Ubuntu Security Notice 6303-2 - USN-6303-1 fixed a vulnerability in ClamAV. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 18.04 LTS. It was discovered that ClamAV incorrectly handled parsing HFS+ files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service.
c3284d7770f7209efaf30ce6eaf6add3f1606468bbce1f7c9bef908d1849aeedWordPress Charitable Donations Plugin and Fundraising Platform versions 1.7.0.12 and below suffer from a privilege escalation vulnerability.
607564406b8fb564dbe7f1171bf4ed68f65662b5085d91ae58cbbd8c0bd802d7Red Hat Security Advisory 2023-4699-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.
ed900bc3b5dce8e8ca11bf1ac5d625a914af9e5ad5740422210014285d323b7fTSPlus version 16.0.2.14 suffers from an insecure permissions vulnerability.
0bc7ecda382e75a1cb2b54690a396532c49dd66393a3842a9283c8bfaf166236Red Hat Security Advisory 2023-4698-01 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include an out of bounds write vulnerability.
c7e8b7b1568c0885e75570756d98acec9bb4b7e5575a558abca7b50bcb0ffe38Red Hat Security Advisory 2023-4696-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include information leakage, privilege escalation, and use-after-free vulnerabilities.
03158c564bbdd7420c2bea7beaab0e717d09f8d464991dca0cd20975fb0b997bTSPlus version 16.0.0.0 suffers from an insecure permissions vulnerability.
06f5da798bc1734c99952dd5665f7fc882b0e8d1c219d8e327e08d2824444cbbTSPlus version 16.0.0.0 suffers from an insecure credential storage vulnerability.
215f20ce0fd7976f257c178193251dfef5d9ab1191d503a59cbdd146d251811dRed Hat Security Advisory 2023-4697-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include an out of bounds write vulnerability.
48d14c1f4371dc4392148ba2252d1cf81bc9304f2f6c57fab485382c9ad22618Red Hat Security Advisory 2023-4694-01 - Red Hat OpenStack Platform (RHOSP) 16.2.z (Train) director Operator containers are now available. Issues addressed include a code execution vulnerability.
df5b6bf27415d0f0788ad8872c30f911b13af6a0a83ca9e18061e9c719c9225bInosoft VisiWin 7 version 2022-2.1 suffers from a privilege escalation vulnerability.
0479f1727b121f5eb3c1f2142cc6237d6e3f59bd64f90af21aeb09ff4fe01a04Red Hat Security Advisory 2023-4693-01 - Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Issues addressed include a denial of service vulnerability.
ed6ea39f1f98f0a019fef7a38b4d9425ef09b83875e39c674e4d9fb6709df1d8Dolibarr version 17.0.1 suffers from a persistent cross site scripting vulnerability.
03d90d763595e2fde18d9c8342024adf0cffb037d0c3aa3256b6204747312b19Red Hat Security Advisory 2023-4692-01 - Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Issues addressed include cross site request forgery, denial of service, and remote shell upload vulnerabilities.
d9122cb72ed95b3238794cee887418f97639e1010bbe6af474fff461da100916PHPJabbers Business Directory Script version 3.2 suffers from cross site request forgery and cross site scripting vulnerabilities.
14b9a576fa1799bebb037dbe5fdce9862e9902c2bc8395cc3cdc7ce570dd0d5cFOG Forum version 0.8 suffers from a cross site scripting vulnerability.
f12461b1f0dfe9cb54ce514fdf889e35455978759afdac7dff05971d9ce4b7beFoccusWeb CMS version 0.1 suffers from a cross site scripting vulnerability.
4ec7d01c602a400932502d010a16a7b1bacb2f323fbd9f44c16aef7baacd0231Fluent CMS version 1.0.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
fb72677e90b806060bb7670110f7e4feb1bb9815a6ae0f59e07f69285a2e6d76Color Prediction Game version 1.0 suffers from a remote SQL injection vulnerability.
4fb3f9836e353951efef60d34f720b3ba2f7519dfb4e7ede6a3067554ec88d9aGlobal Multi School Management System Express version 1.0 suffers from a remote SQL injection vulnerability.
a22628394bb46899d58de439e665e017c4415d37366a2c08f5aab4d9b82d3e4eOVOO Movie Portal CMS version 3.3.3 suffers from a remote SQL injection vulnerability.
0a7615bcec0c377aa4a3da9402c37715eebc4d5bc3a169a3a0f51f05f3eefb7dTaskhub CRM Tool version 2.8.6 suffers from a remote SQL injection vulnerability.
224f98426202b24a6ca1acc9b9414e8bee3e2ab59c8191c0ab2a4304cae2c3adFlightPath LMS version 4.8.2 suffers from an insecure direct object reference vulnerability.
3c5f6aa0e79c9510e78b7ef9cdbf88df097069d2ddd22ac88c7a06956299a3d4FleetCart Laravel Ecommerce System version 1.1.2 suffers from an ignored default credential vulnerability.
68a6c17d047c26ef9fa83b8414516311214d6cb3d30aea8512036eb95fd0c4f9FixBook Repair Shop Management Tool version 2.2 suffers from an information leakage vulnerability.
cca9cd6b4f15f93c2ce4de83d177d9b79dd893c5d9b8597cc907d88aab5d43ef
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed