Qualys Security Advisory
Local information disclosure in OpenSMTPD (CVE-2020-8793)
==
Contents
==
Summary
Analysis
Exploitation
POKE 47196
Qualys Security Advisory
LPE and RCE in OpenSMTPD's default install (CVE-2020-8794)
==
Contents
==
Summary
Analysis
...
Acknowledgments
Qualys Security Advisory
LPE and RCE in OpenSMTPD (CVE-2020-7247)
==
Contents
==
Summary
Analysis
Exploitation
Acknowledgments
Qualys Security Advisory
Local Privilege Escalation in OpenBSD's dynamic loader (CVE-2019-19726)
==
Contents
==
Summary
Analysis
Qualys Security Advisory
Authentication vulnerabilities in OpenBSD
==
Contents
==
1. CVE-2019-19521: Authentication bypass
1.1. Analysis
of Debian,
Ubuntu, Fedora, CentOS), and it should be relatively easy to add more
targets.
- When adding a new amd64 target, use the "free_hook" method if possible
(if located at a multiple of 16 plus 8, as explained in our advisory);
for various reasons, the alternative "stder
RedForce Advisory
https://redforce.io
## ِAdvisory Information
Title: SHAREit For Android <= 4.0.38 Multiple Vulnerabilities
Advisory URL:
https://blog.redforce.io/shareit-vulnerabilities-enable-unrestricted-access-to-adjacent-devices-files/
Date published: 2019-02-25
Date of last update: 2
Qualys Security Advisory
System Down: A systemd-journald exploit
Contents
Summary
CVE-2018-16864
- Analysis
- Exploitation
CVE-2018-16865
Qualys Security Advisory
Mutagen Astronomy: Integer overflow in Linux's create_elf_tables()
(CVE-2018-14634)
Contents
Summary
Analysis
Exploitation
Qualys Security Advisory
Procps-ng Audit Report
Contents
Summary
1. FUSE-backed /proc/PID/cmdline
2. Unprivileged process hiding
3. Local Privilege
Qualys Security Advisory
Linux PIE/stack corruption (CVE-2017-1000253)
Contents
Summary
Analysis
Exploitation
Acknowledgments
Qualys Security Advisory
Roaming through the OpenSSH client: CVE-2016-0777 and CVE-2016-0778
Contents
Summary
Information Leak (CVE-2016-0777
Qualys Security Advisory
LibreSSL (CVE-2015-5333 and CVE-2015-5334)
Contents
Summary
Memory Leak (CVE-2015-5333)
Buffer Overflow (CVE-2015-5334
(Sorry for the "CVE-2015-ABCD" place-holders in the report, but
OpenSMTPD's developers were ready with the patches before MITRE was
ready with the CVE-IDs.)
Qualys Security Advisory
OpenSMTPD Audit Report
===
Hello, it is July 23, 2015, 17:00 UTC, the Coordinated Release Date for
CVE-2015-3245 and CVE-2015-3246. Please find our advisory below, and
our exploit attached.
Qualys Security Advisory
CVE-2015-3245 userhelper chfn() newline filtering
CVE-2015-3246 libuser passwd file handling
Qualys Security Advisory CVE-2015-0235
GHOST: glibc gethostbyname buffer overflow
--[ Contents ]
1 - Summary
2 - Analysis
3 - Mitigating factors
4 - Case studies
5 - Exploitation
6 - Acknowledgments
--[ 1 - Summary
Advisory ID: HTB23165
Product: BigTree CMS
Vendor: BigTree CMS
Vulnerable Version(s): 4.0 RC2 and probably prior
Tested Version: 4.0 RC2
Vendor Notification: July 17, 2013
Vendor Patch: July 17, 2013
Public Disclosure: August 7, 2013
Vulnerability Type: SQL Injection [CWE-89], Cross-Site
Advisory ID: HTB23164
Product: Cotonti
Vendor: Cotonti Team
Vulnerable Version(s): 0.9.13 and probably prior
Tested Version: 0.9.13
Vendor Notification: July 10, 2013
Vendor Patch: July 17, 2013
Public Disclosure: July 31, 2013
Vulnerability Type: SQL Injection [CWE-89]
CVE Reference: CVE-2013
Advisory ID: HTB23159
Product: Jahia xCM
Vendor: Jahia Solutions Group SA
Vulnerable Version(s): 6.6.1.0 r43343 and probably prior
Tested Version: 6.6.1.0 r43343
Vendor Notification: June 5, 2013
Vendor Patch: July 17, 2013
Public Disclosure: July 31, 2013
Vulnerability Type: Cross-Site
Advisory ID: HTB23160
Product: OpenCms
Vendor: Alkacon Software
Vulnerable Version(s): 8.5.1 and probably prior
Tested Version: 8.5.1
Vendor Notification: June 12, 2013
Vendor Patch: July 10, 2013
Public Disclosure: July 17, 2013
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference
Advisory ID: HTB23158
Product: Kasseler CMS
Vendor: Kasseler CMS
Vulnerable Version(s): 2 r1223 and probably prior
Tested Version: 2 r1223
Vendor Notification: May 29, 2013
Vendor Patch: June 28, 2013
Public Disclosure: July 3, 2013
Vulnerability Type: SQL Injection [CWE-89], Cross-Site
Advisory ID: HTB23155
Product: OpenX
Vendor: OpenX
Vulnerable Version(s): 2.8.10 and probably prior
Tested Version: 2.8.10
Vendor Notification: May 8, 2013
Vendor Patch: June 28, 2013
Public Disclosure: July 3, 2013
Vulnerability Type: PHP File Inclusion [CWE-98], Cross-Site Scripting [CWE-79
Advisory ID: HTB23156
Product: Xaraya
Vendor: Xaraya Development Group
Vulnerable Version(s): 2.4.0-b1 and probably prior
Tested Version: 2.4.0-b1
Vendor Notification: May 15, 2013
Public Disclosure: June 26, 2013
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2013-3639
Advisory ID: HTB23157
Product: Dolphin
Vendor: BoonEx
Vulnerable Version(s): 7.1.2 and probably prior
Tested Version: 7.1.2
Vendor Notification: May 22, 2013
Vendor Patch: May 29, 2013
Public Disclosure: June 12, 2013
Vulnerability Type: SQL Injection [CWE-89]
CVE Reference: CVE-2013-3638
Risk
Advisory ID: HTB23154
Product: Exponent CMS
Vendor: Online Innovative Creations
Vulnerable Version(s): 2.2.0 beta 3 and probably prior
Tested Version: 2.2.0 beta 3
Vendor Notification: April 24, 2013
Vendor Patch: May 3, 2013
Public Disclosure: May 15, 2013
Vulnerability Type: SQL Injection
Advisory ID: HTB23151
Product: UMI.CMS
Vendor: OOO Umisoft
Vulnerable Version(s): 2.9 and probably prior
Tested Version: 2.9
Vendor Notification: April 3, 2013
Vendor Patch: May 7, 2013
Public Disclosure: May 8, 2013
Vulnerability Type: Cross-Site Request Forgery [CWE-352]
CVE Reference: CVE
Advisory ID: HTB23152
Product: b2evolution
Vendor: b2evolution Group
Vulnerable Version(s): 4.1.6 and probably prior
Tested Version: 4.1.6
Vendor Notification: April 10, 2013
Vendor Patch: April 29, 2013
Public Disclosure: May 1, 2013
Vulnerability Type: SQL Injection [CWE-89]
CVE Reference
Advisory ID: HTB23141
Product: GetSimple CMS
Vendor: get-simple.info
Vulnerable Version(s): 3.1.2 and probably prior
Tested Version: 3.1.2
Vendor Notification: January 23, 2013
Vendor Patch: April 26, 2013
Public Disclosure: May 1, 2013
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE
Advisory ID: HTB23150
Product: KrisonAV CMS
Vendor: http://www.krisonav.com
Vulnerable Version(s): 3.0.1 and probably prior
Tested Version: 3.0.1
Vendor Notification: March 27, 2013
Vendor Patch: March 31, 2013
Public Disclosure: April 17, 2013
Vulnerability Type: Cross-Site Scripting [CWE-79
Advisory ID: HTB23148
Product: Symphony
Vendor: http://getsymphony.com/
Vulnerable Version(s): 2.3.1 and probably prior
Tested Version: 2.3.1
Vendor Notification: March 13, 2013
Vendor Patch: March 24, 2013
Public Disclosure: April 3, 2013
Vulnerability Type: SQL Injection [CWE-89]
CVE
Advisory ID: HTB23146
Product: FUDforum
Vendor: FUDforum
Vulnerable Version(s): 3.0.4 and probably prior
Tested Version: 3.0.4
Vendor Notification: February 21, 2013
Vendor Patch: March 11, 2013
Public Disclosure: April 3, 2013
Vulnerability Type: Code Injection [CWE-94]
CVE Reference: CVE-2013
Advisory ID: HTB23131
Product: Novell GroupWise
Vendor: Novell Inc.
Vulnerable Version(s): 12.0.0.8586 and probably prior
Tested Version: 12.0.0.8586 on Windows 7 SP1 and Internet Explorer 9.0
Vendor Notification: November 26, 2012
Vendor Patch: January 30, 2013
Public Disclosure: April 3, 2013
Advisory ID: HTB23147
Product: AWS XMS
Vendor: http://www.aws-dms.com
Vulnerable Version(s): 2.5 and probably prior
Tested Version: 2.5
Vendor Notification: March 6, 2013
Vendor Patch: March 16, 2013
Public Disclosure: March 27, 2013
Vulnerability Type: Path Traversal [CWE-22]
CVE Reference
Advisory ID: HTB23128
Product: McAfee Virtual Technician (MVT) 6.5.0.2101
Vendor: McAfee
Vulnerable Version(s): 6.5.0.2101 and probably prior
Tested Version: 6.5.0.2101 on Windows 7 SP1 and Internet Explorer 9
Vendor Notification: November 19, 2012
Vendor Patch: March 15, 2013
Public Disclosure
Advisory ID: HTB23114
Product: Corel WordPerfect X6 Standard Edition
Vendor: Corel Corporation
Vulnerable Version(s): 16.0.0.388, other versions may be also affected
Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits
Vendor Notification: September 12, 2012
Public Disclosure: March 7, 2013
Advisory ID: HTB23112
Product: Corel Quattro Pro X6 Standard Edition
Vendor: Corel Corporation
Vulnerable Version(s): 16.0.0.388, other versions may be also affected
Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits
Vendor Notification: August 27, 2012
Public Disclosure: March 7, 2013
Advisory ID: HTB23145
Product: CosCms
Vendor: http://www.coscms.org
Vulnerable Version(s): 1.721 and probably prior
Tested Version: 1.721
Vendor Notification: February 13, 2013
Vendor Patch: February 13, 2013
Public Disclosure: March 6, 2013
Vulnerability Type: OS Command Injection [CWE-78]
CVE
Advisory ID: HTB23139
Product: Events Manager WordPress plugin
Vendor: Marcus Sykes
Vulnerable Version(s): 5.3.3 and probably prior
Tested Version: 5.3.3
Vendor Notification: January 16, 2013
Vendor Patch: January 17, 2013
Public Disclosure: March 6, 2013
Vulnerability Type: Cross-Site
Advisory ID: HTB23140
Product: Wysija Newsletters WordPress plugin
Vendor: Wysija
Vulnerable Version(s): 2.2 and probably prior
Tested Version: 2.2
Vendor Notification: January 16, 2013
Vendor Patch: January 18, 2013
Public Disclosure: February 6, 2013
Vulnerability Type: SQL Injection [CWE-89
Advisory ID: HTB23138
Product: CommentLuv WordPress plugin
Vendor: Andy Bailey
Vulnerable Version(s): 2.92.3 and probably prior
Tested Version: 2.92.3
Vendor Notification: January 16, 2013
Vendor Patch: January 17, 2013
Public Disclosure: February 6, 2013
Vulnerability Type: Cross-Site
Advisory ID: HTB23137
Product: gpEasy
Vendor: gpeasy
Vulnerable Version(s): 3.5.2 and probably prior
Tested Version: 3.5.2
Vendor Notification: January 2, 2013
Vendor Patch: January 2, 2013
Public Disclosure: January 23, 2013
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE
Advisory ID: HTB23132
Product: ImageCMS
Vendor: www.imagecms.net
Vulnerable Version(s): 4.0.0b and probably prior
Tested Version: 4.0.0b
Vendor Notification: December 5, 2012
Vendor Patch: January 16, 2013
Public Disclosure: January 23, 2013
Vulnerability Type: SQL Injection [CWE-89]
CVE
Advisory ID: HTB23135
Product: Quick.Cms, Quick.Cart
Vendor: OpenSolution team
Vulnerable Version(s): Quick.Cms 5.0, Quick.Cart 6.0 and probably prior
Tested Version: Quick.Cms 5.0, Quick.Cart 6.0
Vendor Notification: December 19, 2012
Vendor Patch: December 20, 2012
Public Disclosure: January 9
Advisory ID: HTB23136
Product: Samsung Kies
Vendor: Samsung Electronics
Vulnerable Version(s): 2.5.0.12114_1
Tested Version: 2.5.0.12114_1 on Windows 7 SP1 and Internet Explorer 9.0
Vendor Notification: December 19, 2012
Vendor Patch: December 27, 2012
Public Disclosure: January 9, 2013
Advisory ID: HTB23130
Product: Nero MediaHome
Vendor: Nero
Vulnerable Version(s): 4.5.8.0 and probably prior
Tested Version: 4.5.8.0 in Windows 7 SP1
Vendor Notification: November 21, 2012
Public Disclosure: January 9, 2013
Vulnerability Type: Improper Handling of Length Parameter Inconsistency
Advisory ID: HTB23133
Product: Elite Bulletin Board
Vendor: elite-board.us
Vulnerable Version(s): 2.1.21 and probably prior
Tested Version: 2.1.21
Vendor Notification: November 28, 2012
Vendor Patch: December 6, 2012
Public Disclosure: December 19, 2012
Vulnerability Type: SQL Injection [CWE-89
Advisory ID: HTB23129
Product: FireFly Mediaserver
Vendor: FireFly
Vulnerable Version(s): 1.0.0.1359 and probably prior
Tested Version: 1.0.0.1359 in Windows 7 SP1
Vendor Notification: November 21, 2012
Public Disclosure: December 19, 2012
Vulnerability Type: NULL Pointer Dereference [CWE-476
Advisory ID: HTB23118
Product: Banana Dance
Vendor: bananadance.org
Vulnerable Version(s): B.2.6 and probably prior
Tested Version: B.2.6
Vendor Notification: October 3, 2012
Public Disclosure: December 19, 2012
Vulnerability Type: PHP File Inclusion [CWE-98], Improper Access Control
[CWE-284
Advisory ID: HTB23127
Product: Smartphone Pentest Framework (SPF)
Vendor: Bulb Security LLC
Vulnerable Versions: 0.1.3, 0.1.4 and probably prior
Tested Versions: 0.1.3, 0.1.4
Vendor Notification: November 19, 2012
Public Disclosure: December 10, 2012
Vulnerability Type: OS Command Injection [CWE
Advisory ID: HTB23120
Product: TVMOBiLi media server
Vendor: TVMOBiLi
Vulnerable Version(s): 2.1.0.3557 and probably prior version
Tested Version: 2.1.0.3557 in Windows XP SP3 32 bits
Vendor Notification: October 15, 2012
Vendor Patch: November 21, 2012
Public Disclosure: December 5, 2012
Advisory ID: HTB23125
Product: ClipBucket
Vendor: clip-bucket.com
Vulnerable Version(s): 2.6 Revision 738 and probably prior
Tested Version: 2.6 Revision 738
Vendor Notification: November 7, 2012
Vendor Patch: November 28, 2012
Public Disclosure: December 5, 2012
Vulnerability Type: SQL
Advisory ID: HTB23126
Product: Achievo
Vendor: www.achievo.org
Vulnerable Version(s): 1.4.5 and probably prior
Tested Version: 1.4.5
Vendor Notification: November 14, 2012
Public Disclosure: December 5, 2012
Vulnerability Type: SQL Injection [CWE-89], Cross-Site Scripting [CWE-79]
CVE References
Advisory ID: HTB23126
Product: Achievo
Vendor: www.achievo.org
Vulnerable Version(s): 1.4.5 and probably prior
Tested Version: 1.4.5
Vendor Notification: November 14, 2012
Public Disclosure: December 5, 2012
Vulnerability Type: SQL Injection [CWE-89], Cross-Site Scripting [CWE-79]
CVE References
Advisory ID: HTB23125
Product: ClipBucket
Vendor: clip-bucket.com
Vulnerable Version(s): 2.6 Revision 738 and probably prior
Tested Version: 2.6 Revision 738
Vendor Notification: November 7, 2012
Vendor Patch: November 28, 2012
Public Disclosure: December 5, 2012
Vulnerability Type: SQL
Advisory ID: HTB23120
Product: TVMOBiLi media server
Vendor: TVMOBiLi
Vulnerable Version(s): 2.1.0.3557 and probably prior version
Tested Version: 2.1.0.3557 in Windows XP SP3 32 bits
Vendor Notification: October 15, 2012
Vendor Patch: November 21, 2012
Public Disclosure: December 5, 2012
Advisory ID: HTB23124
Product: dotProject
Vendor: dotproject.net
Vulnerable Version(s): 2.1.6 and probably prior
Tested Version: 2.1.6
Vendor Notification: October 31, 2012
Vendor Patch: November 7, 2012
Public Disclosure: November 21, 2012
Vulnerability Type: SQL Injection [CWE-89], Cross-Site
Advisory ID: HTB23122
Product: BabyGekko
Vendor: babygekko.com
Vulnerable Version(s): 1.2.2e and probably prior
Tested Version: 1.2.2e
Vendor Notification: October 24, 2012
Vendor Patch: November 4, 2012
Public Disclosure: November 14, 2012
Vulnerability Type: SQL Injection [CWE-89], PHP File
Advisory ID: HTB23121
Product: CMS Made Simple
Vendor: cmsmadesimple.org
Vulnerable Version(s): 1.11.2 and probably prior
Tested Version: 1.11.2
Vendor Notification: October 17, 2012
Public Disclosure: November 7, 2012
Vulnerability Type: Cross-Site Request Forgery [CWE-352]
CVE Reference: CVE
Advisory ID: HTB23106
Product: LibreOffice Suite
Vendor: LibreOffice
Vulnerable Version(s): 3.5.5.3 and probably prior
Tested Version: 3.5.5.3
Vendor Notification: July 26, 2012
Public Disclosure: October 31, 2012
Vulnerability Type: NULL Pointer Dereference [CWE-476]
CVE Reference: CVE-2012
Advisory ID: HTB23119
Product: OrangeHRM
Vendor: OrangeHRM Inc.
Vulnerable Version(s): 2.7.1-rc.1 and probably prior
Tested Version: 2.7.1-rc.1
Vendor Notification: October 10, 2012
Public Disclosure: October 31, 2012
Vulnerability Type: SQL Injection [CWE-89]
CVE Reference: CVE-2012-5367
CVSSv2
Advisory ID: HTB23117
Product: AContent
Vendor: ATutor
Vulnerable Version(s): 1.2 and probably prior
Tested Version: 1.2
Vendor Notification: September 26, 2012
Public Disclosure: October 17, 2012
Vulnerability Type: SQL Injection [CWE-89], Improper Authentication [CWE-287],
Cross-Site
Advisory ID: HTB23113
Product: Subrion CMS
Vendor: The Subrion development team
Vulnerable Version(s): 2.2.1 and probably prior
Tested Version: 2.2.1
Vendor Notification: September 5, 2012
Public Disclosure: October 17, 2012
Vulnerability Type: SQL Injection [CWE-89], Cross-Site Scripting [CWE
Advisory ID: HTB23107
Product: jCore
Vendor: jcore.net
Vulnerable Version(s): 1.0pre and probably prior
Tested Version: 1.0pre
Vendor Notification: August 1, 2012
Public Disclosure: October 17, 2012
Vulnerability Type: SQL Injection [CWE-89], Cross-Site Scripting [CWE-79]
CVE References: CVE
Advisory ID: HTB23099
Product: Samsung Kies
Vendor: Samsung Electronics
Vulnerable Version(s): 2.3.2.12054_20 and probably prior
Tested Version: 2.3.2.12054_20
Vendor Notification: June 25, 2012
Public Disclosure: October 15, 2012
Vulnerability Type: NULL Pointer Dereference [CWE-476], Improper
Advisory ID: HTB23116
Product: OpenX
Vendor: OpenX
Vulnerable Version(s): 2.8.10 and probably prior
Tested Version: 2.8.10
Vendor Notification: September 19, 2012
Public Disclosure: October 10, 2012
Vulnerability Type: Cross-Site Scripting [CWE-79], SQL Injection [CWE-89]
CVE References: CVE
Advisory ID: HTB23108
Product: Microsoft Windows
Vendor: Microsoft Corporation
Vulnerable Version(s): Windows Vista, Windows Server 2008, Windows 7, Windows 8
RP
Tested Version: Windows Vista Ultimate SP1, Windows 2008 SP2, Windows 7
Professional SP1, Windows 8 RP
Vendor Notification: August 7
Advisory ID: HTB23115
Product: Template CMS
Vendor: template-cms.ru
Vulnerable Version(s): 2.1.1 and probably prior
Tested Version: 2.1.1
Vendor Notification: September 12, 2012
Public Disclosure: October 3, 2012
Vulnerability Type: Cross-Site Scripting [CWE-79], Cross-Site Request Forgery
[CWE
Advisory ID: HTB23110
Product: Flogr
Vendor: Flogr
Vulnerable Version(s): 2.5.6 and probably prior
Tested Version: 2.5.6
Vendor Notification: August 15, 2012
Public Disclosure: September 5, 2012
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2012-4336
CVSSv2 Base Score: 4.3
Advisory ID: HTB23095
Product: Kayako Fusion
Vendor: Kayako
Vulnerable Version(s): 4.40.1148 and probably prior
Tested Version: 4.40.1148
Vendor Notification: June 6, 2012
Public Disclosure: September 5, 2012
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2012-3233
CVSSv2
Advisory ID: HTB23109
Product: Phorum
Vendor: Phorum Team
Vulnerable Version(s): 5.2.18 and probably prior
Tested Version: 5.2.18
Vendor Notification: August 8, 2012
Public Disclosure: August 29, 2012
Vulnerability Type: Cross-Site Scripting [CWE-79]
CVE Reference: CVE-2012-4234
CVSSv2 Base
Advisory ID: HTB23101
Product: PBBoard
Vendor: www.pbboard.com
Vulnerable Version(s): 2.1.4 and probably prior
Tested Version: 2.1.4
Vendor Notification: July 18, 2012
Public Disclosure: August 8, 2012
Vulnerability Type: SQL Injection [CWE-89], Improper Authentication [CWE-287],
Improper
Advisory ID: HTB23100
Product: phpList
Vendor: phpList Ltd
Vulnerable Version(s): 2.10.18 and probably prior
Tested Version: 2.10.18
Vendor Notification: July 11, 2012
Public Disclosure: August 8, 2012
Vulnerability Type: Cross-Site Scripting [CWE-79], SQL Injection [CWE-89]
CVE References: CVE
Advisory ID: HTB23098
Product: Redaxo
Vendor: Redaxo team
Vulnerable Version(s): 4.4 and probably prior
Tested Version: 4.4
Vendor Notification: 4 July 2012
Vendor Patch: 23 July 2012
Public Disclosure: 25 July 2012
Vulnerability Type: Cross-Site Scripting (XSS)
CVE Reference: CVE-2012-3869
Advisory ID: HTB23097
Product: Kajona
Vendor: www.kajona.de
Vulnerable Version(s): 3.4.1 and probably prior
Tested Version: 3.4.1
Vendor Notification: 20 June 2012
Vendor Patch: 26 June 2012
Public Disclosure: 11 July 2012
Vulnerability Type: Cross-Site Scripting (XSS)
CVE Reference: CVE-2012
Advisory ID: HTB23096
Product: Webmatic
Vendor: valarsoft.com
Vulnerable Version(s): 3.1.1 and probably prior
Tested Version: 3.1.1
Vendor Notification: 13 June 2012
Public Disclosure: 4 July 2012
Vulnerability Type: Blind SQL Injection
CVE Reference: CVE-2012-3350
CVSSv2 Base Score: 7.5 (AV:N
Advisory ID: HTB23092
Product: Serendipity
Vendor: Serendipity Team
Vulnerable Version(s): 1.6.1 and probably prior
Tested Version: 1.6.1
Vendor Notification: 16 May 2012
Vendor Patch: 16 May 2012
Public Disclosure: 6 June 2012
Vulnerability Type: SQL injection
CVE Reference: CVE-2012-2762
Advisory ID: HTB23090
Product: pragmaMx
Vendor: pragmaMx Team
Vulnerable Version(s): 1.12.1 and probably prior
Tested Version: 1.12.1
Vendor Notification: 2 May 2012
Vendor Patch: 4 May 2012
Public Disclosure: 23 May 2012
Vulnerability Type: Cross-Site Scripting (XSS)
CVE Reference: CVE-2012
Advisory ID: HTB23089
Product: Pligg CMS
Vendor: Pligg, LLC.
Vulnerable Version(s): 1.2.1 and probably prior
Tested Version: 1.2.1
Vendor Notification: 25 April 2012
Vendor Patch: 18 May 2012
Public Disclosure: 23 May 2012
Vulnerability Type: Local File Inclusion, Cross-Site Scripting (XSS
Advisory ID: HTB23080
Product: OrangeHRM
Vendor: OrangeHRM Inc.
Vulnerable Version(s): 2.7 RC and probably prior
Tested Version: 2.7 RC
Vendor Notification: 7 March 2012
Vendor Patch: 24 April 2012
Public Disclosure: 9 May 2012
Vulnerability Type: SQL Injection, Cross-Site Scripting (XSS)
CVE
Advisory ID: HTB23087
Product: Pivotx
Vendor: pivotx.net
Vulnerable Version(s): 2.3.2 and probably prior
Tested Version: 2.3.2
Vendor Notification: 18 April 2012
Vendor Patch: 18 April 2012
Public Disclosure: 9 May 2012
Vulnerability Type: Cross-Site Scripting (XSS)
CVE Reference: CVE-2012-2274
Advisory ID: HTB23086
Product: PluXml
Vendor: pluxml.org
Vulnerable Version(s): 5.1.5 and probably prior
Tested Version: 5.1.5
Vendor Notification: 11 April 2012
Vendor Patch: 16 April 2012
Public Disclosure: 2 May 2012
Vulnerability Type: Local File Inclusion
CVE Reference(s): CVE-2012-2227
Advisory ID: HTB23085
Product: Piwigo
Vendor: Piwigo project
Vulnerable Version(s): 2.3.3 and probably prior
Tested Version: 2.3.3
Vendor Notification: 4 April 2012
Vendor Patch: 8 April 2012
Public Disclosure: 25 April 2012
Vulnerability Type: Directory Path Traversal, Cross-Site Scripting
Advisory ID: HTB23062
Product: XOOPS
Vendor: xoops.org
Vulnerable Version(s): 2.5.4 and probably prior
Tested Version: 2.5.4
Vendor Notification: 7 December 2011
Vendor Patch: 22 February 2012
Public Disclosure: 18 April 2012
Vulnerability Type: XSS (Cross Site Scripting)
CVE Reference(s
Advisory ID: HTB23082
Product: All-in-One Event Calendar Plugin for WordPress
Vendor: The Seed Studio
Vulnerable Version(s): 1.4 and probably prior
Tested Version: 1.4
Vendor Notification: 21 March 2012
Public Disclosure: 11 April 2012
Vulnerability Type: Cross-Site Scripting (XSS)
CVE Reference
Advisory ID: HTB23081
Product: osCmax
Vendor: osCMax.com
Vulnerable Version(s): 2.5.0 and probably prior
Tested Version: 2.5.0
Vendor Notification: 14 March 2012
Vendor Patch: 30 March 2012
Public Disclosure: 4 April 2012
Vulnerability Type: Cross-Site Scripting (XSS), SQL Injection
CVE
Advisory ID: HTB23079
Product: Open Journal Systems (OJS)
Vendor: Public Knowledge Project
Vulnerable Version(s): 2.3.6 and probably prior
Tested Version: 2.3.6
Vendor Notification: 29 February 2012
Vendor Patch: 16 March 2012
Public Disclosure: 21 March 2012
Vulnerability Type: Arbitrary File
Advisory ID: HTB23075
Product: Fork CMS
Vendor: Fork CMS
Vulnerable Version(s): 3.2.5 and probably prior
Tested Version: 3.2.5
Vendor Notification: 15 February 2012
Vendor Patch: 28 February 2012
Public Disclosure: 7 March 2012
Vulnerability Type: Cross Site Scripting (XSS)
CVE Reference(s
Advisory ID: HTB23074
Product: Dotclear
Vendor: Dotclear
Vulnerable Version(s): 2.4.1.2 and probably prior
Tested Version: 2.4.1.2
Vendor Notification: 8 February 2012
Vendor Patch: 9 February 2012
Public Disclosure: 29 February 2012
Vulnerability Type: Cross Site Scripting (XSS)
CVE Reference
Advisory ID: HTB23073
Product: Chyrp
Vendor: Chyrp
Vulnerable Version(s): 2.5b1 and probably prior
Tested Version: 2.5b1
Vendor Notification: 1 February 2012
Vendor Patch: 2 February 2012
Public Disclosure: 22 February 2012
Vulnerability Type: Cross Site Scripting (XSS)
CVE Reference(s): CVE
Advisory ID: HTB23071
Product: 11in1
Vendor: 11in1
Vulnerable Version(s): 1.2.1 stable 12-31-2011 and probably prior
Tested Version: 1.2.1 stable 12-31-2011
Vendor Notification: 25 January 2012
Public Disclosure: 15 February 2012
Vulnerability Type: Local File Inclusion, Сross-Site Request
Advisory ID: HTB23072
Product: LEPTON
Vendor: LEPTON Project
Vulnerable Version(s): 1.1.3 and probably prior
Tested Version: 1.1.3
Vendor Notification: 25 January 2012
Vendor Patch: 4 February 2012
Public Disclosure: 15 February 2012
Vulnerability Type: Local File Inclusion, SQL Injection
Advisory ID: HTB23070
Product: ZENphoto
Vendor: www.zenphoto.org
Vulnerable Version: 1.4.2 and probably prior
Tested Version: 1.4.2
Vendor Notification: 18 January 2012
Vendor Patch: 19 January 2012
Public Disclosure: 8 February 2012
Vulnerability Type: PHP Code Execution, SQL Injection, XSS
Advisory ID: HTB23069
Product: OpenEMR
Vendor: OEMR
Vulnerable Version: 4.1.0 and probably prior
Tested Version: 4.1.0
Vendor Notification: 11 January 2012
Vendor Patch: 29 January 2012
Public Disclosure: 01 February 2012
Vulnerability Type: Local File Inclusion, Arbitrary Command Execution
Advisory ID: HTB23068
Reference:
https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_osclass.html
Product: OSclass
Vendor: osclass.org ( http://osclass.org/ )
Vulnerable Version: 2.3.3 and probably prior
Tested Version: 2.3.3
Vendor Notification: 04 January 2012
Vendor Patch: 16
Advisory ID: HTB23066
Reference: https://www.htbridge.ch/advisory/xss_in_oneorzero_aims.html
Product: OneOrZero AIMS
Vendor: www.oneorzero.com ( http://www.oneorzero.com/ )
Vulnerable Version: 2.8.0 Trial build231211 and probably prior
Tested Version: 2.8.0 Trial build231211
Vendor Notification
15.01.2012 18:30, Henri Salo пишет:
On Wed, Jan 11, 2012 at 11:50:25AM +0100, advis...@htbridge.ch wrote:
Advisory ID: HTB23065
Reference:
https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_knowledgetree_community_edition.html
Product: KnowledgeTree Commercial and Community Editions
Advisory ID: HTB23065
Reference:
https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_knowledgetree_community_edition.html
Product: KnowledgeTree Commercial and Community Editions
Vendor: KnowledgeTree Inc. ( http://knowledgetree.org )
Vulnerable Version: 3.7.0.2 and probably prior
Vulnerability ID: HTB23064
Reference:
https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_impresscms.html
Product: ImpressCMS
Vendor: The ImpressCMS Project ( http://www.impresscms.org/ )
Vulnerable Version: 1.3 Final and probably prior
Tested Version: 1.3 Final
Vendor Notification
Vulnerability ID: HTB23060
Reference: https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_obm.html
Product: OBM
Vendor: obm.org ( http://obm.org )
Vulnerable Version: 2.4.0-rc13 and probably prior
Tested Version: 2.4.0-rc13
Vendor Notification: 30 November 2011
Vulnerability Type: XSS
Vulnerability ID: HTB23061
Reference:
https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_epesi_bim.html
Product: epesi BIM
Vendor: Telaxus LLC ( http://www.epesibim.com/ )
Vulnerable Version: 1.2.0-rev8154 and probably prior
Tested Version: 1.2.0-rev8154
Vendor Notification: 30
1 - 100 of 703 matches
Mail list logo