Responsive Menu <= 3.1.3 - XSS and CSRF

The Responsive Menu – Create Mobile-Friendly Menu WordPress plugin was affected by a XSS and CSRF security vulnerability...

[SECURITY] Fedora 26 Update: menu-cache-1.0.2-4.D20170514git56f6668459.fc26

Menu-cache is a caching mechanism for freedesktop.org compliant menus to speed up parsing of the menu entries. It is currently used by some of components of the LXDE desktop environment such as LXPanel or LXLauncher...

MGASA-2017-0155 Updated menu-cache packages fix security vulnerability

Libmenu-cache 1.0.2 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service menu unavailability. CVE-2017-8933...

Updated menu-cache packages fix security vulnerability

Libmenu-cache 1.0.2 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service menu unavailability. CVE-2017-8933...

Windows 10 + Citrix Profile Management : Start Menu Unable to Retain Pinned Items and Becomes Unresponsive

After installing Win10 and Citrix Profile Management 5.x you may notice that the Start menu cannot retain pinned items after restart and sometimes it may not even launch...

Fedora Update for menu-cache FEDORA-2017-3f2d5790d2

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 24 Update: menu-cache-1.0.2-4.D20170514git56f6668459.fc24

Menu-cache is a caching mechanism for freedesktop.org compliant menus to speed up parsing of the menu entries. It is currently used by some of components of the LXDE desktop environment such as LXPanel or LXLauncher...

XXE Vulnerability in the ManageMenu.asmx File of MicroXia Online Learning Platform

Micro Xia Online Learning Platform is an online education system based on B/S architecture. A XXE vulnerability exists in the ManageMenu.asmx file of MicroXia Online Learning Platform, which can be exploited by an attacker to remotely read arbitrary files from the server...

CVE-2017-9149

Metadata Anonymisation Toolkit MAT 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent attackers to obtain sensitive information by reading a file for which cleaning had been attempted...

CVE-2017-9149

Metadata Anonymisation Toolkit MAT 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent attackers to obtain sensitive information by reading a file for which cleaning had been attempted...

Information disclosure

Metadata Anonymisation Toolkit MAT 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent attackers to obtain sensitive information by reading a file for which cleaning had been attempted...

UBUNTU-CVE-2017-9149

Metadata Anonymisation Toolkit MAT 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent attackers to obtain sensitive information by reading a file for which cleaning had been attempted...

CVE-2017-9149

Metadata Anonymisation Toolkit MAT 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent attackers to obtain sensitive information by reading a file for which cleaning had been attempted...

CVE-2017-9149

Metadata Anonymisation Toolkit MAT 0.6 and 0.6.1 silently fails to perform "Clean metadata" actions upon invocation from the Nautilus contextual menu, which allows context-dependent attackers to obtain sensitive information by reading a file for which cleaning had been attempted...

Cross site scripting

Cross-site scripting vulnerability in Captcha prior to version 4.3.0, Car Rental prior to version 1.0.5, Contact Form Multi prior to version 1.2.1, Contact Form prior to version 4.0.6, Contact Form to DB prior to version 1.5.7, Custom Admin Page prior to version 0.1.2, Custom Fields Search prior ...

CVE-2017-2171

Cross-site scripting vulnerability in Captcha prior to version 4.3.0, Car Rental prior to version 1.0.5, Contact Form Multi prior to version 1.2.1, Contact Form prior to version 4.0.6, Contact Form to DB prior to version 1.5.7, Custom Admin Page prior to version 0.1.2, Custom Fields Search prior ...

CVE-2017-2171

CVE-2017-2171 detail: A cross-site scripting vulnerability affects BestWebSoft WordPress plugins that display the BestWebSoft menu. The issue arises from a common function used to render the menu (CWE-79), enabling remote attackers to execute arbitrary script in a logged-in user’s browser. Affect...

CVE-2017-2495

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "Safari" component. It allows remote attackers to cause a denial of service application crash via a crafted web site that improperly interacts with the histor...

Libmenu-cache Denial of Service Vulnerability

Libmenu-cache is a library that can create and utilize caches to shorten the loading time of menu items. A denial of service vulnerability exists in Libmenu-cache version 1.0.2. A local attacker can exploit this vulnerability to cause a denial of service menu is unusable...

Fedora Update for menu-cache FEDORA-2017-6950ea5d05

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...