Ubuntu Security Notice 2496-1 – Michal Zalewski discovered that the setup_group function in libbfd in GNU binutils did not properly check group headers in ELF files. An attacker could use this to craft input that could cause a denial of service (application crash) or possibly execute arbitrary code. Hanno Boeck discovered that the _bfd_XXi_swap_aouthdr_in function in libbfd in GNU binutils allowed out-of-bounds writes. An attacker could use this to craft input that could cause a denial of service (application crash) or possibly execute arbitrary code. Various other issues were also addressed.

u5CMS version 3.9.3 suffers from multiple remote SQL injection vulnerabilities.

u5CMS version 3.9.3 suffers from a remote arbitrary file deletion vulnerability.

It was possible to craft a malformed chunk as part of a chunked request that caused Tomcat to read part of the request body as a new request. Versions affected include Apache Tomcat 8.0.0-RC1 to 8.0.8, 7.0.0 to 7.0.54, and 6.0.0 to 6.0.41.

Wireless File Transfer Pro version 1.0.1 suffers from multiple cross site request forgery vulnerabilities.

Radexscript CMS version 2.2.0 suffers from a remote SQL injection vulnerability.

u5CMS version 3.9.3 suffers from multiple open redirect vulnerabilities.

WordPress Contact Form DB plugin version 2.8.26 suffers from a cross site scripting vulnerability.

u5CMS version 3.9.3 suffers from a local file inclusion vulnerability.

WordPress Cart66 Lite plugin version 1.5.4 suffers from a cross site scripting vulnerability.