Monthly Archive: May 2020

Cybozu Desktop for Windows 2.0.23 to 2.2.40 allows remote code execution via unspecified vectors. Date published : 2020-05-25 http://jvn.jp/en/jp/JVN59552136/index.html https://jvn.jp/en/jp/JVN59552136/index.html

The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection. Date published : 2020-05-25 https://github.com/verbb/knock-knock/blob/craft-3/CHANGELOG.md

The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header. Date published : 2020-05-25 https://github.com/verbb/knock-knock/blob/craft-3/CHANGELOG.md https://limpidsecurity.pl/security-advisories/1/knock-knock-plugin-for-craft-cms/

EM-HTTP-Request 1.1.5 uses the library eventmachine in an insecure way that allows an attacker to perform a man-in-the-middle attack against users of the library. The hostname in a TLS server certificate is not verified....

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action. Date published : 2020-05-25 https://github.com/verbb/image-resizer/blob/craft-3/CHANGELOG.md

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action. Date published : 2020-05-25 https://github.com/verbb/image-resizer/blob/craft-3/CHANGELOG.md

A Remote code execution vulnerability exists in DEXT5Upload in DEXT5 through 2.7.1402870. An attacker can upload a PHP file via dext5handler.jsp handler because the uploaded file is stored under dext5uploadeddata/. Date published : 2020-05-25...

ffjpeg through 2020-02-24 has an invalid write in bmp_load in bmp.c. Date published : 2020-05-24 https://github.com/rockcarry/ffjpeg/issues/22

ffjpeg through 2020-02-24 has a heap-based buffer over-read in jfif_decode in jfif.c. Date published : 2020-05-24 https://github.com/rockcarry/ffjpeg/issues/24

ffjpeg through 2020-02-24 has an invalid read in jfif_encode in jfif.c. Date published : 2020-05-24 https://github.com/rockcarry/ffjpeg/issues/23

SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c. Date published : 2020-05-24 https://security.netapp.com/advisory/ntap-20200528-0004/ https://support.apple.com/kb/HT211843

SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c. Date published : 2020-05-24 https://security.netapp.com/advisory/ntap-20200528-0004/ https://support.apple.com/kb/HT211843

Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter. Date published : 2020-05-24 https://github.com/Jason2605/AdminPanel/pull/41 https://news.websec.nl/news-cve-report-0.html

Grafana before 7.0.0 allows tag value XSS via the OpenTSDB datasource. Date published : 2020-05-24 https://security.netapp.com/advisory/ntap-20200528-0003/ https://github.com/grafana/grafana/pull/24539