Heybbs v1.2 has a SQL injection vulnerability in login.php file via the username parameter which may allow a remote attacker to execute arbitrary code. Date published : 2020-09-03 https://www.exploit-db.com/ https://www.jazzsec.com/2020/08/27/heybbs-has-three-file-sql-injection-vulnerabilities/
Heybbs v1.2 has a SQL injection vulnerability in msg.php file via the ID parameter which may allow a remote attacker to execute arbitrary code. Date published : 2020-09-03 https://www.exploit-db.com/ https://www.jazzsec.com/2020/08/27/heybbs-has-three-file-sql-injection-vulnerabilities/
Heybbs v1.2 has a SQL injection vulnerability in user.php file via the ID parameter which may allow a remote attacker to execute arbitrary code. Date published : 2020-09-03 https://www.exploit-db.com/ https://www.jazzsec.com/2020/08/27/heybbs-has-three-file-sql-injection-vulnerabilities/
There is an invalid memory access in the function fprintf located in Error.cc in Xpdf 4.0.2. It can be triggered by sending a crafted PDF file to the pdftohtml binary, which allows a remote...
There is an invalid memory access in the function TextString::~TextString() located in Catalog.cc in Xpdf 4.0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftohtml binary, which allows...
In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7. Date published : 2020-09-03 https://bugzilla.nasm.us/show_bug.cgi?id=3392712
GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e. Date published : 2020-09-03 https://security.netapp.com/advisory/ntap-20200924-0001/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/J3ICASXZI2UQYFJAOQWHSTNWGED3VXOE/
Privilege escalation in PHP-Fusion 9.03.50 downloads/downloads.php allows an authenticated user (not admin) to send a crafted request to the server and perform remote command execution (RCE). Date published : 2020-09-03 http://packetstormsecurity.com/files/162852/PHPFusion-9.03.50-Remote-Code-Execution.html https://github.com/php-fusion/PHP-Fusion/issues/2312
The ao_ccss_import AJAX call in Autoptimize WordPress Plugin 2.7.6 does not ensure that the file provided is a legitimate Zip file, allowing high privilege users to upload arbitrary files, such as PHP, leading to...
An issue was discovered in Laravel before 6.18.35 and 7.x before 7.24.0. The $guarded property is mishandled in some situations involving requests with JSON column nesting expressions. Date published : 2020-09-03 https://blog.laravel.com/security-release-laravel-61835-7240
An issue was discovered in Laravel before 6.18.34 and 7.x before 7.23.2. Unvalidated values are saved to the database in some situations in which table names are stripped during a mass assignment. Date published...
Use of a hard-coded cryptographic key in Pancake versions < 4.13.29 allows an attacker to forge session cookies, which may lead to remote privilege escalation. Date published : 2020-09-03 https://www.pancakeapp.com/blog/entry/pancake-4.13.29-released https://www.vaadata.com/blog/hardcoded-secret-leads-to-account-takeover/
A memory corruption vulnerability was found in the kernel function kern_getfsstat in MidnightBSD before 1.2.7 and 1.3 through 2020-08-19, and FreeBSD through 11.4, that allows an attacker to trigger an invalid free and crash...
In MidnightBSD before 1.2.6 and 1.3 before August 2020, and FreeBSD before 7, a NULL pointer dereference was found in the Linux emulation layer that allows attackers to crash the running kernel. During binary...