A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in get_xref_linear_skipped() in pdf.c via a crafted PDF file. Date published : 2021-04-28 https://bugzilla.redhat.com/show_bug.cgi?id=1951198 https://github.com/enferex/pdfresurrect/issues/17
GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007. Date published : 2021-04-28 https://security.netapp.com/advisory/ntap-20210618-0002/ https://mail.gnu.org/archive/html/bug-wget/2021-02/msg00002.html
In mjs_json.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjs_json_parse, which can potentially lead to redirection of control flow. Date published : 2021-04-28...
Redmine before 4.0.9 and 4.1.x before 4.1.3 allows an attacker to learn the values of internal authentication keys by observing timing differences in string comparison operations within SysController and MailHandlerController. Date published : 2021-04-28...
Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows users to circumvent the allowed filename extensions of uploaded attachments. Date published : 2021-04-28 https://www.redmine.org/news/131 https://www.redmine.org/projects/redmine/wiki/Security_Advisories
Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the add_issue_notes permission requirement by leveraging the incoming mail handler. Date published : 2021-04-28 https://www.redmine.org/news/131 https://www.redmine.org/projects/redmine/wiki/Security_Advisories
Insufficient input validation in the Git repository integration of Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows Redmine users to read arbitrary local files accessible by the application server process. Date...
A SQL Injection vulnerability in the REST API in Layer5 Meshery 0.5.2 allows an attacker to execute arbitrary SQL commands via the /experimental/patternfiles endpoint (order parameter in GetMesheryPatterns in models/meshery_pattern_persister.go). Date published : 2021-04-28...
The yoast_seo (aka Yoast SEO) extension before 7.2.1 for TYPO3 allows SSRF via a backend user account. Date published : 2021-04-28 https://typo3.org/security/advisory/typo3-ext-sa-2021-006
The media2click (aka 2 Clicks for External Media) extension 1.x before 1.3.3 for TYPO3 allows XSS by a backend user account. Date published : 2021-04-28 https://typo3.org/security/advisory/typo3-ext-sa-2021-004
The dce (aka Dynamic Content Element) extension 2.2.0 through 2.6.x before 2.6.2, and 2.7.x before 2.7.1, for TYPO3 allows SQL Injection via a backend user account. Date published : 2021-04-28 http://packetstormsecurity.com/files/162429/TYPO3-6.2.1-SQL-Injection.html CERT-XLM: Security advisory
Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the SYSTEM user, if the machine is misconfigured to allow unprivileged users to write to directories...
The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant user’s credential. Date published : 2021-04-28 https://gist.github.com/keniver/86ebef688fb274b534da51ef1a84dd3e https://www.chtsecurity.com/news/0b733a38-e616-4ff3-86a6-13e710643388
The sensitive information of webcam device is not properly protected. Remote attackers can unauthentically grant administrator’s credential and further control the devices. Date published : 2021-04-28 https://gist.github.com/keniver/86ebef688fb274b534da51ef1a84dd3e https://www.chtsecurity.com/news/0b733a38-e616-4ff3-86a6-13e710643388