RHEL 6 : chromium-browser (RHSA-2020:1970)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1970 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 81.0.4044.122. Security Fixes:...

Google Chrome URL Formatting Security Bypass Vulnerability

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome prior to version 81.0.4044.122, which stems from the program's failure to perform adequate data validation when formatting URLs. A remote attacker can exploit the vulnerability to...

KLA11756 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read and write vulnerability in PDFium component can be exploited to...

MS15-022: Description of the security update for Excel Services in SharePoint Server 2013: March 10, 2015

Describes a security update that addresses vulnerabilities by correcting how SharePoint Server sanitizes specially crafted page content.INTRODUCTIONMicrosoft has released security bulletin MS15-022. To view the complete security bulletin, go to one of the following Microsoft websites: Home...

Arbitrary Code Execution

elinks is vulnerable to arbitrary code execution. The vulnerability exists as it was discovered that ELinks tried to load translation files using relative paths. A local attacker able to trick a victim into running ELinks in a folder containing specially-crafted translation files could use this...

QEMU: Slirp: potential OOB access due to unsafe snprintf() usages

An out-of-bounds heap buffer access flaw was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in tcpemu routine while emulating IRC and other protocols due to unsafe usage of the snprintf3 function. A user or process could use this flaw to crash the QEMU process...

Node.js third-party modules: [logkitty] RCE via insecure command formatting

I would like to report a RCE issue in the logkitty module. It allows to execute arbitrary commands remotely inside the victim's PC Module module name: logkitty version: 0.7.0 npm page: https://www.npmjs.com/package/logkitty Module Description Display pretty Android and iOS logs without Android...

Microsoft VSCode Python Extension - Code Execution

VSCode Python Extension Code Execution This repository contains the Proof-of-Concept of a code execution vulnerability discovered in the Visual Studio Code Python extension. TL;DR: VScode may use code from a virtualenv found in the project folders without asking the user, for things such as...

Palo Alto Networks PAN-OS Formatting String Error Vulnerability

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall appliances. A formatting string error vulnerability in the logging daemon of Palo Alto Networks PAN-OS versions prior to 8.1.13 in Panorama can be exploited by a local attacker to bypass a restricted...

PT-2020-5165 · Proftpd +2 · Proftpd +2

Name of the Vulnerable Software and Affected Versions: ProFTPD versions prior to 1.3.5e+r1.3.5-2+deb8u7 ProFTPD versions prior to 1.3.6-alt0.4.ga73dbfe3b ProFTPD versions prior to 1.3.6-4+deb10u4 ProFTPD version 1.3.7 Description: ProFTPD contains a use-after-free vulnerability within the memory...

MassDNS - A High-Performance DNS Stub Resolver For Bulk Lookups And Reconnaissance (Subdomain Enumeration)

MassDNS is a simple high-performance DNS stub resolver targetting those who seek to resolve a massive amount of domain names in the order of millions or even billions. Without special configuration, MassDNS is capable of resolving over 350,000 names per second using publicly available resolvers...

Buffer overflow

The tochar function in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to cause a denial of service crash or possibly execute arbitrary code via a 1 large number of digits when processing a numeric...

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-2477)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Node.js third-party modules: [blamer] RCE via insecure command formatting

I would like to report a RCE issue in the blamer module. It allows to execute arbitrary commands remotely inside the victim's PC Module module name: blamer version: 0.1.13 npm page: https://www.npmjs.com/package/blamer Module Description Blamer is a tool for get information about author of code...

Exploit for Cross-site Scripting in Redmine

CVE-2019-17427 CVE-2019-17427 Persistent XSS POC In Redmine...

Open TFTP Server SP Formatting String Error Vulnerability

Open TFTP Server SP is a file transfer server. A formatting string error vulnerability exists in the 'logMess' function in TFTP Server SP version 1.66 and earlier. The vulnerability originates from a network system or product that receives external formatted strings as parameters with lax filteri...

Open TFTP Server Formatting String Error Vulnerability

Open TFTP Server MT is a file transfer server. A formatting string error vulnerability exists in the 'logMess' function in Open TFTP Server MT version 1.65 and earlier. The vulnerability stems from a network system or product that receives external formatted strings as parameters with lax filteri...

CVE-2019-19551

In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the User Management screen of the Administrator web site. An attacker with access to the User Control Panel application can submit malicious values in some of the time/date formatting and time-zone fields. These fields are no...

Cross site scripting

In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the User Management screen of the Administrator web site. An attacker with access to the User Control Panel application can submit malicious values in some of the time/date formatting and time-zone fields. These fields are no...

CVE-2019-19551

The CVE-2019-19551 entry describes an XSS vulnerability in Sangoma FreePBX’s Userman, affecting versions 13.0.76.43 through 15.0.20. The issue arises from insufficient sanitization of time/date formatting and time-zone fields in the User Management screen. An attacker with access to the User Cont...