IBM Marketing Platform CVE-2016-0228 Open Redirect Vulnerability
Category Archives: Security
Security
Vuln: LibreOffice CVE-2017-7870 Heap Buffer Overflow Vulnerability
LibreOffice CVE-2017-7870 Heap Buffer Overflow Vulnerability
Newly Leaked Hacking Tools Were Worth $2 Million On The Gray Market
Latest Dump of Alleged NSA Tools Is 'The Worst Thing Since Snowden'
Persistent Cross-Site Scripting in Scriptler Jenkins Plugin
Posted by Securify B.V. on Apr 14
————————————————————————
Persistent Cross-Site Scripting in Scriptler Jenkins Plugin
————————————————————————
Burak Kelebek, April 2017
————————————————————————
Abstract
————————————————————————
A Cross-Site Scripting vulnerability was found in the…
CVE-2017-7878
SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read and write to the users database.
CVE-2016-6299
The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file.
CVE-2017-7877
CSRF vulnerability in flatCore version 1.4.6 allows remote attackers to modify CMS configurations.
CVE-2016-7032
sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the (1) system or (2) popen function.
CVE-2016-5312
Directory traversal vulnerability in the charting component in Symantec Messaging Gateway before 10.6.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the sn parameter to brightmail/servlet/com.ve.kavachart.servlet.ChartStream.