Security fix for the ALT Linux 8 package sudo version 1:1.8.28-alt1

1:1.8.28-alt1 built Oct. 31, 2019 Ivan Zakharyaschev in task 240030 Oct. 15, 2019 Evgeny Sinelnikov - Update to autumn security release closes: 37334 - Code execution with euid==0 in rare box configurations fixes: CVE-2019-14287 - Fix post script for sudowheel control in case of upgrade in not...

CVE-2019-10474

A missing permission check in Jenkins Global Post Script Plugin in allowed users with Overall/Read access to list the scripts available to the plugin stored on the Jenkins master file system...

CVE-2019-10474

A missing permission check in Jenkins Global Post Script Plugin in allowed users with Overall/Read access to list the scripts available to the plugin stored on the Jenkins master file system...

Design/Logic Flaw

A missing permission check in Jenkins Global Post Script Plugin in allowed users with Overall/Read access to list the scripts available to the plugin stored on the Jenkins master file system...

CVE-2019-10474

A missing permission check in Jenkins Global Post Script Plugin in allowed users with Overall/Read access to list the scripts available to the plugin stored on the Jenkins master file system...

CVE-2019-10474

The CVE-2019-10474 entry concerns Jenkins Global Post Script Plugin. A missing permission check allows users with Overall/Read access to list the scripts stored on the Jenkins master file system, exposing file paths (e.g., $JENKINS_HOME/global-post-script) and related configuration data. Multiple...

PT-2019-11868 · Jenkins · Jenkins Global Post Script Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Global Post Script Plugin affected versions not specified Description: The issue is related to a missing permission check in the Jenkins Global Post Script Plugin. This allows users with Overall/Read access to list the scripts availab...

Fedora 27 : community-mysql (2017-9e28c78e07)

A quarter year regular dose of fixed CVE's. https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-20.html . rhbz1497694 : Fix owner and perms on log file in post script CVE fixes: rhbz1503701 CVE-2017-10155 CVE-2017-10227 CVE-2017-10268 CVE-2017-10276 CVE-2017-10279 CVE-2017-10283 CVE-2017-102...

WordPress < 4.2.4 Multiple Vulnerabilities

Binary data 9031.prm...

NetCat.ru Netcat Information Disclosure Vulnerability

NetCat.ru Netcat is a web content management system CMS from the Russian company NetCat.ru. A security vulnerability exists in NetCat.ru Netcat 5.01 and earlier versions, which stems from the netshop/post.php script failing to adequately filter the 'redirecturl' parameter. A remote attacker can...

LedNews 0.7 Post Script Code Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7920/info It has been reported that LedNews does not properly filter input from news posts. Because of this, it may be possible for an attacker to steal authentication cookies or perform other nefarious activities. script...

Mandriva Linux Security Advisory : cups (MDVSA-2013:034)

Updated cups packages fixes bugs and security vulnerabilities : During the process of CUPS socket activation code refactoring in favour of systemd capability a security flaw was found in the way CUPS service honoured Listen localhost:631 cupsd.conf configuration option. The setting was recognized...

CVE-2011-5106

Cross-site scripting XSS vulnerability in edit-post.php in the Flexible Custom Post Type plugin before 0.1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter...

Debian Security Advisory DSA 981-1 (bmv)

The remote host is missing an update to bmv announced via advisory DSA 981-1. felinemalice discovered an integer overflow in BMV, a post script viewer for SVGAlib, that may lead to the execution of arbitrary code through specially crafted Postscript files. For the old stable distribution woody th...

DSA-981-1 bmv - integer overflow

Bulletin has no description...

DEBIAN-CVE-2005-2107

Multiple cross-site scripting XSS vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 p or 2 comment parameter...