Directory Traversal in Safescan Timemoto and TA-8000 series version 1.0 allows unauthenticated remote attackers to execute code via the administrative API. Date published : 2020-03-13 https://github.com/ProCheckUp/SafeScan https://procheckup.com/blogs/posts/2020/february/remote-code-execution-on-biometric-iot-devices/
StorageGRID (formerly StorageGRID Webscale) versions 10.0.0 through 11.3 prior to 11.2.0.8 and 11.3.0.4 are susceptible to a vulnerability which allows an unauthenticated remote attacker to cause a Denial of Service (DoS). Date published :...
In Administrate (rubygem) before version 0.13.0, when sorting by attributes on a dashboard, the direction parameter was not validated before being interpolated into the SQL query. This could present a SQL injection if the...
In wagtail-2fa before 1.4.1, any user with access to the CMS can view and delete other users 2FA devices by going to the correct path. The user does not require special permissions in order...
Apache Commons Configuration uses a third-party library to parse YAML files which by default allows the instantiation of classes if the YAML includes special statements. Apache Commons Configuration versions 2.2, 2.3, 2.4, 2.5, 2.6...
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, mishandles font loading by a guest through a grub2.cfg file, leading to a buffer overflow. Date published : 2020-03-13 https://svnweb.freebsd.org/ports?view=revision&revision=525916
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, does not validate the address provided as part of a memrw command (read_* or write_*) by a guest through a grub2.cfg file. This allows...
An issue was discovered in the File Upload plugin before 4.13.0 for WordPress. A directory traversal can lead to remote code execution by uploading a crafted txt file into the lib directory, because of...
An issue was discovered in DEVOME GRR before 3.4.1c. frmcontactlist.php mishandles a SQL query. Date published : 2020-03-13 https://github.com/JeromeDevome/GRR/commit/2c6edacd9e15c75a0c2ef472470481ffb6edc7d8 https://github.com/JeromeDevome/GRR/releases/tag/v3.4.1c
An issue was discovered in DEVOME GRR before 3.4.1c. admin_edit_room.php mishandles file uploads. Date published : 2020-03-13 https://github.com/JeromeDevome/GRR/commit/2c6edacd9e15c75a0c2ef472470481ffb6edc7d8 https://github.com/JeromeDevome/GRR/releases/tag/v3.4.1c
An XSS issue was discovered in tooltip/tooltip.js in PrimeTek PrimeFaces 7.0.11. In a web application using PrimeFaces, an attacker can provide JavaScript code in an input field whose data is later used as a...
Zoho ManageEngine OpManager before 12.4.179 allows remote code execution via a specially crafted Mail Server Settings v1 API request. This was fixed in 12.5.108. Date published : 2020-03-13 https://www.manageengine.com/network-monitoring/help/read-me-complete.html#125108
Untis WebUntis before 2020.9.6 allows CSRF for certain combinations of rights and modules. Date published : 2020-03-13 https://help.untis.at/hc/de/articles/360008456699-WebUntis-Release-Notes
A Blind SQL Injection issue was discovered in Sapplica Sentrifugo 3.2 via the index.php/holidaygroups/add id parameter because of the HolidaydatesController.php addAction function. Date published : 2020-03-13 https://www.exploit-db.com/exploits/48179 https://github.com/sapplica/sentrifugo/commits/master