Monthly Archive: September 2021

OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs...

In RIOT-OS 2021.01, nonce reuse in 802.15.4 encryption in the ieee820154_security component allows attackers to break encryption by triggering reboots. Date published : 2021-09-15 https://github.com/RIOT-OS/RIOT/issues/16844

A Stored XSS exists in TinyFileManager All version up to and including 2.4.6 in /tinyfilemanager.php when the server is given a file that contains HTML and javascript in its name. A malicious user can...

A Cross-Site Request Forgery (CSRF) vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload files and run OS commands by inducing the Administrator user to browse a...

A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload a file (with Admin credentials or with the CSRF vulnerability) with the "fullpath" parameter containing...

An issue in the BAT file parameters of PublicCMS v4.0 allows attackers to execute arbitrary code. Date published : 2021-09-15 https://github.com/sanluan/PublicCMS/issues/57

HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously disclosed a sensitive URL to authenticated parties, which could be used for privilege escalation or unauthorized modification of a Terraform configuration. Fixed...

The web part of Zenitel AlphaCom XE Audio Server through 11.2.3.10, called AlphaWeb XE, does not restrict file upload in the Custom Scripts section at php/index.php. Neither the content nor extension of the uploaded...

Improper access control in Jfinal CMS 5.1.0 allows attackers to access sensitive information via /classes/conf/db.properties&config=filemanager.config.js. Date published : 2021-09-15 http://jfinalcms.com https://github.com/jflyfox/jfinal_cms

Microsoft Accessibility Insights for Android Information Disclosure Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40448

Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38667, CVE-2021-38671. Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40447

Microsoft MSHTML Remote Code Execution Vulnerability Date published : 2021-09-15 http://packetstormsecurity.com/files/164210/Microsoft-Windows-MSHTML-Overview.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40444

Microsoft Dynamics Business Central Cross-site Scripting Vulnerability Date published : 2021-09-15 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40440

A Cross Site Scriptiong (XSS) vulnerability exists in the admin panel in Webuzo < 2.9.0 via an HTTP request to a non-existent page, which is activated by administrators viewing the "Error Log" page. An...