CVE-2022-42323

CVE-2022-42323 concerns Xenstore in the Xen hypervisor. The issue arises after the XSA-322 fix: any Xenstore node owned by a removed domain is reassigned to Dom0, enabling two cooperating guests to create an unbounded number of Xenstore nodes. This can exhaust Xenstore quota and lead to denial of...

WordPress 5.3.x < 5.3.14 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A stored Cross-Site Scripting XSS via wp-mail.php post by email. - An open redirect in wpnonceays. - Sender's email address is exposed in wp-mail.php. - A Cross-Site...

RHEL 9 : java-11-openjdk (RHSA-2022:7013)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7013 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

AlmaLinux 9 : nodejs and nodejs-nodemon (ALSA-2022:6595)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:6595 advisory. - This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollut...

Exploit for OS Command Injection in Telesquare Sdt-Cs3B1_Firmware

This is a PoC exploit for CVE-2021-46422, a wireless router OS c...

OSV-2022-1054 Heap-buffer-overflow in AffixMgr::cpdpat_check

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52430 Crash type: Heap-buffer-overflow READ 1 Crash state: AffixMgr::cpdpatcheck AffixMgr::compoundcheck SuggestMgr::checkword...

CVE-2022-32149 vulnerabilities

Vulnerabilities for packages: k3d, php-fpmexporter, dynamic-localpv-provisioner-fips, dynamic-localpv-provisioner, gitleaks, terraform-provider-sendgrid, kubeflow, vt-cli, kubeflow-fips, hey, kube-state-metrics, terraform-provider-sendgrid-fips, grpcurl...

curl: CVE-2022-42916: HSTS bypass via IDN

Summary: HSTS checks are bypassed if any character in the IDN convertNameprep to a '.' for example"。"UTF-8:E38082. I think there are other characters that become ".UTF-8:2E" as a result of converting with IDN. '。UTF-8:E38082' is converted to '.' so it doesn't matter if it's last or not. So the sa...

create-health.com.au Cross Site Scripting vulnerability OBB-2980469

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

GSD-2022-1006379 netfilter: nf_tables: clean up hook list when offload flags check fails

netfilter: nftables: clean up hook list when offload flags check fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.68 by commit...

Metasploit Weekly Wrap-Up

Veritas Backup Exec Agent RCE This module kindly provided by c0rs targets the Veritas Backup Exec Agent in order to gain RCE as the system/root user. The exploit itself is actually a chain of 3 separate CVEs CVE-2021-27876, CVE-2021-27877 and CVE-2021-27878 which only makes it more impressive...

ventilateur-plafond.net Cross Site Scripting vulnerability OBB-2966102

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Dutchoders transfer.sh contains an XSS vulnerability via malicious file upload

dutchcoders Transfer.sh versions 1.4.0 and prior are vulnerable to Cross Site Scripting XSS via a malicious document uploaded in transfer.sh. There is a fix commit merged into main for this issue, but an updated version has not yet been released...

Etaplighting Etap Safety Manager Cross-Site Scripting Vulnerability

ETAP Safety Manager is a management system where users observe, configure and maintain emergency lighting. Etaplighting Etap Safety Manager version 1.0.0.32 is vulnerable to a cross-site scripting vulnerability that stems from action parameters not being properly cleared before being returned to...

semba.keizai.biz Cross Site Scripting vulnerability OBB-2965164

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2019-20291

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none...

seksshopistanbul.net Cross Site Scripting vulnerability OBB-2956728

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ArtGobblers.sol#L396-L402 : The function "gobblerPrice()" does not check whether the mint has started or not

Lines of code Vulnerability details Impact This could revert due to undeflow. Proof of Concept While calculating the gobblerPrice, the function does not check whether the mintStart time is started or not. If it is future time, calling this could revert. This could affect the mintFromGoo function ...

Overflow in amount calculation can lead to users not being able to withdraw their funds

Lines of code Vulnerability details Impact The amounts of token are saved in uint112 variables. The baseVestedAmount, which calculates the amount of token that was vested for the user given a timestamp, contains the following line that calculates the relative amount using the time passed from the...

hartgersradiateuren.nl Cross Site Scripting vulnerability OBB-2941200

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...