Posted by DefenseCode on Apr 12
DefenseCode ThunderScan SAST Advisory
WordPress Tribulant Slideshow Gallery Plugin – Cross-Site Scripting
Vulnerabilities
Advisory ID: DC-2017-01-014
Software: WordPress Tribulant Slideshow Gallery plugin
Software Language: PHP
Version: 1.6.4 and below
Vendor Status: Vendor contacted, fix released
Release Date: 20170410
Risk: Medium
# Brief Vulnerability Description
During the security analysis, ThunderScan discovered multiple…
Posted by DefenseCode on Apr 12
DefenseCode ThunderScan SAST Advisory
53+ WordPress plugins by BestWebSoft Multiple
Cross-Site Scripting (XSS) Vulnerabilities
Advisory ID: DC-2017-02-014
Software: 53+ WordPress plugins by BestWebSoft
Software Language: PHP
Version: Various
Vendor Status: Vendor contacted, vulnerabilities confirmed
Release Date: 20170412
Risk: Medium
# Advisory Overview
BestWebSoft published more than 50 plugins to the wordpress.org site….
Posted by DefenseCode on Apr 12
DefenseCode Security Advisory
Magento 0day Arbitrary File Upload Vulnerability
(Remote Code Execution, CSRF)
Advisory ID: DC-2017-04-003
Software: Magento CE
Software Language: PHP
Version: 2.1.6 and below
Vendor Status: Vendor contacted / Not fixed
Release Date: 20170413
Risk: High
# Advisory Overview
During the security audit of Magento Community Edition, a highly popular
e-commerce platform, a high risk…
Posted by Prajwal Panchmahalkar on Apr 12
___ ___ __ __
/ _ / _ / /
___| | | | ___| | | |_ __ _____ V /
/ __| | | |/ __| | | | ‘_ ______> <
| (__| |_| | (__| |_| | | | | / .
___|___/ ___|___/|_| |_| /_/ _
#################################################################
c0c0n X | The cy0ps c0n – Call For Papers & Call For Workshops…
Posted by Mark Wadham on Apr 12
With CVE-2017-7643 I disclosed a command injection vulnerablity in the
KLoader
binary that ships with Proxifier <= 2.18.
Unfortunately 2.19 is also vulnerable to a slightly different attack
that
yields the same result.
When Proxifier is first run, if the KLoader binary is not suid root it
gets
executed as root by Proxifier.app (the user is prompted to enter an
admin
password). The KLoader binary will then make itself suid root so that…
Posted by Mark Wadham on Apr 12
Sorry, the exploit code got mangled :S
————————-
#!/bin/bash
#####################################################################
# Local root exploit for vulnerable KLoader binary distributed with #
# Proxifier for Mac v2.18 #
#####################################################################
# by m4rkw #…
game-music-emu before 0.6.1 allows remote attackers to write to arbitrary memory locations.
Stack-based buffer overflow in native/mod_manager/node.c in mod_cluster 1.2.9.
Stack-based buffer overflow in game-music-emu before 0.6.1.
game-music-emu before 0.6.1 allows remote attackers to generate out of bounds 8-bit values.