Monthly Archive: June 2019

An issue was discovered in the Ultimate Member plugin 2.39 for WordPress. It allows unauthorized profile and cover picture modification. It is possible to modify the profile and cover picture of any user once...

apps/gsudo.c in gsudo in ToaruOS through 1.10.9 has a buffer overflow allowing local privilege escalation to the root user via the DISPLAY environment variable. Date published : 2019-06-23 https://github.com/mehsauce/kowasuos/blob/master/exploits/kowasu-gsudo.c

BlueStacks App Player 2, 3, and 4 before 4.90 allows DNS Rebinding for attacks on exposed IPC functions. Date published : 2019-06-23 https://support.bluestacks.com/hc/en-us/articles/360021469391-Release-Notes https://support.bluestacks.com/hc/en-us/articles/360028842471

Shopware before 5.5.8 has XSS via the Query String to the backend/Login or backend/Login/load/ URI. Date published : 2019-06-23 http://seclists.org/fulldisclosure/2019/Jun/32 http://packetstormsecurity.com/files/153145/Shopware-5.5.6-Cross-Site-Scripting.html

OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for retrieving the instances’ SSL certificates, they allow full API access, though and can be used...

When an Apache Geode server versions 1.0.0 to 1.8.0 is operating in secure mode, a user with write permissions for specific data regions can modify internal cluster metadata. A malicious user could modify this...

SQL injection vulnerability in ChronoScan version 1.5.4.3 and earlier allows an unauthenticated attacker to execute arbitrary SQL commands via the wcr_machineid cookie. Date published : 2019-06-21 http://www.chronoscan.org https://redsec.io/chronoscan-enterprise-unauthenticated-sql-injection

The default configuration of glot-www through 2018-05-19 allows remote attackers to execute arbitrary code because glot-code-runner supports os.system within a "python" "files" "content" JSON file. Date published : 2019-06-21 https://github.com/prasmussen/glot-code-runner/issues/15

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a Denial of Service vulnerability due to not validating the output buffer address value from IOCtl 0x80002043. Date published : 2019-06-21...

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a Denial of Service vulnerability due to not validating the output buffer address value from IOCtl 0x8000204F. Date published : 2019-06-21...

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000206F. Date published : 2019-06-21 https://www.greyhathacker.net...

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000206B. Date published : 2019-06-21 https://www.greyhathacker.net...

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a NULL Pointer Dereference vulnerability due to not validating the size of the output buffer value from IOCtl 0x80002028. Date published...

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x80002063. Date published : 2019-06-21 https://www.greyhathacker.net...