Service Update 0.22 for Microsoft Dynamics 365 9.0

Service Update 0.22 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.22 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.22. MORE INFORMATION Update package| Version number ---|---...

[SECURITY] Fedora 32 Update: libtpms-0.7.4-0.20201031git2452a24dab.fc32

A library providing TPM functionality for VMs. Targeted for integration into Qemu...

[SECURITY] Fedora 31 Update: libtpms-0.7.4-0.20201031git2452a24dab.fc31

A library providing TPM functionality for VMs. Targeted for integration into Qemu...

CDFMonitor

NOTE : CDFMonitor is now deprecated, to capture trace as service use - https://support.citrix.com/article/CTX677255/citrix-cdfcontrol-as-service Please note: You can download the required file from the Citrix downloads website by visiting the following...

PT-2023-3316 · Moodle +2 · Moodle +2

Name of the Vulnerable Software and Affected Versions: Moodle affected versions not specified Description: The issue is related to insufficient limitations on the start page preference in Moodle, allowing a remote attacker to set this preference for another user. This enables the attacker to gain...

CVE-2020-25398

CSV Injection exists in InterMind iMind Server through 3.13.65 via the csv export functionality...

CVE-2020-25398

CSV Injection exists in InterMind iMind Server through 3.13.65 via the csv export functionality...

Mail.ru: Disk-o Cloud application (Windows) does not validate server certificate on a TLS connection

A debugging/staging functionality disabling TLS certificate check was accidentally enabled in production code for Disk-O 20.10.0133, fixed in version 20.11.0006. 21.04 version adds integrity check for update process...

PDW File Browser 1.3 - Remote Code Execution

Exploit Title: PDW File Browser 1.3 - Remote Code Execution Date: 24-10-2020 Exploit Author: David Bimmel Researchers: David Bimmel, Joost Vondeling, Ramòn Janssen Vendor Homepage: n/a Software Link: https://github.com/GuidoNeele/PDW-File-Browser Version: … ? Once you have uploaded your webshell...

hyperv-daemons bug fix and enhancement update

The hyperv-daemons packages provide a suite of daemons that are needed when a AlmaLinux guest is running on Microsoft Hyper-V. The following daemons are included: - hypervkvpd, the guest Hyper-V Key-Value Pair KVP daemon - hypervvssd, the implementation of Hyper-V VSS functionality - hypervfcopyd...

SQL Injection

pimcore is vulnerable to SQL injection. An attacker is able to inject and execute arbitrary SQL statements on the database via the data classification functionality in ClassificationstoreController, due to inadequate validation of relationIds parameter...

OSV-2020-2106 UNKNOWN READ in grk::SparseBuffer<6u, 6u>::read_or_write

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26702 Crash type: UNKNOWN READ Crash state: grk::SparseBuffer::readorwrite grk::SparseBuffer::read bool grk::decompresspartialtile...

Cross-Site Scripting (XSS)

ngx-bootstrap is vulnerable to cross-site scripting which allows an attacker to inject and execute arbitrary Javascript via the search and highlight functionality within the typeahead component...

openSUSE Security Update : MozillaFirefox (openSUSE-2020-1732)

This update for MozillaFirefox fixes the following issues : - Firefox Extended Support Release 78.4.0 ESR - Fixed: Various stability, functionality, and security fixes MFSA 2020-46 bsc1177872, bsc1176756 - CVE-2020-15969 Use-after-free in usersctp - CVE-2020-15683 Memory safety bugs fixed in...

openSUSE Security Update : MozillaFirefox (openSUSE-2020-1748)

This update for MozillaFirefox fixes the following issues : - Firefox Extended Support Release 78.4.0 ESR - Fixed: Various stability, functionality, and security fixes MFSA 2020-46 bsc1177872, bsc1176756 - CVE-2020-15969 Use-after-free in usersctp - CVE-2020-15683 Memory safety bugs fixed in...

Design/Logic Flaw

The search functionality of the Greenmart theme 2.4.2 for WordPress is vulnerable to XSS...

CVE-2020-16140

The search functionality of the Greenmart theme 2.4.2 for WordPress is vulnerable to XSS...

OPENSUSE-SU-2020:1748-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.4.0 ESR Fixed: Various stability, functionality, and security fixes MFSA 2020-46 bsc1177872, bsc1176756 CVE-2020-15969 Use-after-free in usersctp CVE-2020-15683 Memory safety bugs fixed in Firefox 82...

SUSE-SU-2020:14522-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.4.0 ESR Fixed: Various stability, functionality, and security fixes MFSA 2020-46 bsc1177872 CVE-2020-15969 Use-after-free in usersctp CVE-2020-15683 Memory safety bugs fixed in Firefox 82 and Firefox...

OPENSUSE-SU-2020:1732-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.4.0 ESR Fixed: Various stability, functionality, and security fixes MFSA 2020-46 bsc1177872, bsc1176756 CVE-2020-15969 Use-after-free in usersctp CVE-2020-15683 Memory safety bugs fixed in Firefox 82...