Posted by dxw Security on Aug 12

Details
================
Software: WP Symposium
Version: 15.1
Homepage: https://wordpress.org/plugins/wp-symposium
Advisory report:
https://security.dxw.com/advisories/blind-sql-injection-in-wp-symposium-allows-unauthenticated-attackers-to-access-sensitive-data/
CVE: Awaiting assignment
CVSS: 6.4 (Medium; AV:N/AC:L/Au:N/C:P/I:N/A:P)

Description
================
Blind SQL Injection in WP Symposium allows unauthenticated attackers to access…

Posted by dxw Security on Aug 12

Details
================
Software: iframe
Version: 3.0
Homepage: http://wordpress.org/plugins/iframe/
Advisory report:
https://security.dxw.com/advisories/reflected-xss-in-iframe-allows-unauthenticated-users-to-do-almost-anything-an-admin-can/
CVE: Awaiting assignment
CVSS: 5.8 (Medium; AV:N/AC:M/Au:N/C:P/I:P/A:N)

Description
================
Reflected XSS in iframe allows unauthenticated users to do almost anything an admin can

Vulnerability…

Posted by Thomas D. on Aug 12

Hi,

Mario Vilas wrote:

Correct.

OK, installing into %APPDATA% or %LOCALAPPDATA% will remove Windows’ tampering protection.
I hope you are not arguing that because nowadays many application will install into %APPDATA% or %LOCALAPPDATA% they
became “safe” because they are so many?!

Remember how the thing with %APPDATA% and %LOCALAPPDATA% started/became mainstream: There was a small search corp. who
thought they need to develop…

Posted by Curesec Research Team on Aug 12

BigTree CMS 4.2.3: Multiple Cross Site Scripting Vulnerabilities
Security Advisory – Curesec Research Team

Online Reference:
http://blog.curesec.com/article/blog/BigTree-CMS-423-Multiple-Cross-Site-Scripting-Vulnerabilities-38.html

1. Introduction

Affected Product: BigTree CMS 4.2.3
Fixed in: 4.2.4
Fixed Version Link:
https://github.com/bigtreecms/BigTree-CMS/archive/4.2.3.zip
Vendor Contact: contribute ()…

Posted by Curesec Research Team on Aug 12

BigTree CMS 4.2.3: Multiple SQL Injection Vulnerabilities
Security Advisory – Curesec Research Team

Online-Reference:
http://blog.curesec.com/article/blog/BigTree-CMS-423-Multiple-SQL-Injection-Vulnerabilities-39.html

1. Introduction

Affected Product: BigTree CMS 4.2.3
Fixed in: 4.2.4
Fixed Version Link:
https://github.com/bigtreecms/BigTree-CMS/archive/4.2.3.zip
Vendor Contact: contribute ()…

Posted by Curesec Research Team on Aug 12

CodoForum 3.3.1 Multiple Cross Site Scriptings
Security Advisory – Curesec Research Team
Online-Reference
http://blog.curesec.com/article/blog/CodoForum-331-Multiple-Cross-Site-Scripting-Vulnerabilities-40.html

1. Introduction

Affected Product: CodoForum 3.3.1
Fixed in: 3.4
Fixed Version Link:
https://bitbucket.org/evnix/codoforum_downloads/downloads/codoforum.v.3.4.build-19.zip

Vendor Contact: admin () codologic…

Posted by Etnies on Aug 12

Title: Thomson Reuters FATCA – Arbitrary File Upload
Author: Jakub Palaczynski
Date: 10. June 2015
CVE: CVE-2015-5951

Affected software:
==================

All versions of Thomson Reuters FATCA below v5.2

Exploit was tested on:
======================

Thomson Reuters FATCA v5.1.0.30

Description:
============

The Thomson Reuters for FATCA solution enables organizations to comply with
the key requirements of both CRS and FATCA.[1]…

Posted by 牛保龙 on Aug 12

i reported a use after free for php on hackerone.com,the bug :https://bugs.php.net/bug.php?id=70211.

Description: ———— the Hash table is full, resize it,ZEND_HASH_IF_FULL_DO_RESIZE(ht),but if one elment is
already allocate in the old memery and re-allocate in the new memry and the var_hash struct also exists the old memery
for the element, it can cause a use after free when unserialize() function has r/R referer. my english is poor. i…