This Metasploit module exploits an arbitrary file upload in the WordPress InBoundio Marketing plugin version 2.0. It allows you to upload arbitrary php files and get remote code execution. This Metasploit module has been tested successfully on WordPress InBoundio Marketing 2.0.3 with WordPress 4.1.3 on Ubuntu 14.04 Server.
Monthly Archives: April 2015
WooThemes WooFramework 4.5.1 Cross Site Scripting
WooThemes WooFramework version 4.5.1 suffers from a cross site scripting vulnerability.
OpenFire XMPP 3.9.3 Certificate Handling
OpenFire XMPP versions 3.9.3 and below incorrectly accepts self-signed certificates potentially allowing for spoofing attacks.
Xoops CMS 2.5.7.1 Cross Site Scripting
Xoops CMS version 2.5.7.1 suffers from a persistent cross site scripting vulnerability.
Ubuntu Security Notice USN-2571-1
Ubuntu Security Notice 2571-1 – Robert Kaiser discovered a use-after-free during plugin initialization in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking Firefox.
FlatPress 1.0 Cross Site Scripting
FlatPress version 1.0 suffers from a persistent cross site scripting vulnerability.
RHBA-2015:0887-1: Satellite 5.7 bug fix update
RHN Satellite and Proxy: Updated spacewalk-backend, spacewalk-java, spacewalk-web, and satellite-schema
packages that fix several bugs are now available for Red Hat Satellite 5.7.
USN-2571-1: Firefox vulnerability
Ubuntu Security Notice USN-2571-1
24th April, 2015
firefox vulnerability
A security issue affects these releases of Ubuntu and its
derivatives:
- Ubuntu (vivid)
- Ubuntu 14.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary
Firefox could be made to crash or run programs as your login if it
opened a malicious website.
Software description
- firefox
– Mozilla Open Source web browser
Details
Robert Kaiser discovered a use-after-free during plugin initialization in
some circumstances. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit this to cause a
denial of service via application crash or execute arbitrary code with the
privileges of the user invoking Firefox. (CVE-2015-2706)
Update instructions
The problem can be corrected by updating your system to the following
package version:
- Ubuntu (vivid):
-
firefox
37.0.2+build1-0ubuntu0.15.04.1
- Ubuntu 14.10:
-
firefox
37.0.2+build1-0ubuntu0.14.10.1
- Ubuntu 14.04 LTS:
-
firefox
37.0.2+build1-0ubuntu0.14.04.1
- Ubuntu 12.04 LTS:
-
firefox
37.0.2+build1-0ubuntu0.12.04.1
To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.
After a standard system update you need to restart Firefox to make
all the necessary changes.
References
CVE-2015-3414 (sqlite)
SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via a crafted COLLATE clause, as demonstrated by COLLATE”””””””” at the end of a SELECT statement.
CVE-2015-3415 (sqlite)
The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement comparison operators, which allows context-dependent attackers to cause a denial of service (invalid free operation) or possibly have unspecified other impact via a crafted CHECK clause, as demonstrated by CHECK(0&O>O) in a CREATE TABLE statement.