SQL Injection Vulnerability in Online Car Rental Service System

Online car rental service system is an O2O service platform built based on car rental business scenarios. There is a SQL injection vulnerability in the Online Car Rental Service System, which can be exploited by attackers to obtain sensitive information from the database...

[SECURITY] Fedora 25 Update: drawtiming-0.7.1-22.fc25

A command line tool for generating timing diagrams from ASCII input files. The input files use a structured language to represent signal state transitions and interdependencies. Raster image output support is provided by ImageMagick. It can be used for VHDL or verilog presentations...

[SECURITY] Fedora 26 Update: drawtiming-0.7.1-22.fc26

A command line tool for generating timing diagrams from ASCII input files. The input files use a structured language to represent signal state transitions and interdependencies. Raster image output support is provided by ImageMagick. It can be used for VHDL or verilog presentations...

Multiple vulnerabilities in baserCMS

Overview baserCMS provided by baserCMS Users Community contains multiple vulnerabilities listed below. SQL injection CWE-89 - CVE-2017-10842 Arbitary files may be deleted - CVE-2017-10843 Arbitary PHP code execution - CVE-2017-10844 Shoji Baba reported the vulnerabilities to IPA. JPCERT/CC...