Monthly Archive: May 2020

XXE during an EventPublisher update can occur in Management Console in WSO2 API Manager 3.0.0 and earlier, API Manager Analytics 2.5.0 and earlier, API Microgateway 2.2.0, Enterprise Integrator 6.4.0 and earlier, IS as Key...

In administration/comments.php in PHP-Fusion 9.03.50, an authenticated attacker can take advantage of a stored XSS vulnerability in the Preview Comment feature. The protection mechanism can be bypassed by using HTML event handlers such as...

Multiple cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to inject arbitrary web script or HTML via the cat_id parameter to downloads/downloads.php or article.php. NOTE: this might overlap CVE-2012-6043. Date published : 2020-05-07...

An XSS vulnerability exists in modules/wysiwyg/save.php of LeptonCMS 4.5.0. This can be exploited because the only security measure used against XSS is the stripping of SCRIPT elements. A malicious actor can use HTML event...

Multiple Cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to inject arbitrary web script or HTML via the go parameter to faq/faq_admin.php or shoutbox_panel/shoutbox_admin.php Date published : 2020-05-07 https://github.com/php-fusion/PHP-Fusion/commit/67273e546642d39451858a47296957807c9abd5f https://github.com/php-fusion/PHP-Fusion/issues/2306

Multiple cross-site scripting (XSS) vulnerabilities exist in LeptonCMS before 4.6.0. Date published : 2020-05-07 https://lepton-cms.org/posts/important-security-update-141.php

UliCMS before 2020.2 has PageController stored XSS. Date published : 2020-05-07 https://en.ulicms.de/aktuelles.html?single=stored-xss-security-flaw-in-pagecontroller-fixed

UliCMS before 2020.2 has XSS during PackageController uninstall. Date published : 2020-05-07 https://en.ulicms.de/aktuelles.html?single=xss-security-issue-in-packagecontroller-fixed

The iframe plugin before 4.5 for WordPress does not sanitize a URL. Date published : 2020-05-07 https://guilhermerubert.com/blog/cve-2020-12696/ iframe

An issue was discovered in Serpico before 1.3.3. The /admin/attacments_backup endpoint can be requested by non-admin authenticated users. This means that an attacker with a user account can retrieve all of the attachments of...

Katyshop2 before 2.12 has multiple stored XSS issues. Date published : 2020-05-07 https://sourceforge.net/p/katyshop2/code/ci/8c6fb8d8df410e34b704e567805308d820ca5eae/ https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2020-001

A reflected cross-site scripting (XSS) vulnerability in the Mitel ShoreTel Conference Web Application 19.50.1000.0 before MiVoice Connect 18.7 SP2 allows remote attackers to inject arbitrary JavaScript and HTML via the PATH_INFO to home.php. Date...

An issue was discovered in SolarWinds MSP PME (Patch Management Engine) Cache Service before 1.1.15 in the Advanced Monitoring Agent. There are insecure file permissions for %PROGRAMDATA%SolarWinds MSPSolarWinds.MSP.CacheServiceconfig. This can lead to code execution...

GitLab EE 12.8 and later allows Exposure of Sensitive Information to an Unauthorized Actor via NuGet. Date published : 2020-05-07 https://about.gitlab.com/releases/2020/04/30/security-release-12-10-2-released/ https://about.gitlab.com/blog/categories/releases/