RHEL 6 : flash-plugin (RHSA-2020:4251)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:4251 advisory. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version...

Security Update for Microsoft Office 2013 (KB4486688) 64-Bit Edition

A security vulnerability exists in Microsoft Office 2013 64-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

Security Update for Microsoft Excel 2016 (KB4486678) 32-Bit Edition

A security vulnerability exists in Microsoft Excel 2016 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

Description of the security update for Office 2010: October 13, 2020

Description of the security update for Office 2010: October 13, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Word if the software does not correctly handle .LNK files. To learn more about the vulnerability, see Microsoft Common...

muslib.arraymusic.com Cross Site Scripting vulnerability OBB-1402082

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Arbitrary Code Execution

webkitgtk4 is vulnerable to arbitrary code execution. The vulnerabiltiy exists through memory errors...

Arbitrary Code Execution

webkitgtk4 is vulnerable to arbitrary code execution. The vulnerability exists through parsing web content that causes memory corruption...

IBM Maximo Asset Management Code Execution Vulnerability

IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution from IBM USA. The solution is capable of managing all types of assets, such as facilities, transportation, etc., on a single platform with a single point of control for these assets. A code executio...

CVE-2020-6143

A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The password variable which is set at line 122 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this...

Accusoft ImageGear DICOM parse_dicom_meta_info code execution vulnerability

Talos Vulnerability Report TALOS-2020-1096 Accusoft ImageGear DICOM parsedicommetainfo code execution vulnerability September 1, 2020 CVE Number CVE-2020-6152 SUMMARY A code execution vulnerability exists in the DICOM parsedicommetainfo functionality of Accusoft ImageGear 19.7. A specially crafte...

CVE-2020-10289

Use of unsafe yaml load. Allows instantiation of arbitrary objects. The flaw itself is caused by an unsafe parsing of YAML values which happens whenever an action message is processed to be sent, and allows for the creation of Python objects. Through this flaw in the ROS core package of actionlib...

Security Bulletin: WebSphere Application Server which is shipped as a component of IBM Cloud Pak for Applications is vulnerable to a remote code execution vulnerability (CVE-2020-4589)

Summary WebSphere Application Server is shipped as a component of IBM Cloud Pak for Applications. Information about security vulnerabilities affecting WebSphere Application Server have been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

Security Bulletin: Multiple vulnerabilities in IBM WebSphere Appilcation Server and WebSphere Application Server Liberty affects IBM Engineering ELM products on IBM Jazz technology.

Summary There are multiple vulnerabilities in IBM WebSphere Application Server and WebSphere Application Server Liberty that affect IBM Engineering Products based on IBM Jazz technology. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Product...

Description of the security update for Office 2016: August 11, 2020

Description of the security update for Office 2016: August 11, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Access software if the software does not correctly handle objects in memory. To learn more about the vulnerability, see Microsof...

Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 (KB4570509)

Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 KB4570509 Applies to: Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.0 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 IMPORTANT Verify thatyou have installed the required updates...

Google Chrome Code Execution Vulnerability (CNVD-2020-49880)

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in versions prior to Google Chrome 84.0.4147.125. An attacker can exploit the vulnerability to execute arbitrary code or cause a denial of service...

Travel Management System 1.0 Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: Travel Management System v1.0 - Unauthenticated Remote Code Execution Exploit Author: Adeeb Shah @hyd3sec & Bobby Cooke boku Vulnerability Discovery: Adeeb Shah @hyd3sec Date: August 10, 2020 Vendor Homepage:...

Google Chrome Code Execution Vulnerability (CNVD-2020-49922)

Google Chrome is a web browser. A code execution vulnerability exists in Google Chrome. A remote attacker could exploit this vulnerability to execute arbitrary code on the system or cause a denial of service condition...

Code Execution Vulnerability in KiteCMS Backend

KiteCMS open source web content management system CMS, the system is based on the framework ThinkPHP5.1. version of the development , applicable to individuals and enterprises to quickly build stations and development needs. Provide website templates for various industries , the system uses a...

Security fix for the ALT Linux 10 package dotnet-bootstrap-5.0 version 3.1.6-alt1

Aug. 2, 2020 Vitaly Lipatov 3.1.6-alt1 - new version 3.1.6 with rpmrb script ALT bug 38744 - .NET Core 3.1.6 - July 14, 2020 - CVE-2020-1108: .NET Core Denial of Service Vulnerability - CVE-2020-1147: NET Core Remote Code Execution Vulnerability...