Monthly Archive: December 2020

The SolarWinds Orion API is vulnerable to an authentication bypass that could allow a remote attacker to execute API commands. This vulnerability could allow a remote attacker to bypass authentication and execute API commands...

The test suite in libopendkim in OpenDKIM through 2.10.3 allows local users to gain privileges via a symlink attack against the /tmp/testkeys file (related to t-testdata.h, t-setup.c, and t-cleanup.c). NOTE: this is applicable to...

An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that...

Ultimate WooCommerce Gift Cards 3.0.2 is affected by a file upload vulnerability in the Custom GiftCard Template that can remotely execute arbitrary code. Once it contains the function "Custom Gift Card Template", the function...

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations. Date published : 2020-12-28 https://developer.joomla.org/security-centre/834-20201107-core-write-acl-violation-in-multiple-core-views.html

An issue was discovered in Joomla! 2.5.0 through 3.9.22. A missing token check in the emailexport feature of com_privacy causes a CSRF vulnerability. Date published : 2020-12-28 https://developer.joomla.org/security-centre/833-20201106-core-csrf-in-com-privacy-emailexport-feature.html

An issue was discovered in Joomla! 3.9.0 through 3.9.22. Improper handling of the username leads to a user enumeration attack vector in the backend login page. Date published : 2020-12-28 https://developer.joomla.org/security-centre/832-20201105-core-user-enumeration-in-backend-login.html

An issue was discovered in Joomla! 3.0.0 through 3.9.22. Improper filter blacklist configuration leads to a SQL injection vulnerability in the backend user list. Date published : 2020-12-28 https://developer.joomla.org/security-centre/831-20201104-core-sql-injection-in-com-users-list-view.html

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The folder parameter of mod_random_image lacked input validation, leading to a path traversal vulnerability. Date published : 2020-12-28 https://developer.joomla.org/security-centre/830-20201103-core-path-traversal-in-mod-random-image.html

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The globlal configuration page does not remove secrets from the HTML output, disclosing the current values. Date published : 2020-12-28 https://developer.joomla.org/security-centre/829-20201102-core-disclosure-of-secrets-in-global-configuration-page.html

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The autosuggestion feature of com_finder did not respect the access level of the corresponding terms. Date published : 2020-12-28 https://developer.joomla.org/security-centre/828-20201101-core-com-finder-ignores-access-levels-on-autosuggest.html

dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readAtomData. Date published : 2020-12-28 https://github.com/dhowden/tag/issues/78

dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readTextWithDescrFrame. Date published : 2020-12-28 https://github.com/dhowden/tag/issues/79

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readAPICFrame. Date published : 2020-12-28 https://github.com/dhowden/tag/issues/80