Monthly Archive: May 2021

In YFCMF v2.3.1, there is a stored XSS vulnerability in the comments section of the news page. Date published : 2021-05-14 https://github.com/lxw1844912514/YFCMF/issues/2

Cross Site Scripting (XSS) in LAOBANCMS v2.0 allows remote attackers to execute arbitrary code by injecting commands into the "Homepage Introduction" field of component "admin/info.php?shuyu". Date published : 2021-05-14 https://github.com/Cumtyuanfeng/Laobancms/blob/master/vuln.md

Unrestricted File Upload in LAOBANCMS v2.0 allows remote attackers to upload arbitrary files by attaching a file with a ".jpg.php" extension to the component "admin/wenjian.php?wj=../templets/pc". Date published : 2021-05-14 https://github.com/Cumtyuanfeng/Laobancms/blob/master/vuln.md

TP-Link Archer C1200 firmware version 1.13 Build 2018/01/24 rel.52299 EU has a XSS vulnerability allowing a remote attacker to execute arbitrary code. Date published : 2021-05-14 https://github.com/sandboxescape/TP-Link-wireless-router-Archer-C1200—Cross-Site-Scripting/

A XSS Vulnerability in /uploads/dede/action_search.php in DedeCMS V5.7 SP2 allows an authenticated user to execute remote arbitrary code via the keyword parameter. Date published : 2021-05-14 https://github.com/ky-j/dedecms/issues/12

A flaw was found in noobaa-operator in versions before 5.7.0, where internal RPC AuthTokens between the noobaa operator and the noobaa core are leaked into log files. An attacker with access to the log...

The Flask-Caching extension through 1.10.1 for Flask relies on Pickle for serialization, which may lead to remote code execution or local privilege escalation. If an attacker gains access to cache storage (e.g., filesystem, Memcached,...

admin/user_import.php in Chamilo 1.11.x reads XML data without disabling the ability to load external entities. Date published : 2021-05-13 https://github.com/andrejspuler/writeups/blob/main/chamilo-lms/README.md#authenticated-rcelfi-in-user-import-via-xml-external-entity—cve-2021-32925 https://github.com/chamilo/chamilo-lms/commit/e71437c8de809044ba3ae1b181d70857c050a3e9

An issue was discovered in Prosody before 0.11.9. It does not use a constant-time algorithm for comparing certain secret strings when running under Lua 5.2 or later. This can potentially be used in a...

Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation requests. Date published : 2021-05-13 https://www.debian.org/security/2021/dsa-4916 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GUN63AHEWB2WRROJHU3BVJRWLONCT2B7/

An issue was discovered in Prosody before 0.11.9. The undocumented dialback_without_dialback option in mod_dialback enables an experimental feature for server-to-server authentication. It does not correctly authenticate remote server certificates, allowing a remote server to...

An issue was discovered in Prosody before 0.11.9. Default settings are susceptible to remote unauthenticated denial-of-service (DoS) attacks via memory exhaustion when running under Lua 5.2 or Lua 5.3. Date published : 2021-05-13 https://www.debian.org/security/2021/dsa-4916...

An issue was discovered in Prosody before 0.11.9. The proxy65 component allows open access by default, even if neither of the users has an XMPP account on the local server, allowing unrestricted use of...

Piwigo 11.4.0 allows admin/user_list_backend.php order[0][dir] SQL Injection. Date published : 2021-05-13 https://github.com/Piwigo/Piwigo/commit/2ce1e5952238eba0fe5c5d6537ebdc76cb970b52 https://github.com/Piwigo/Piwigo/issues/1410