Custom Global Variables <= 1.0.5 - Stored Cross-Site Scripting (XSS)

The plugin does not sanitise the 'name' field of the variable added in its settings, leading to a Stored Cross-Site Scripting issue. Attackers could also used the lack of CSRF nonce and check to make a logged in administrator add the payload and make them perform further unwanted actions. PoC The...

WordPress Custom Global Variables 1.0.5 Cross Site Scripting

Exploit Title: WordPress Plugin Custom Global Variables 1.0.5 - 'name' Stored Cross-Site Scripting XSS Google Dork: NA Date: 09/01/2021 Exploit Author: Swapnil Subhash Bodekar Vendor Homepage: Software Link: https://wordpress.org/plugins/custom-global-variables/developers Version: 1.0.5 Tested on...

WordPress Plugin Custom Global Variables 1.0.5 - &#039;name&#039; Stored Cross-Site Scripting (XSS)

Exploit Title: WordPress Plugin Custom Global Variables 1.0.5 - 'name' Stored Cross-Site Scripting XSS Google Dork: NA Date: 09/01/2021 Exploit Author: Swapnil Subhash Bodekar Vendor Homepage: Software Link: https://wordpress.org/plugins/custom-global-variables/developers Version: 1.0.5 Tested on...

CVE-2020-26046

FUEL CMS 1.4.11 has stored XSS in Blocks/Navigation/Site variables. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account and also impact other visitors...

Cross site scripting

FUEL CMS 1.4.11 has stored XSS in Blocks/Navigation/Site variables. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account and also impact other visitors...

CVE-2020-26046

CVE-2020-26046 affects FUEL CMS 1.4.11. A stored cross-site scripting vulnerability exists in the Blocks/Navigation/Site variables, exploitable by an authenticated user and potentially impacting other visitors. Reported impact includes cookie stealing and other malicious actions. The available do...

CVE-2020-26046

FUEL CMS 1.4.11 has stored XSS in Blocks/Navigation/Site variables. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account and also impact other visitors...

postgresql: psql's \gset allows overwriting specially treated variables

A flaw was found in the psql interactive terminal of PostgreSQL. If an interactive psql session uses \gset when querying a compromised server, this flaw allows an attacker to execute arbitrary code as the operating system account running psql. The highest threat from this vulnerability is to...

ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection

A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables...

ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection

A flaw was found in the way ksh evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables...

MTN Group: PHP Info Exposing Secrets at https://radio.mtn.bj/info

Summary: During recon I discovered a PHP Info file exposing environment variables such as; Laravel APPKEY, Database username/password, SMTP username/password, etc. Steps To Reproduce: Visit the following URL; https://radio.mtn.bj/info You will be presented with a PHP Info file exposing environmen...

B&r Automation APROL Security Breach

B&r Automation B&r Automation APROL is a Linux-based process control system for industrial control applications from Australian company B&r Automation. A security vulnerability exists in B&R Industrial Automation APROL versions prior to R4.2 V7.08, which originates from the ability to alter...

Security update for podman (moderate)

openSUSE Security Update: Security update for podman Announcement ID: openSUSE-SU-2020:2063-1 Rating: moderate References: 1176804 1178122 1178392 Cross-References: CVE-2020-14370 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has two fixes is now available...

Prototype Pollution

nunjucks is vulnerable to prototype pollution. The attacker is able to get control of value of this.variables in Frame.prototype.lookup and modify attributes such as proto, constructor and prototype...

UBUNTU-CVE-2020-26235

In Rust time crate from version 0.2.7 and before version 0.2.23, unix-like operating systems may segfault due to dereferencing a dangling pointer in specific circumstances. This requires the user to set any environment variable in a different thread than the affected functions. The affected...

Rust time crate code issue vulnerability

Rust is a general-purpose, compiled programming language. A security vulnerability exists in Rust time crate versions 0.2.7 through 0.2.23, which stems from the possibility that the unix operating system may experience a segmentation fault due to the dereferencing of a dangling pointer in a...

libvips Information Disclosure Vulnerability

libvips is a demand-driven multi-threaded image processing library. libvips versions prior to 8.8.2 are vulnerable to an information disclosure. The vulnerability stems from imvips2dz in /libvips/libvips/deprecated/imvips2dz.c in libvips having uninitialized variables. An attacker could use this...

Overwriting Variables

postgresql is vulnerable to overwriting variables. The vulnerability exists because \gset allows overwriting specially treated variables...

libvips 安全漏洞

libvips is a demand-driven multi-threaded image processing library. libvips versions prior to 8.8.2 are vulnerable to an information disclosure. The vulnerability stems from imvips2dz in /libvips/libvips/deprecated/imvips2dz.c in libvips having uninitialized variables. An attacker could use this...

RUSTSEC-2020-0071 Potential segfault in the time crate

Impact The affected functions set environment variables without synchronization. On Unix-like operating systems, this can crash in multithreaded programs. Programs may segfault due to dereferencing a dangling pointer if an environment variable is read in a different thread than the affected...