Mozilla Firefox and Thunderbird Multiple Use After Free Denial of Service Vulnerabilities
Vuln: Mozilla Firefox and Thunderbird CVE-2017-5401 Memory Corruption Vulnerability
Mozilla Firefox and Thunderbird CVE-2017-5401 Memory Corruption Vulnerability
Vuln: Mozilla Firefox and Thunderbird Multiple Security Vulnerabilities
Mozilla Firefox and Thunderbird Multiple Security Vulnerabilities
CVE-2017-5622
With OxygenOS before 4.0.3, when a charger is connected to a powered-off OnePlus 3 or 3T device, the platform starts with adbd enabled. Therefore, a malicious charger or a physical attacker can open up, without authorization, an ADB session with the device, in order to further exploit other vulnerabilities and/or exfiltrate sensitive information.
Farmer's Fridge Kiosk 2.0.0 Information Disclosure
Farmer’s Fridge Kiosk version 2.0.0 suffers from an unprotected event log information disclosure vulnerability as well as unauthenticated request issues.
CVE-2017-2643
In Moodle 3.2.x, global search displays user names for unauthenticated users.
CVE-2017-2641
In Moodle 2.x and 3.x, SQL injection can occur via user preferences.
CVE-2017-2645
In Moodle 3.x, XSS can occur via attachments to evidence of prior learning.
CVE-2017-2644
In Moodle 3.x, XSS can occur via evidence of prior learning.
Parcel Delivery Booking Script 1.0 SQL Injection
Parcel Delivery Booking Script version 1.0 suffers from a remote SQL injection vulnerability.