulnerable to Cross Site Scripting (XSS) due to not escaping it when viewing the...
An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. A site administrator can suspend the system user (root), causing all users to be locked out from the...
JioFi 4 jmr1140 Amtel_JMR1140_R12.07 devices allow remote attackers to obtain an admin token by making a /cgi-bin/qcmap_auth type=getuser request and then reading the token field. This token value can then be used to change...