CVE-2024-48821

Cross Site Scripting vulnerability in Automatic Systems Maintenance SlimLane 29565d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to escalate privileges via the FtpConfig.php component...

CVE-2024-48823

Local file inclusion in Automatic Systems Maintenance SlimLane 29565d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to escalate privileges via the PassageAutoServer.php page...

CVE-2024-48822

Privilege escalation in Automatic Systems Maintenance SlimLane 29565d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to escalate privileges via the FtpConfig.php page...

CVE-2024-48824

An issue in Automatic Systems Maintenance SlimLane 29565d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to obtain sensitive information via the Racine & FileName parameters in the download-file.php component...

CVE-2024-48822

Privilege escalation in Automatic Systems Maintenance SlimLane 29565d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to escalate privileges via the FtpConfig.php page...

CVE-2024-48824

Affected software: Automatic Systems Maintenance SlimLane (SlimLane 29565_d74ecce0c1081d50546db573a499941b10799fb7). Vulnerability: Information disclosure via the Racine and FileName parameters in the download-file.php component, allowing a remote attacker to obtain sensitive data. Impact context...

CVE-2024-48822

CVE-2024-48822 affects Automatic Systems Maintenance SlimLane, version 29565 (d74ecce0c1081d50546db573a499941b10799fb7). The root cause is a privilege escalation vulnerability via the FtpConfig.php page, enabling remote attackers to escalate privileges. The vulnerability has a CVSS v3.1 base scor...

PT-2024-37046 · Unknown · Password Pusher

Name of the Vulnerable Software and Affected Versions: Password Pusher versions 1.50.3 and prior Description: A vulnerability has been reported in Password Pusher where an attacker can copy the session cookie before a user logs out, potentially allowing session hijacking. Although the session tok...

CVE-2024-48821

Cross Site Scripting vulnerability in Automatic Systems Maintenance SlimLane 29565d74ecce0c1081d50546db573a499941b10799fb7 allows a remote attacker to escalate privileges via the FtpConfig.php component...

CVE-2024-48821

CVE-2024-48821 is a Cross Site Scripting (XSS) vulnerability in Automatic Systems Maintenance SlimLane (build 29565_d74ecce0c1081d50546db573a499941b10799fb7) where the FtpConfig.php component is susceptible to privilege escalation by a remote attacker. Public documentation across Red Hat, NVD, CV...

PT-2024-33242 · Automatic Systems Maintenance · Slimlane

Name of the Vulnerable Software and Affected Versions: Automatic Systems Maintenance SlimLane affected versions not specified Description: An issue in Automatic Systems Maintenance SlimLane allows a remote attacker to obtain sensitive information via the Racine and FileName parameters in the...

CVE-2024-48823

CVE-2024-48823 : Local file inclusion in Automatic Systems Maintenance SlimLane through the PassageAutoServer.php page allows a remote attacker to escalate privileges. The affected product is SlimLane (Automatic Systems), describing an elevation of privilege via LFI. Root cause and specific vulne...

PT-2024-33239 · Unknown · Automatic Systems Maintenance Slimlane

Name of the Vulnerable Software and Affected Versions: Automatic Systems Maintenance SlimLane 29565 d74ecce0c1081d50546db573a499941b10799fb7 Description: A Cross Site Scripting XSS vulnerability allows a remote attacker to escalate privileges via the FtpConfig.php component. This issue enables an...

Auto-Identification Smart Glasses

Two students have created a demo of a smart-glasses app that performs automatic facial recognition and then information lookups. Kind of obvious--something similar was done in 2011--but the sort of creepy demo that gets attention. News article...

CentOS 7 : thunderbird (RHSA-2020:2906)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2906 advisory. - Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a potentially...

iPhone flaw could read your saved passwords out loud. Update now!

Apple has issued security updates for iOS 18.0.1 and iPadOS 18.0.1 which includes a fix for a bug that could allow a user's saved passwords to be read aloud by its VoiceOver feature. VoiceOver allows users to use their iPhone or iPad even if they can't see the screen. It gives audible description...

Kaspersky Exits U.S., Automatically Replaces Software With UltraAV, Raising Concerns

Antivirus vendor Kaspersky has formally begun pulling back its offerings in the U.S., migrating existing users to UltraAV, effective September 19, 2024, ahead of its formal exit at the end of the month. "Kaspersky antivirus customers received a software update facilitating the transition to...

PT-2024-28849 · Unknown +1 · Doccano Auto Labeling Pipeline +1

Name of the Vulnerable Software and Affected Versions: Doccano Open source annotation tools for machine learning practitioners version 1.8.4 Doccano Auto Labeling Pipeline module version 0.1.23 Description: An issue in the affected software allows a remote attacker to escalate privileges via a...

[SECURITY] Fedora 39 Update: clamav-1.0.7-1.fc39

Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...

[SECURITY] Fedora 40 Update: clamav-1.0.7-1.fc40

Clam AntiVirus is an anti-virus toolkit for UNIX. The main purpose of this software is the integration with mail servers attachment scanning. The package provides a flexible and scalable multi-threaded daemon, a command line scanner, and a tool for automatic updating via Internet. The programs ar...