Red Hat Security Advisory 2022-4668-01 - Red Hat OpenShift Virtualization release 4.10.1 is now available with updates to packages and images that fix several bugs and add enhancements.
tags | exploit, vulnerability, xss, csrf Download | Favorite | View Red Hat Security Advisory 2022-4668-01 Posted Authored by Red Hat | Site PHPIPAM version 1.4.4 suffers from cross site request forgery and cross site scripting vulnerabilities. tags | exploit, xss Download | Favorite | View PHPIPAM 1.4.4 Cross Site Request Forgery / Cross Site Scripting Posted Authored by Rodolfo Tavares | Site LiquidFiles version 3.4.15 suffers from a cross site scripting vulnerability. tags | exploit, vulnerability, sql injection Download | Favorite | View LiquidFiles 3.4.15 Cross Site Scripting Posted Authored by Rodolfo Tavares | Site
The SAP application server ABAP and ABAP Platform are susceptible to code injection, SQL injection, and missing authorization vulnerabilities. tags | exploit systems | linux Download | Favorite | View SAP Application Server ABAP / ABAP Platform Code Injection / SQL Injection / Missing Authorization Posted Authored by Fabian Hagg, Alexander Meier | Site Linux usbnet code tells minidrivers to unbind while netdev is still up, causing use-after-free conditions. tags | advisory, remote, sql injection systems | linux, ubuntu Download | Favorite | View Linux USB Use-After-Free Posted Authored by Jann Horn, Google Security Research A remote attacker could possibly use this issue to perform an SQL injection attack and alter the database. It was discovered that OpenLDAP incorrectly handled certain SQL statements within LDAP queries in the experimental back-sql backend.
This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Ubuntu Security Notice 5424-2 - USN-5424-1 fixed a vulnerability in OpenLDAP. tags | exploit, remote, sql injection Download | Favorite | View Ubuntu Security Notice USN-5424-2 Posted Authored by Ubuntu | Site OpenCart Newsletter module version 3.0.2.0 suffers from a remote blind SQL injection vulnerability. tags | exploit, remote, vulnerability, sql injection Download | Favorite | View OpenCart Newsletter 3.0.2.0 SQL Injection Posted Authored by Saud Alenazi Aliīlockchain AltExchanger version 1.2.1 suffers from multiple remote SQL injection vulnerabilities. tags | exploit, remote, sql injection Download | Favorite | View Blockchain AltExchanger 1.2.1 SQL Injection Posted Authored by Mohamed N. Aliīlockchain FiatExchanger version 2.2.1 suffers from a remote blind SQL injection vulnerability. tags | exploit, remote, code execution Download | Favorite | View Blockchain FiatExchanger 2.2.1 SQL Injection Posted Authored by Mohamed N.
M1k1o's Blog versions 1.3 and below suffer from an authenticated remote code execution vulnerability. tags | exploit, remote Download | Favorite | View m1k1o's Blog 1.3 Remote Code Execution Posted Authored by Malte V ITop versions prior to 2.7.5 authenticated remote command execution exploit. tags | advisory, denial of service, arbitrary systems | linux, ubuntu Download | Favorite | View iTop Remote Command Execution Posted Authored by Markus Krell, Alexandre Zanni If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a denial of service, or possible execute arbitrary code.
Zhengxiong Luo discovered that libpng incorrectly handled memory when parsing certain PNG files. Ubuntu Security Notice 5432-1 - It was discovered that libpng incorrectly handled memory when parsing certain PNG files. Ubuntu Security Notice USN-5432-1 Posted Authored by Ubuntu | Site