Microsoft June 2018 Patch Tuesday Pushes 11 Critical Security Updates

It's time to gear up for the latest June 2018 Microsoft security patch updates. Microsoft today released security patch updates for more than 50 vulnerabilities, affecting Windows, Internet Explorer, Edge, MS Office, MS Office Exchange Server, ChakraCore, and Adobe Flash Player—11 of which are...

CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

deskgram.org XSS vulnerability

Open Bug Bounty ID: OBB-618645 Description| Value ---|--- Affected Website:| deskgram.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2018-0245

A vulnerability in the REST API of Cisco 5500 and 8500 Series Wireless LAN Controller WLC Software could allow an unauthenticated, remote attacker to view system information that under normal circumstances should be prohibited. The vulnerability is due to incomplete input and validation checking...

CVE-2018-1077

Spacewalk 2.6 contains an API which has an XXE flaw allowing for the disclosure of potentially sensitive information from the server...

api.betaout.com XSS vulnerability

Open Bug Bounty ID: OBB-579754 Description| Value ---|--- Affected Website:| api.betaout.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

Security vulnerabilities fixed in Firefox 59 — Mozilla

A buffer overflow can occur when manipulating the SVG animatedPathSegList through script. This results in a potentially exploitable crash. A use-after-free vulnerability can occur when manipulating elements, events, and selection ranges during editor operations. This results in a potentially...

CVE-2018-1219

EMC RSA Archer, versions prior to 6.2.0.8, contains an improper access control vulnerability on an API which is used to enumerate user information. A remote authenticated malicious user can potentially exploit this vulnerability to gather information about the user base and may use this informati...

tsw.br.forexprostools.com XSS vulnerability

Open Bug Bounty ID: OBB-567043 Description| Value ---|--- Affected Website:| tsw.br.forexprostools.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated...

CVE-2018-6893

controllers/member/Api.php in dayrui FineCms 5.2.0 has SQL Injection: a request with s=member,c=api,m=checktitle, and the parameter 'module' with a SQL statement, lacks effective filtering...

The vulnerability of the Fetch API interface in Mozilla Firefox, Firefox ESR, and the Thunderbird email client allows a perpetrator to trigger a service failure.

The vulnerability of the Fetch API interface in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

CVE-2016-6813

Apache CloudStack 4.1 to 4.8.1.0 and 4.9.0.0 contain an API call designed to allow a user to register for the developer API. If a malicious user is able to determine the ID of another non-"root" CloudStack user, the malicious user may be able to reset the API keys for the other user, in turn...

CVE-2017-1000395

CVE-2017-1000395 affects Jenkins Core (2.73.1 and earlier, 2.83 and earlier). The remote /user/(username)/api API disclosed user-account details (e.g., emails via Mailer Plugin) to non-admins; the API now only returns basic info (userID and name) unless the requester is an administrator. This is ...

CVE-2017-1000399

The CVE-2017-1000399 vulnerability affects Jenkins 2.73.1 and earlier, and 2.83 and earlier, where the remote API at /queue/item/(ID)/api disclosed information about queue tasks to users without proper Item/Read permission. The issue allowed exposure of task details from the queue that the curren...

PowerDNS Authoritative < 4.0.5 Read Only Configuration Bypass (CVE-2017-15091)

According to its self-reported version number, the version of the PowerDNS Authoritative listening on the remote host is prior to 4.0.5. It is, therefore, affected by a vulnerability in the API where a remote authenticated attacker can perform operations that affect the server state even if the...

CVE-2018-2663

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151; JRockit: R28.3.16. Easily exploitable vulnerability allows unauthenticated attacke...

CVE-2017-1000442

Passbolt API version 1.6.4 and older are vulnerable to a XSS in the url field on the password workspace...

Circle with Disney Apid Photo Upload Denial of Service Vulnerability(CVE-2017-2884)

Summary An exploitable vulnerability exists in the user photo update functionality of Circle with Disney running firmware 2.0.1. A repeated set of specially crafted API calls can cause the device to corrupt essential memory, resulting in a bricked device. An attacker needs network connectivity to...

Humax Wi-Fi Router HG100R 2.0.6 - Authentication Bypass

coding: utf-8 Exploit Title: Humax HG100R- Authentication Bypass Date: 14/09/2017 Exploit Author: Kivson Vendor Homepage: http://humaxdigital.com Version: VER 2.0.6 Tested on: OSX Linux CVE : CVE-2017-11435 The Humax Wi-Fi Router model HG100R- 2.0.6 is prone to an authentication bypass...

CVE-2015-3442

CVE-2015-3442 affects Xpert.Line 3.0 (Xpert.Center) from Soreco AG. The vulnerability arises from a client‑side authentication mechanism that uses the Windows API getUserNameA from advapi32.dll to authenticate the user. An attacker who can intercept this API call can impersonate other users and g...