Original release date: April 23, 2015
WordPress 4.1.2 has been released to address multiple vulnerabilities, one of which could allow a site to be compromised by a remote attacker. WordPress 4.1.1 and earlier are affected by this vulnerability.
US-CERT recommends users and administrators review the WordPress Security Release and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
Magento eCommerce suffers from authentication bypass, local file inclusion, remote file inclusion, and remote SQL injection vulnerabilities.
Posted by Shahar Tal on Apr 23
RCE on the most popular eCommerce (/shopping cart) platform out there – we have been urging admins to patch for a while
now.
This one is as serious as it gets, auth bypass + SQLi + RFI converted to LFI. Props to our own Netanel Rubin for the
top research.
Check Point was awarded with a $20k USD bounty for this report, which we have decided to donate to charity.
Check out the complete technical analysis at…
Open redirect vulnerability in Cisco FireSIGHT System Software 5.3.1.1, 5.3.1.2, and 6.0.0 in FireSIGHT Management Center allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted HTTP header, aka Bug IDs CSCut06060, CSCut06056, and CSCus98966.
Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System Software 5.3.1.1 and 6.0.0 in FireSIGHT Management Center allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCus85425.
From: Apple Product Security
Reply to list
APPLE-SA-2015-04-21-1 OS X: Flash Player plug-in blocked Due to security issues in older versions, Apple has updated the web plug-in blocking mechanism to disable all versions prior to Flash Player 17.0.0.169 and 13.0.0.281. Information on blocked web plug-ins will be posted to: http://support. [...]
The Certify module before 6.x-2.3 for Drupal does not properly perform node access checks, which allows remote authenticated users to bypass intended access restrictions and obtain sensitive PDF certificate information via vectors related to “showing (and creating) the PDF certificates.”
Posted by Martin Jartelius on Apr 22
SCADA – EXPLOITING CVE-2015-0984 FOR SHELL ACCESS
This post is a follow up detailing how to achieve control of the actual
XLWEB SCADA controller. The vulnerability is assigned with reference
CVE-2015-0984.
Rather than the application level administrative access as discussed in
the email regarding CVE-2014-2717, this focuses on issues with the FTP,
default accounts which could not be changed, and high privileges of the
web server user resulting…
tcpdump allows you to dump the traffic on a network. It can be used to print out the headers and/or contents of packets on a network interface that matches a given expression. You can use this tool to track down network problems, to detect many attacks, or to monitor the network activities.
Libpcap is a portable packet capture library which is used in many packet sniffers, including tcpdump.