CVE-2018-11729

The libfsntfsmftentryreadheader function in libfsntfsmftentry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...

CVE-2018-11730

The libfsntfssecuritydescriptorvaluesfree function in libfsntfssecuritydescriptorvalues.c in libfsntfs through 2018-04-20 allows remote attackers to cause a denial of service double-free via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...

CVE-2018-12096

The liblnkdatastringgetutf8stringsize function in liblnkdatastring.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted lnk file. NOTE: the vendor has disputed this as described in libyal/liblnk issue 33 on GitHub...

CVE-2018-11730

The libfsntfssecuritydescriptorvaluesfree function in libfsntfssecuritydescriptorvalues.c in libfsntfs through 2018-04-20 allows remote attackers to cause a denial of service double-free via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...

qpid-proton/fuzz-connection-driver: Heap-use-after-free in pni_sniff_header

Project: https://github.com/apache/qpid-proton.git Detailed report: https://oss-fuzz.com/testcase?key=5972719047802880 Project: qpid-proton Fuzzer: aflqpid-protonfuzz-connection-driver Fuzz target binary: fuzz-connection-driver Job Type: aflasanqpid-proton Platform Id: linux Crash Type:...

Remote Memory Exposure

Overview Versions of mongoose before 4.3.6, 3.8.39 are vulnerable to remote memory exposure. Trying to save a number to a field of type Buffer on the affected mongoose versions allocates a chunk of uninitialized memory and stores it in the database. Recommendation Update to version 4.3.6, 3.8.39 ...

CVE-2018-1000160

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

CVE-2018-1000160

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

Cross site scripting

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

CVE-2018-1000160

RisingStack protect version 1.2.0 and earlier contains a Cross Site Scripting XSS vulnerability in isXss function in lib/rules/xss.js that can result in dangerous XSS strings being validated as safe. This attack appears to be exploitable via A number of XSS strings26 detailed in the GitHub issue ...

CVE-2018-8754

CVE-2018-8754 concerns the libevt library (Windows Event Log EVT format). The issue arises in the function libevt_record_values_read_event() in libevt_record_values.c, prior to 2018-03-17, where there is insufficient validation for out-of-bounds values of user SID data size, strings size, or data...

MiniUPnP <= 2.0 DoS Vulnerability (CVE-2017-1000494)

Uninitialized stack variable vulnerability in NameValueParserEndElt upnpreplyparse.c in miniupnpd allows an attacker to cause Denial of Service Segmentation fault and Memory Corruption or possibly have unspecified other impact. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might...

ImageMagick 7.0.7.22 DoS Vulnerability - Mac OS X

ImageMagick is prone to a Denial of Service vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

CVE-2017-18188

OpenRC opentmpfiles through 0.1.3, when the fs.protectedhardlinks sysctl is turned off, allows local users to obtain ownership of arbitrary files by creating a hard link inside a directory on which "chown -R" will be run...

unrar/unrar_fuzzer: Use-of-uninitialized-value in Archive::GetComment

Project: https://github.com/aawc/unrar.git Detailed report: https://oss-fuzz.com/testcase?key=4646937367150592 Project: unrar Fuzzer: libFuzzerunrarfuzzer Fuzz target binary: unrarfuzzer Job Type: libfuzzermsanunrar Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

Octopus Deploy XSS Vulnerability

Cross-site scripting XSS vulnerability in the All Variables tab in Octopus Deploy allows remote attackers to inject arbitrary web script or HTML via the Variable Set Name parameter. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and...

Arbitrary code execution via a crafted email address

More info at https://github.com/zetacomponents/Mail/issues/58...

WordPress WP-Contact-Widgets 1.4.1 Cross Site Scripting Vulnerability

WordPress WP-Contact-Widgets plugin version 1.4.1 suffers from a stored cross site scripting vulnerability. Exploit Title: Stored XSS on wp-contact-widgets 1.4.1 wordpress plugin Exploit Author: Boumediene KADDOUR Publisher: R&D Unit Algerie Telecom Version: 1.4.1 Application website:...

Redis <= 4.0.2 Buffer Overflow Vulnerability

Redis is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:redis:redis"; ifdescription...

fuchsia_fidl: Crash in fidl::Lexer::Peek

Detailed report: https://oss-fuzz.com/testcase?key=6200421431377920 Project: fuchsiafidl Fuzzer: libFuzzerfuchsiafidlfuzzer Fuzz target binary: fuchsiafidlfuzzer Job Type: libfuzzerasanfuchsiafidluntrusted Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x614000010000 Crash State:...