Monthly Archive: June 2019

XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000026b739. Date published : 2019-06-30 https://github.com/apriorit/pentesting/blob/master/bugs/xnview/0x26b739.md

XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000384e2a. Date published : 2019-06-30 https://github.com/apriorit/pentesting/blob/master/bugs/xnview/0x384e2a.md

Chamilo LMS 1.11.8 and 2.x allows remote code execution through an lp_upload.php unauthenticated file upload feature. It extracts a ZIP archive before checking its content, and once it has been extracted, does not check...

Tor Browser through 8.5.3 has an information exposure vulnerability. It allows remote attackers to detect the browser’s language via vectors involving an IFRAME element, because text in that language is included in the title...

OS command injection vulnerability in drivers_syno_import_user.php in Synology Calendar before 2.3.1-0617 allows remote attackers to execute arbitrary commands via the crafted ‘X-Real-IP’ header. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_12

Cross-site scripting (XSS) vulnerability in Chart in Synology Office before 3.1.4-2771 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_11

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 allows remote attackers to inject arbitrary web script or HTML via the object_id parameter. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_08

Relative path traversal vulnerability in SYNO.PhotoTeam.Upload.Item in Synology Moments before 1.3.0-0691 allows remote authenticated users to upload arbitrary files via the name parameter. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_05

Cross-site scripting (XSS) vulnerability in Event Editor in Synology Calendar before 2.3.0-0615 allows remote attackers to inject arbitrary web script or HTML via the title parameter. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_04

Relative path traversal vulnerability in SYNO.PhotoStation.File in Synology Photo Station before 6.8.11-3489 and before 6.3-2977 allows remote attackers to upload arbitrary files via the uploadphoto parameter. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_01

SQL injection vulnerability in synophoto_csPhotoDB.php in Synology Photo Station before 6.8.11-3489 and before 6.3-2977 allows remote attackers to execute arbitrary SQL command via the type parameter. Date published : 2019-06-30 https://www.synology.com/security/advisory/Synology_SA_19_01

Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack. Date published : 2019-06-29 https://github.com/BastilleResearch/mousejack/blob/master/doc/advisories/bastille-2.logitech.public.txt https://www.kb.cert.org/vuls/id/981271

Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page. Date published...

public/app/features/panel/panel_ctrl.ts in Grafana before 6.2.5 allows HTML Injection in panel drilldown links (via the Title or url field). Date published : 2019-06-29 https://security.netapp.com/advisory/ntap-20190710-0001/ https://github.com/grafana/grafana/issues/17718