Monthly Archive: October 2019

ClipSoft REXPERT 1.0.0.527 and earlier version allows remote attacker to arbitrary file deletion by issuing a HTTP GET request with a specially crafted parameter. User interaction is required to exploit this vulnerability in that...

ClipSoft REXPERT 1.0.0.527 and earlier version allows remote attacker to upload arbitrary local file via the ActiveX method in RexViewerCtrl30.ocx. That could lead to disclosure of sensitive information. User interaction is required to exploit...

ClipSoft REXPERT 1.0.0.527 and earlier version allows directory traversal by issuing a special HTTP POST request with ../ characters. This could lead to create malicious HTML file, because they can inject a content with...

ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation and execution via report print function of rexpert viewer with modified XML document. User interaction is required to exploit this vulnerability in that the...

ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation via a POST request with the parameter set to the file path to be written. This can be an executable file that is written...

ClipSoft REXPERT 1.0.0.527 and earlier version have an information disclosure issue. When requesting web page associated with session, could leak username via session file path of HTTP response data. No authentication is required. Date...

RDesktop version 1.8.4 contains multiple out-of-bound access read vulnerabilities in its code, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. These issues have been...

A malicious admin user could edit the state of objects in the Airflow metadata database to execute arbitrary javascript on certain page views. This also presented a Local File Disclosure vulnerability to any file...

columnQuote in medoo before 1.7.5 allows remote attackers to perform a SQL Injection due to improper escaping. Date published : 2019-10-30 https://github.com/catfan/Medoo/commit/659864b393961bf224bba1efc03b7dcbed7de533 https://snyk.io/vuln/SNYK-PHP-CATFANMEDOO-474562

ytnef has directory traversal Date published : 2019-10-29 http://ocert.org/advisories/ocert-2009-013.html https://access.redhat.com/security/cve/cve-2009-3887

asterisk allows calls on prohibited networks Date published : 2019-10-29 http://downloads.asterisk.org/pub/security/AST-2009-007.html https://access.redhat.com/security/cve/cve-2009-3723

Mercurial before 1.6.4 fails to verify the Common Name field of SSL certificates which allows remote attackers who acquire a certificate signed by a Certificate Authority to perform a man-in-the-middle attack. Date published :...

qtparted has insecure library loading which may allow arbitrary code execution Date published : 2019-10-29 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598301 https://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-3375.html

paxtest handles temporary files insecurely Date published : 2019-10-29 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598413 https://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-3373.html