Fedora 26 : php-horde-nag (2017-041ee90a8b)

nag 4.2.17 - jan SECURITY: Fix unauthorized access to task exports. - jan Fix regression when exporting single tags to iCalendar CATEGORIES. - jan Officially support PHP 7. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

[SECURITY] Fedora 25 Update: php-horde-nag-4.2.17-1.fc25

Nag is a web-based application built upon the Horde Application Framework which provides a simple, clean interface for managing online task lists i.e., todo lists. It also includes strong integration with the other Horde applications and allows users to share task lists or enable light-weight...

[SECURITY] Fedora 27 Update: php-horde-nag-4.2.17-1.fc27

Nag is a web-based application built upon the Horde Application Framework which provides a simple, clean interface for managing online task lists i.e., todo lists. It also includes strong integration with the other Horde applications and allows users to share task lists or enable light-weight...

[SECURITY] Fedora 26 Update: php-horde-nag-4.2.17-1.fc26

Nag is a web-based application built upon the Horde Application Framework which provides a simple, clean interface for managing online task lists i.e., todo lists. It also includes strong integration with the other Horde applications and allows users to share task lists or enable light-weight...

CVE-2017-14717

In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Description parameter...

The vulnerability of the Task Manager service of the AmosConnect email delivery management system allows a perpetrator to execute arbitrary commands on the operating system’s host platform.

The vulnerability of the AmosConnect email delivery system management service is related to the use of immutable, pre-installed system accounts. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain full administrative privileges and execute arbitrary commands on the...

EulerOS 2.0 SP2 : qemu-kvm (EulerOS-SA-2017-1224)

According to the versions of the qemu-kvm packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds memory access issue was found in Quick Emulator QEMU in the VNC display driver. This flaw could occur while refreshing the VN...

Oilrig / Cleaver Malicious Scheduled Task Detection

This script tries to detect several indicators for malicious tools used by Iranian APT group SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Arbitrary File Deletion Vulnerability in MetInfo Version 5.3.18 Backend

MetInfo is a Content Management System CMS developed using PHP and Mysql. An arbitrary file deletion vulnerability exists in a function in MetInfo version 5.3.18 physical.php. An attacker can exploit this vulnerability to delete task files...

The vulnerability in the task management of the 1x Android operating system from the CAF repository allows a perpetrator to compromise privacy, integrity, and accessibility.

The vulnerability in the task management of the 1x Android operating system arises from reading beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to compromise privacy, integrity, and accessibility...

The vulnerability in the task management of the 1x Android operating system from the CAF repository allows a attacker to trigger a buffer overflow.

Vulnerability of task management in the 1x Android operating system from the CAF repository. Exploiting this vulnerability can allow a malicious actor to trigger buffer overflows during task processing...

[SECURITY] Fedora 25 Update: php-horde-nag-4.2.15-1.fc25

Nag is a web-based application built upon the Horde Application Framework which provides a simple, clean interface for managing online task lists i.e., todo lists. It also includes strong integration with the other Horde applications and allows users to share task lists or enable light-weight...

[SECURITY] Fedora 26 Update: php-horde-nag-4.2.15-1.fc26

Nag is a web-based application built upon the Horde Application Framework which provides a simple, clean interface for managing online task lists i.e., todo lists. It also includes strong integration with the other Horde applications and allows users to share task lists or enable light-weight...

[SECURITY] Fedora 26 Update: rt-4.4.1-9.fc26

RT is an enterprise-grade ticketing system which enables a group of people to intelligently and efficiently manage tasks, issues, and requests submitt ed by a community of users...

Qemu: i386: leakage of stack memory to guest in kvmvapic.c

An information-exposure flaw was found in Quick Emulator QEMU in Task Priority Register TPR optimizations for 32-bit Windows guests. The flaw could occur while accessing TPR. A privileged user inside a guest could use this issue to read portions of the host memory...

Qemu: i386: leakage of stack memory to guest in kvmvapic.c

An information-exposure flaw was found in Quick Emulator QEMU in Task Priority Register TPR optimizations for 32-bit Windows guests. The flaw could occur while accessing TPR. A privileged user inside a guest could use this issue to read portions of the host memory...

UPDATE: OWASP Dependency-Check 2.1.0!

PenTestIT RSS Feed My first post about this open source OWASP project was about an older version. This post discusses the changes made to the open source software composition analysis utility in the latest release yesterday. This is the OWASP Dependency-Check 2.1.0! What I like about this release...

Multiple Vulnerabilities in WordPress Task Manager Pro

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Task Manager Pro is a WordPress task management plugin. Task Manager Pro is a WordPress task management plugin...

CVE-2017-3222

Hard-coded credentials in AmosConnect 8 allow remote attackers to gain full administrative privileges, including the ability to execute commands on the Microsoft Windows host platform with SYSTEM privileges by abusing AmosConnect Task Manager...

Hardcoded credentials

Hard-coded credentials in AmosConnect 8 allow remote attackers to gain full administrative privileges, including the ability to execute commands on the Microsoft Windows host platform with SYSTEM privileges by abusing AmosConnect Task Manager...