PT-2020-14533 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version cwp-e17.0.9.8.923 Description: This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The flaw exists within the ajax php pecl.php...

Is X25519 Associative? Sometimes!

X25519 is a simple Elliptic Curve Diffie-Hellman ECDH function: it takes a scalar a fancy name for an integer1 and an elliptic curve point, and it multiplies the elliptic curve point by the scalar. Point additions and multiplications work modulo the order of the point, just like hours on a watch...

January 15, 2019—KB4480969 (Preview of Monthly Rollup)

January 15, 2019—KB4480969 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part KB4480963 released January 8, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...

UBUNTU-CVE-2019-10023

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpMod case...

DEBIAN-CVE-2018-19837

In LibSass prior to 3.5.5, Sass::Eval::operatorSass::BinaryExpression inside eval.cpp allows attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, because of certain incorrect parsing of '%' as a modulo operator in parser.cpp...

UBUNTU-CVE-2018-19837

In LibSass prior to 3.5.5, Sass::Eval::operatorSass::BinaryExpression inside eval.cpp allows attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, because of certain incorrect parsing of '%' as a modulo operator in parser.cpp...

CVE-2018-19837

CVE-2018-19837 affects LibSass prior to 3.5.5, where Sass::Eval::operator() in eval.cpp can trigger a denial-of-service via stack consumption from parsing '%' as modulo in parser.cpp. Affected versions include.LibSass vulnerability details are corroborated by multiple advisories (e.g., openSUSE/l...

modulo-architects.be XSS vulnerability

Vulnerable URL: http://www.modulo-architects.be/categorie.php?cat=1;...

openSUSE Security Update : libnettle (openSUSE-2016-212)

This update for libnettle fixes the following security issues : - CVE-2015-8803: Fixed miscomputation bugs in secp-256r1 modulo functions. bsc964845 - CVE-2015-8804: Fixed carry folding bug in x8664 ecc384modp. bsc964847 - CVE-2015-8805: Fixed miscomputation bugs in secp-256r1 modulo functions...

SUSE SLED12 / SLES12 Security Update : libnettle (SUSE-SU-2016:0455-1)

This update for libnettle fixes the following security issues : - CVE-2015-8803: Fixed miscomputation bugs in secp-256r1 modulo functions. bsc964845 - CVE-2015-8804: Fixed carry folding bug in x8664 ecc384modp. bsc964847 - CVE-2015-8805: Fixed miscomputation bugs in secp-256r1 modulo functions...

Oracle Linux 5 : xorg-x11-server (ELSA-2012-0303)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2012-0303 advisory. 1.1.1-48.90.0.1.el5 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.90 - cve-2011-4028.patch: File existence disclosure...

CVE-2008-5265

Directory traversal vulnerability in index.php in TNT Forum 0.9.4, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the modulo parameter...

CVE-2008-5265

Directory traversal vulnerability in index.php in TNT Forum 0.9.4, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the modulo parameter...

TNT Forum 0.9.4 Local File Inclusion Vulnerabilities

No description provided by source. ====================================================== TNT Forum 0.9.4 Local File Inclusion Vulnerabilities ====================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

phpnukesplat-lfi.txt

!/usr/bin/perl Modulo Splatt Forum v4.0 RC1bbcoderef.php nameLocal File Include Exploit D.Script: http://sourceforge.net/projects/splattforum/ V.Code $modulename = $name; -------- Line : 17 include"modules/".$modulename."/functions.php"; -------- Line : 19 Dork: "Splatt Forum" Discovered & Coded ...