CVE-2018-19331

CVE-2018-19331 affects S-CMS v1.5: the search.php endpoint is vulnerable to SQL injection via the keyword parameter. Root cause: unsafely constructed SQL in the search feature. Exploitation via keyword parameter is documented; this could enable a SQL injection attack. No remediation or patch deta...

Denial of Service Vulnerability in Jiangmin Optimization Expert 4WfpNetLimiter.sys Driver

Jiangmin Optimization Expert is a completely free computer optimization software that is purely a tool. A denial of service vulnerability exists in the JM Optimization Expert 4WfpNetLimiter.sys driver. An attacker can cause a denial of service attack by sending a 0x00222408 request using the...

Akamai Takes Home Three Streaming Media Readers' Choice Awards

Streaming Media has announced its 2018 Readers' Choice Award winners at Streaming Media West in Huntington Beach, Calif. Recognizing technological excellence in the online video industry, Streaming Media readers cast more than 25,000 votes across 30 categories. Akamai was honored to win in three...

java-11-openjdk security update

1:11.0.1.13-3.0.1 - link atomic for ix86 build 1:11.0.1.13-3 - Bump release for rebuild. 1:11.0.1.13-2 - Use LTS designator in version output for RHEL. 1:11.0.1.13-1 - Update to October 2018 CPU release, 11.0.1+13. 1:11.0.0.28-2 - Use --with-vendor-version-string=18.9 so as to show original GA da...

IBM Contact Optimization Input Validation Vulnerability

IBM Contact Optimization is a suite of marketing management solutions from IBM USA. The product is used to increase customer engagement and supports features such as creating rule-based scores. An input validation vulnerability exists in IBM Contact Optimization that stems from a lack of input...

389-ds-base security, bug fix, and enhancement update

1.3.8.4-15 - Bump version to 1.3.8.4-15 - Resolves: Bug 1624004 - Fix regression in last patch 1.3.8.4-14 - Bump version to 1.3.8.4-14 - Resolves: Bug 1624004 - potential denial of service attack 1.3.8.4-13 - Bump version to 1.3.8.4-13 - Resolves: Bug 1623949 - Crash in deletepasswdPolicy when...

It will take more than web pages that load faster to boost holiday conversion

When designing websites to meet peak traffic demands, it is vital to look beyond basic metrics such as page load speed. Providing visual content optimized for both desktop and mobile devices, and combating security threats will help you drive traffic and improve conversion rates during the holida...

Tailor Video Experiences for Your End Viewers with Manifest Personalization

While the number of online viewers continues to grow, content providers must be able to deliver high quality video streams, flawlessly at scale to meet the demands of these audiences. This is no small task as high volumes of requests often come from various locations, diverse device types and...

openSUSE Security Update : gitolite (openSUSE-2018-1118)

This update for gitolite fixes the following issues : Gitolite was updated to 3.6.9 : - CVE-2018-16976: prevent racy access to repos in process of migration to gitolite boo1108272 - 'info' learns new '-p' option to show only physical repos as opposed to wild repos The update to 3.6.8 contains : -...

Collaboration Compliance And Quality Management Platform 9.1.1.5482 Improper Access Control

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Advisory ID: SYSS-2018-024 Product: Collaboration Compliance and Quality Management Platform Manufacturer: Verint Verba Affected Versions: = 9.1.1.5482 Tested Versions: 9.1.1.5482 Vulnerability Type: Improper Access Control CWE-284 Risk Level: Mediu...

optimization.hardlinux.ru XSS vulnerability

Open Bug Bounty ID: OBB-681884 Description| Value ---|--- Affected Website:| optimization.hardlinux.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Denial of Service Vulnerability in Jiangmin Optimization Expert WfpNetLimiter Driver

Jiangmin Optimization Expert is a completely free computer optimization software that is purely a tool. A denial of service vulnerability exists in the Jiangmin Optimization Expert WfpNetLimiter driver. An attacker can exploit the vulnerability to cause a computer to blue screen, resulting in a...

Microsoft Edge Chakra JIT - 'localeCompare' Type Confusion

/ A call to the String.prototype.localeCompare method can be inlineed when it only takes one argument. There are two versions of String.prototype.localeCompare, one 1 is written in JavaScript and the other 2 is written in C++ which just calls the JavaScript version when Intl enabled without...

Mobile matters: How to ready your apps for the holiday shopping spike

While more consumers now shop on smartphones, retailers have a lot of work to do to make mobile shopping easy. Developers must account for the wide variety of mobile hardware and software, take into account how consumers use their phones in stores and ensure easy checkout. The cheer and good...

Domain Name Consolidation: Observations From the Field

The market and marketing of Web property domain names is changing. Companies prefer to promote top level domains TLDs, have the option of selecting brand-relevant domain extensions e.g. SaaS.com, and no longer need country-relevant domains to optimize search engine result rankings...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime IBM affect IBM Decision Optimization Center and IBM ILOG ODM Enterprise

Summary There are multiple vulnerabilities in IBM® SDK Java™ and IBM® Runtime Environment Java™ Versions 6, 7 and 8 used by IBM Decision Optimization Center. These issues were disclosed as part of the IBM Java SDK updates in July 2018. Vulnerability Details If you run your own Java code using the...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM ILOG CPLEX Optimization Studio

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 6, 7 and 8 used by IBM ILOG CPLEX Optimization Studio. These issues were disclosed as part of the IBM Java SDK updates in July 2018. Vulnerability Details If you run your own Java code using the IBM Java Runtime...

Three tips to prepare for peak traffic

Peak shopping season is just around the corner. Is your website prepared? Some websites slow down, and others simply crash, driving users and revenue away. Your website needs to accommodate a multitude of devices that will be accessing it, along with the potential for malicious attacks such as Bo...

Syhunt Community Hybrid Scanner v6.2

Syhunt Community is a hybrid static and dynamic web application security scanner. Syhunt is able to scan any kind of application source code for potential security vulnerabilities, pinpointing the exact lines of the code that need to be patched. Or you can simply enter a start URL and get detaile...

Google Chrome < 61.0.3163.100 Multiple Vulnerabilities

Binary data 700344.pasl...