Posted by MustLive on Apr 16
Hello list!
There are SQL Injection, Cross-Site Scripting and Full Path Disclosure
vulnerabilities in Nodes Studio CMS. This is Russian commercial CMS, which I
found at one site of Russian terrorists and propagandists.
————————-
Affected vendors:
————————-
Nodes Studio.
————————-
Affected products:
————————-
Vulnerable are all versions of Nodes Studio CMS.
———-
Details:…
Posted by Hanno Böck on Apr 16
Hi,
Nice work.
I took the latest release and ran the fuzzer again (without all the
dictionary and special testcase stuff, may re-do that later).
Uncovered two more issues, one in the statement parser causing an
off-by-one read with the 2 byte input “.”:
https://www.sqlite.org/cgi/src/info/e018f4bf1f27f783
And one in the parser of the database binary format itself:
https://www.sqlite.org/cgi/src/info/f71053cf658b3260
(not sure if…
Posted by Denis Andzakovic on Apr 16
( , ) (,
. ‘.’ ) (‘. ‘,
). , (‘. ( ) (
(_,) .’), ) _ _,
/ _____/ / _ ____ ____ _____
____ ==/ /_ _/ ___/ _ /
/ / | \ __( <_> ) Y Y
/______ /___|__ / ___ >____/|__|_| /
/ /.-. / /:wq
(x.0)
‘=.|w|.=’
_=”””=….
Red Hat Enterprise Linux: Updated packages that resolve various issues are now available for Red Hat
Enterprise Linux OpenStack Platform 5.0 (Icehouse) for Red Hat Enterprise
Linux 7.
Red Hat Enterprise Linux: Updated OpenStack Identity packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse)
for RHEL 6.
Red Hat Enterprise Linux: Updated OpenStack Identity packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse)
for RHEL 7.
Red Hat Enterprise Linux: Updated OpenStack Telemetry packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse)
for RHEL 6.
Red Hat Enterprise Linux: Updated OpenStack Telemetry packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse)
for RHEL 7.
Red Hat Enterprise Linux: Updated packages that resolve various issues are now available for Red Hat
Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6.
Red Hat Enterprise Linux: Updated OpenStack Block Storage packages that resolve various issues are
now available for Red Hat Enterprise Linux OpenStack Platform 5.0
(Icehouse) for RHEL 6.