CVE-2018-0507

The CVE-2018-0507 entry maps to an untrusted search path vulnerability in the installer components of FLET'S VIRUS CLEAR Easy Setup & Application Tool (ver.11 and earlier) and FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool (ver.11 and earlier). The root cause is insecure loading of Dynamic L...

Guide to create XML profiles to Zebra devices

Guide to create XML profiles to Zebra devices...

ovirt-hosted-engine-setup information disclosure vulnerability

ovirt-hosted-engine-setup is a web hosting engine installation tool. An information disclosure vulnerability exists in versions of ovirt-hosted-engine-setup prior to 2.2.7. An attacker can exploit this vulnerability to obtain the root user password in a log file...

CVE-2017-1000503

A race condition during Jenkins 2.81 through 2.94 inclusive; 2.89.1 startup could result in the wrong order of execution of commands during initialization. This could in rare cases result in failure to initialize the setup wizard on the first startup. This resulted in multiple security-related...

CVE-2017-1000503

A race condition during Jenkins 2.81 through 2.94 inclusive; 2.89.1 startup could result in the wrong order of execution of commands during initialization. This could in rare cases result in failure to initialize the setup wizard on the first startup. This resulted in multiple security-related...

CVE-2018-1000018

An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file...

Information disclosure

An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file...

CVE-2018-1000018

An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file...

CVE-2018-1000018

CVE-2018-1000018 affects ovirt-hosted-engine-setup prior to version 2.2.7, exposing the root password in the setup log file. The connected sources corroborate an information disclosure vulnerability in that component/version, with multiple feeds (NVD, CNVD, Red Hat context) noting root-password e...

Enumdb - MySQL and MSSQL Brute Force And Post Exploitation Tool To Search Through Databases And Extract Sensitive Information

Enumdb is brute force and post exploitation tool for MySQL and MSSQL databases. When provided a list of usernames and/or passwords, it will cycle through each looking for valid credentials. By default enumdb will use newly found, or given, credentials to search the database and find tables...

ALPINE-CVE-2018-5785

In OpenJPEG 2.3.0, there is an integer overflow caused by an out-of-bounds left shift in the opjj2ksetupencoder function openjp2/j2k.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

UBUNTU-CVE-2018-5785

In OpenJPEG 2.3.0, there is an integer overflow caused by an out-of-bounds left shift in the opjj2ksetupencoder function openjp2/j2k.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

K7 Antivirus Premium Elevation of Privilege Vulnerability

K7 Antivirus Premium is an antivirus program developed by K7. An elevation of privilege vulnerability exists in versions prior to K7 Antivirus Premium 15.1.0.53. A local user can gain privileges by sending a specific IOCTL after setting up memory in a specific way...

CVE-2017-16551

K7 Antivirus Premium before 15.1.0.53 allows local users to gain privileges by sending a specific IOCTL after setting the memory in a particular way...

CVE-2017-16557

K7 Antivirus Premium before 15.1.0.53 allows local users to gain privileges by sending a specific IOCTL after setting the memory in a particular way...

CVE-2017-16553

K7 Antivirus Premium before 15.1.0.53 allows local users to gain privileges by sending a specific IOCTL after setting the memory in a particular way...

ILIAS < 5.2.4 XSS Vulnerability

ILIAS eLearning is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

ILIAS CMS 5.2.3 Cross Site Scripting

---------------------------- Product & Service Introduction: ILIAS is a web base learning management system LMS, VLE. Features: Courses, SCORM 1.2 and 2004, mail, forum, chat, groups, podcast, file sharing, authoring, CMS, test, wiki, personal desktop, LOM, LDAP, role based access. Copy of the...

ILIAS 5.2.4 - Cross-Site Scripting

ILIAS 5.2.4 - Cross-Site Scripting Exploit Title: Cross Site Scripting in ILIAS CMS 5.2.3 Date: Apr 24, 2017 Software Link: https://www.ilias.de Exploit Author: Florian Kunushevci Contact: https://facebook.com/florianx00 CVE: CVE-2018-5688 Category: webapps 1. Description ILIAS before 5.2.4 has X...

Fedora 27 : fedpkg / rpkg (2017-9cac2b8b4a)

Update - Fixed chain-build - Remove hard dependency of bash-completion from fedpkg rpkg - Ignore TestModulesCli if openidc-client is unavailable cqi - Port mbs-build to rpkg mprahl - Add .vscode to .gitignore mprahl - Fix TestPatch.testrediff in order to run with old version of mock cqi - Allow t...