βΌ CVE-2022-39356 βΌ
π Read
via "National Vulnerability Database".
Discourse is a platform for community discussion. Users who receive an invitation link that is not scoped to a single email address can enter any non-admin user's email and gain access to their account when accepting the invitation. All users should upgrade to the latest version. A workaround is temporarily disabling invitations with `SiteSetting.max_invites_per_day = 0` or scope them to individual email addresses.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39353 βΌ
π Read
via "National Vulnerability Database".
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the `childNodes` collection of the `Document`, without reporting any error or throwing. This breaks the assumption that there is only a single root node in the tree, which led to issuance of CVE-2022-39299 as it is a potential issue for dependents. Update to @xmldom/xmldom@~0.7.7, @xmldom/xmldom@~0.8.4 (dist-tag latest) or @xmldom/xmldom@>=0.9.0-beta.4 (dist-tag next). As a workaround, please one of the following approaches depending on your use case: instead of searching for elements in the whole DOM, only search in the `documentElement`or reject a document with a document that has more then 1 `childNode`.π Read
via "National Vulnerability Database".
βΌ CVE-2022-3575 βΌ
π Read
via "National Vulnerability Database".
Frauscher Sensortechnik GmbH FDS102 for FAdC R2 and FAdCi R2 v2.8.0 to v2.9.1 are vulnerable to malicious code upload without authentication by using the configuration upload function. This could lead to a complete compromise of the FDS102 device.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39241 βΌ
π Read
via "National Vulnerability Database".
Discourse is a platform for community discussion. A malicious admin could use this vulnerability to perform port enumeration on the local host or other hosts on the internal network, as well as against hosts on the Internet. Latest `stable`, `beta`, and `test-passed` versions are now patched. As a workaround, self-hosters can use `DISCOURSE_BLOCKED_IP_BLOCKS` env var (which overrides `blocked_ip_blocks` setting) to stop webhooks from accessing private IPs.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41551 βΌ
π Read
via "National Vulnerability Database".
Garage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /garage/editorder.php.π Read
via "National Vulnerability Database".
π1
βΌ CVE-2022-39378 βΌ
π Read
via "National Vulnerability Database".
Discourse is a platform for community discussion. Under certain conditions, a user badge may have been awarded based on a user's activity in a topic with restricted access. Before this vulnerability was disclosed, the topic title of the topic associated with the user badge may be viewed by any user. If there are sensitive information in the topic title, it will therefore have been exposed. This issue is patched in the latest stable, beta and tests-passed versions of Discourse. There are currently no known workarounds available.π Read
via "National Vulnerability Database".
βΌ CVE-2022-43226 βΌ
π Read
via "National Vulnerability Database".
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/?page=appointments/view_appointment.π Read
via "National Vulnerability Database".
βΌ CVE-2021-45448 βΌ
π Read
via "National Vulnerability Database".
Pentaho Business Analytics Server versions before 9.2.0.2 and 8.3.0.25 using the Pentaho Analyzer plugin exposes a service endpoint for templates which allows a user-supplied path to access resources that are out of bounds. The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. By using special elements such as ".." and "/" separators, attackers can escape outside of the restricted location to access files or directories that are elsewhere on the system.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41716 βΌ
π Read
via "National Vulnerability Database".
Due to unsanitized NUL values, attackers may be able to maliciously set environment variables on Windows. In syscall.StartProcess and os/exec.Cmd, invalid environment variable values containing NUL values are not properly checked for. A malicious environment variable value can exploit this behavior to set a value for a different environment variable. For example, the environment variable string "A=B\x00C=D" sets the variables "A=B" and "C=D".π Read
via "National Vulnerability Database".
βΌ CVE-2020-36608 βΌ
π Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, has been found in Tribal Systems Zenario CMS. Affected by this issue is some unknown functionality of the file admin_organizer.js of the component Error Log Module. The manipulation leads to cross site scripting. The attack may be launched remotely. The name of the patch is dfd0afacb26c3682a847bea7b49ea440b63f3baa. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-212816.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24936 βΌ
π Read
via "National Vulnerability Database".
Out-of-Bounds error in GBL parser in Silicon Labs Gecko Bootloader version 4.0.1 and earlier allows attacker to overwrite flash Sign key and OTA decryption key via malicious bootloader upgrade.π Read
via "National Vulnerability Database".
βΌ CVE-2022-44576 βΌ
π Read
via "National Vulnerability Database".
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in AgentEasy Properties plugin <= 1.0.4 on WordPress.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24945 βΌ
π Read
via "National Vulnerability Database".
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.π Read
via "National Vulnerability Database".
βΌ CVE-2022-44586 βΌ
π Read
via "National Vulnerability Database".
Auth. (admin+) Stored Cross-Site Scripting (XSS) in Ayoub Media AM-HiLi plugin <= 1.0 on WordPress.π Read
via "National Vulnerability Database".
β The OpenSSL security update story β how can you tell what needs fixing? β
π Read
via "Naked Security".
How to Hack! Finding OpenSSL library files and accurately identifying their version numbers...π Read
via "Naked Security".
Naked Security
The OpenSSL security update story β how can you tell what needs fixing?
How to Hack! Finding OpenSSL library files and accurately identifying their version numbersβ¦
βΌ CVE-2022-44638 βΌ
π Read
via "National Vulnerability Database".
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46853 βΌ
π Read
via "National Vulnerability Database".
Alpine before 2.25 allows remote attackers to cause a denial of service (daemon crash) when LIST or LSUB is sent before STARTTLS.π Read
via "National Vulnerability Database".
ποΈ Gatsby patches SSRF, XSS bugs in Cloud Image CDN ποΈ
π Read
via "The Daily Swig".
Remediation compared to βchanging the tires on a car while in motionβπ Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
Gatsby patches SSRF, XSS bugs in Cloud Image CDN
Remediation compared to βchanging the tires on a car while in motionβ
βΌ CVE-2022-41435 βΌ
π Read
via "National Vulnerability Database".
OpenWRT LuCI version git-22.140.66206-02913be was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component /system/sshkeys.js. This vulnerability allows attackers to execute arbitrary web scripts or HTML via crafted public key comments.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32287 βΌ
π Read
via "National Vulnerability Database".
A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior versions. Note that PEAR files should never be installed into an UIMA installation from untrusted sources because PEAR archives are executable plugins that will be able to perform any actions with the same privileges as the host Java Virtual Machine.π Read
via "National Vulnerability Database".
βοΈ Hacker Charged With Extorting Online Psychotherapy Service βοΈ
π Read
via "Krebs on Security".
A 25-year-old Finnish man has been charged with extorting a once popular and now-bankrupt online psychotherapy company and its patients. Finnish authorities rarely name suspects in an investigation, but they were willing to make an exception for Julius "Zeekill" Kivimaki, a notorious hacker who -- at the tender age of 17 -- had been convicted of more than 50,000 cybercrimes, including data breaches, payment fraud, operating botnets, and calling in bomb threats.π Read
via "Krebs on Security".
Krebs on Security
Hacker Charged With Extorting Online Psychotherapy Service
A 25-year-old Finnish man has been charged with extorting a once popular and now-bankrupt online psychotherapy company and its patients. Finnish authorities rarely name suspects in an investigation, but they were willing to make an exception for Julius "Zeekill"β¦