Chrome suffers from a heap use-after-free vulnerability in safe_browsing::ThreatDetails::OnReceivedThreatDOMDetails. Versions affected include Google Chrome 96.0.4664.110 (Official Build) (64-bit) and Chromium 99.0.4807.0 (Developer Build) (64-bit).
abc96b3ccb6e22768b4210d82c4a8f2e4acb93ed93b406ea11be905b7b11fd03Joomla! versions 4.1.0 and below suffer from path traversal and file overwrite vulnerabilities due to misplaced trust in the handling of compressed archives.
3659bb2a193b54ec58750cfb109d9f00cfd739f7828d6a6d4fdff0e0ff2be911Ubuntu Security Notice 5351-2 - USN-5351-1 fixed a vulnerability in Paramiko. This update provides the corresponding update for Ubuntu 16.04 ESM. Jan Schejbal discovered that Paramiko incorrectly handled permissions when writing private key files. A local attacker could possibly use this issue to gain access to private keys.
5ab34dbf043c68f221010b005e23a075b6b2f624176ef12aa62f28ed3b73a8d1Ubuntu Security Notice 5350-1 - It was discovered that Chromium incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code.
7c7a4c167fe50a7b42bf84126d0d09be27e52d593b977b8cbe1af81c3d7b11a1WordPress Easy Cookie Policy plugin version 1.6.2 suffers from persistent cross site scripting vulnerability due to a broken access control.
0f40c07bb7f4bcf7b5bf25dff22799cb9ddc37674fc191e7558caaaf8e60a2dfWordPress CleanTalk plugin versions 5.173 and below suffer from multiple cross site scripting vulnerabilities.
4136278cd0e53a4bc876e08a79e68f309bd0ea7712eb64d14cfca18b9f7d6147Kramer VIAware version 2.5.0719.1034 suffers from a remote code execution vulnerability.
71fd9ed67f1c3636b46e0f35d6d135b218a93103bbc2f9e74dd9d79b2c4d145cPostgreSQL versions 9.3 through 11.7 remote code execution exploit.
e597a53141013a6e5aaeefcbb4e28ade73077b7f1f7b8c7994ae9d9031e1d2ffMedical Hub Directory Site version 1.0 suffers from a remote SQL injection vulnerability.
ee8c310121323386739682f3a0a47f7c5876d9f946a2888843f501157e2fb296Medical Hub Directory Site version 1.0 suffers from a remote shell upload vulnerability.
200e45a8e60bd48fae8a91e1a1286756e616a4d42f06d24c5eb5531ecfa01d70Medical Hub Directory Site version 1.0 suffers from a persistent cross site scripting vulnerability.
6dbf01850ff08bd1a2757bdd19e72d23b225be15ae7664524a980f5ce48138e4Medical Hub Directory Site version 1.0 suffers from a local file inclusion vulnerability.
cd4822cdfbe0799d9da4d14ad9b06e2c18c4f3f1ea3b9ffdc72ec61ba4ca5ad0CSZ CMS version 1.2.9 suffers from multiple remote blind SQL injection vulnerabilities.
7431b5b000bf66ac213ad90301229b8ea2b82227a6d242c3733700f2c7f0470dWordPress Video-Synchro-PDF plugin version 1.7.4 suffers from a local file inclusion vulnerability.
f94520cb3421369e072051761bcdb9d992081457e9af1fbf068b1e7431481880WordPress Cab-Fare-Calculator plugin version 1.0.3 suffers from a local file inclusion vulnerability.
86ee0c35b5409a672125451f0cd0f8722c0e3f49332d9a986e3674880b8c4093Atom CMS version 1.0 suffers from a remote shell upload vulnerability.
a1ff9987b6bdc85d32bdf744311ddc50def1d3ba515fb3bb6f39d1a90ab9b9ffWordPress Donorbox-Donation-Form plugin version 7.1.6 suffers from a persistent cross site scripting vulnerability.
2fc87137716fc7ebe54874b9d582f16eba4586f4c195a3b359f3691bcccefa04WordPress Clipr plugin version 1.2.3 suffers from a cross site scripting vulnerability.
6c8cc47abd770ee7d797e8c43b0287851023dee1813ddeb31d3ee6d614ef4a8aWordPress Curtain plugin version 1.0.2 suffers from a cross site request forgery vulnerability.
f394a443240b0a394250f659b08eabdf25ac27620ce8316b56cf87a0d070fafbRed Hat Security Advisory 2022-1102-01 - The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Issues addressed include an HTTP request smuggling vulnerability.
ec9d7ac58797502651fc13c49accea5e13fa6a6c2e8536287634385c77d74f96Red Hat Security Advisory 2022-1106-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.
c85caca64ae06fc933b3f805d873eb51328524cb018dac24d1b41b89dffd77d1Red Hat Security Advisory 2022-1107-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.
548b5969a215b63408fc1ce2bb76de0939dc126576a8bb0a74acf9244630ce2bRed Hat Security Advisory 2022-1112-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength general-purpose cryptography library.
4facf3061c3a84ecb0734a25ebed56e7815402d157677e7fa4f26f506cb210edRed Hat Security Advisory 2022-1104-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include privilege escalation and use-after-free vulnerabilities.
3a2b18dd4f7e48dfdae427f12981505f47927eedf6ee8f7a30597c2ad433c204Red Hat Security Advisory 2022-1110-01 - Red Hat Decision Manager is an open source decision management platform that combines business rules management, complex event processing, Decision Model & Notation execution, and Business Optimizer for solving planning problems. It automates business decisions and makes that logic available to the entire business. This release of Red Hat Decision Manager 7.12.1 serves as an update to Red Hat Decision Manager 7.12.0, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include code execution, denial of service, information leakage, and traversal vulnerabilities.
19ef6b86140614a8bac6c5eef89b228a342fe2890da0cd298556ccd2514bdd7f
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed