Monthly Archive: September 2019

In Apache HTTP Server 2.4.32-2.4.39, when mod_remoteip was configured to use a trusted intermediary proxy server using the "PROXY" protocol, a specially crafted PROXY header could trigger a stack buffer overflow or NULL pointer...

In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instead point to...

In Apache HTTP Server 2.4.18-2.4.39, using fuzzed network input, the http/2 session handling could be made to read memory after being freed, during connection shutdown. Date published : 2019-09-26 https://httpd.apache.org/security/vulnerabilities_24.html https://www.oracle.com/security-alerts/cpuapr2020.html

In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion’s svnserve server process may exit when a client sends certain sequences of protocol commands. This can lead to disruption for users of...

The microblog-poster plugin before 1.6.2 for WordPress has SQL Injection via the wp-admin/options-general.php?page=microblogposter.php account_id parameter. Date published : 2019-09-25 http://cinu.pl/research/wp-plugins/mail_642d8f7d8715d08f070a35b896f2d8bd.html Microblog Poster – Auto Publish on Social Media

The sendpress plugin before 1.2 for WordPress has SQL Injection via the wp-admin/admin.php?page=sp-queue listid parameter. Date published : 2019-09-25 http://cinu.pl/research/wp-plugins/mail_8a2f7613577ea8e613ec274aeec14527.html https://wordpress.org/plugins/sendpress/#developers

The unite-gallery-lite plugin before 1.5 for WordPress has CSRF and SQL injection via wp-admin/admin.php galleryid or id parameters. Date published : 2019-09-25 http://packetstormsecurity.com/files/132842/ https://wordpress.org/plugins/unite-gallery-lite/#developers

The unite-gallery-lite plugin before 1.5 for WordPress has SQL injection via data[galleryID] to wp-admin/admin-ajax.php. Date published : 2019-09-25 http://packetstormsecurity.com/files/132842/ https://wordpress.org/plugins/unite-gallery-lite/#developers

The unite-gallery-lite plugin before 1.5 for WordPress has CSRF and SQL injection via wp-admin/admin-ajax.php in a unitegallery_ajax_action operation. Date published : 2019-09-25 http://packetstormsecurity.com/files/132842/ https://wordpress.org/plugins/unite-gallery-lite/#developers

The altos-connect plugin 1.3.0 for WordPress has XSS via the wp-content/plugins/altos-connect/jquery-validate/demo/demo/captcha/index.php/ PATH_SELF. Date published : 2019-09-25 http://packetstormsecurity.com/files/132908/ https://wordpress.org/plugins/altos-connect/#developers

The accurate-form-data-real-time-form-validation plugin 1.2 for WordPress has CSRF with resultant XSS via wp-admin/options-general.php?page=Accu_Data_WP. Date published : 2019-09-25 http://packetstormsecurity.com/files/132911/ https://wordpress.org/plugins/accurate-form-data-real-time-form-validation/#developers

The avenirsoft-directdownload plugin 1.0 for WordPress has CSRF with resultant XSS via wp-admin/admin.php?page=avenir_plugin. Date published : 2019-09-25 http://packetstormsecurity.com/files/132992/ Avenir-soft Direct Download

The bookmarkify plugin 2.9.2 for WordPress has CSRF with resultant XSS via wp-admin/options-general.php?page=bookmarkify.php. Date published : 2019-09-25 http://packetstormsecurity.com/files/133001/ https://wordpress.org/plugins/bookmarkify/#developers

The monetize plugin through 1.03 for WordPress has CSRF with resultant XSS via wp-admin/admin.php?page=monetize-zones-new. Date published : 2019-09-25 http://packetstormsecurity.com/files/133002/ https://wordpress.org/plugins/monetize/#developers