SQL injection vulnerability in SetucoCMS.
Category Archives: Security
Security
CVE-2016-4897
Multiple cross-site scripting (XSS) vulnerabilities in (1) filter/save_forward.cgi, (2) filter/save.cgi, (3) /man/search.cgi in Usermin before 1.690.
CVE-2016-4891
Cross-site request forgery (CSRF) vulnerability in SetucoCMS.
ansible-2.3.0.0-1.el6
Many bugfixes and improvements. See https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of changes.
rst and html docs have been split out into a ansible-docs subpackage.
Includes fix for CVE-2017-7466
—-
Update to upstream 2.2.2.0 release.
ansible-2.3.0.0-1.el7
Many bugfixes and improvements. See https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of changes.
rst and html docs have been split out into a ansible-docs subpackage.
Includes fix for CVE-2017-7466
—-
Update to upstream 2.2.2.0 release.
ansible-2.3.0.0-1.fc24
Many bugfixes and improvements. See https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of changes.
rst and html docs have been split out into a ansible-docs subpackage.
Includes fix for CVE-2017-7466
ansible-2.3.0.0-1.fc25
Many bugfixes and improvements. See https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of changes.
rst and html docs have been split out into a ansible-docs subpackage.
Includes fix for CVE-2017-7466
ansible-2.3.0.0-1.fc26
Many bugfixes and improvements. See https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of changes.
rst and html docs have been split out into a ansible-docs subpackage.
Includes fix for CVE-2017-7466
DefenseCode Security Advisory: Magento 0day Arbitrary File Upload Vulnerability (Remote Code Execution, CSRF)
Posted by DefenseCode on Apr 12
DefenseCode Security Advisory
Magento 0day Arbitrary File Upload Vulnerability
(Remote Code Execution, CSRF)
Advisory ID: DC-2017-04-003
Software: Magento CE
Software Language: PHP
Version: 2.1.6 and below
Vendor Status: Vendor contacted / Not fixed
Release Date: 20170413
Risk: High
# Advisory Overview
During the security audit of Magento Community Edition, a highly popular
e-commerce platform, a high risk…
DefenseCode ThunderScan SAST Advisory: 53+ WordPress plugins by BestWebSoft Multiple Cross-Site Scripting (XSS) Vulnerabilities
Posted by DefenseCode on Apr 12
DefenseCode ThunderScan SAST Advisory
53+ WordPress plugins by BestWebSoft Multiple
Cross-Site Scripting (XSS) Vulnerabilities
Advisory ID: DC-2017-02-014
Software: 53+ WordPress plugins by BestWebSoft
Software Language: PHP
Version: Various
Vendor Status: Vendor contacted, vulnerabilities confirmed
Release Date: 20170412
Risk: Medium
# Advisory Overview
BestWebSoft published more than 50 plugins to the wordpress.org site….