Debian Linux Security Advisory 5442-1 - It was discovered that in some conditions the Flask web framework may disclose a session cookie.
aa6d14052aaef5c3f2f5663a043beb788af85ae3566b7681bf1690ce3b9024edGZ Multi Hotel Booking System version 1.8 suffers from a cross site scripting vulnerability.
fe020ffbd6df1cec59fc72645f8a3b07889f59788f64fdf7d930f7ae5c91b64bRed Hat Security Advisory 2023-3954-01 - This release of Red Hat Fuse 7.12 serves as a replacement for Red Hat Fuse 7.11 and includes bug fixes and enhancements, which are documented in the Release Notes document linked in the References. Issues addressed include bypass, code execution, denial of service, information leakage, resource exhaustion, server-side request forgery, and traversal vulnerabilities.
b9ad17c0639a99e73879d0ac2298fc210c934f52c497fb63d77d3a07270b9229Ubuntu Security Notice 6194-1 - Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. Xingyuan Mo and Gengjia Chen discovered that the io_uring subsystem in the Linux kernel did not properly handle locking when IOPOLL mode is being used. A local attacker could use this to cause a denial of service.
fceff39cebcf2eeca72cba0027daddd4cbde95c5ba78c11be2eb7d1492b62426GZ E Learning Platform version 1.8 suffers from a cross site scripting vulnerability.
f64de0b759c21ad615376decd3daa88b83ccdd6a5ba15b06631d4bef839553c1Ubuntu Security Notice 6193-1 - Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that for some Intel processors the INVLPG instruction implementation did not properly flush global TLB entries when PCIDs are enabled. An attacker could use this to expose sensitive information or possibly cause undesired behaviors.
4b76c4de98e7b426449b5a65a6482a91abc939845c13fcd49eb6cd4503d006c9CRM Platform version 1.8 suffers from a cross site scripting vulnerability.
62a955c5b319e7e27064e89b6039f0869a1d06d8c67561c5d8e361472b805999Ubuntu Security Notice 6192-1 - Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. Xingyuan Mo and Gengjia Chen discovered that the io_uring subsystem in the Linux kernel did not properly handle locking when IOPOLL mode is being used. A local attacker could use this to cause a denial of service.
da679621444278bc95d49b6be4fe1cd8efc0acf577ac8dc9ee31c3abcc48236bRed Hat Security Advisory 2023-3947-01 - The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Issues addressed include a bypass vulnerability.
7bd39341b23738e6a4424444d9f30d6f212e59d7ef346e4605eb6ffb00bb954bGZ Forum Script version 1.8 suffers from a cross site scripting vulnerability.
6bd27c5c4cc8aba6c22ca8848237f65e5d3a7c37736b62e2af6f50ec42127f9cRed Hat Security Advisory 2023-3950-01 - The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Issues addressed include a bypass vulnerability.
bac58cc6d39420b540162ab0add0c7fac8081a04c1715132d1b50b7d8b7ac33aDebian Linux Security Advisory 5441-1 - Two vulnerabilities were found in maradns, an open source domain name system (DNS) implementation, that may lead to denial of service and unintended domain name resolution.
42371e88c20f5ab5164b61bc77060d6493521b1c8de05e5c0712deb0f97d3b4cUbuntu Security Notice 6191-1 - USN-6081-1, USN-6084-1, USN-6092-1 and USN-6095-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a spurious warning in the IPv6 subsystem. This update removes the undesired warning message.
5edc7f3731b978d965691b556886cef58096e4273a4b087afd9a9646da08c017GZ Hotel Booking Script version 1.8 suffers from a cross site scripting vulnerability.
1cd478a433cba3e46a0adfeb72aab5a6e5005b8265ce29fac01a68af2295ec14Ticket Booking Script version 1.8 suffers from a cross site scripting vulnerability.
d4a21286a00b28b8cc18792f3d78fc014fd7834875a5875266815186b482f2a3Red Hat Security Advisory 2023-3936-01 - Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Issues addressed include a bypass vulnerability.
5f8ab79bf32667711cc472ad5ed9fc7d386b2c8a961f61650fc73a165b02f06bRed Hat Security Advisory 2023-3932-01 - Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for MySQL and PostgreSQL. Issues addressed include a bypass vulnerability.
522d1aea0ab403ca845b7c7f05932cbda0c7f8e532c39eb79f550d039d5fab40Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about Falco as a mix between snort, ossec and strace.
4008173e88e0351c576d152e12bf9fc4fdd8eb8410ce9dcff793d24c89981b30WordPress Ultimate Member plugin versions 2.6.6 and below suffer from a privilege escalation vulnerability.
f5d75217bac851597070df579c5cffbcbc42ab75dddb1476c2fdcaa31a651b75GZ Appointment Scheduling version 1.8 suffers from a cross site scripting vulnerability.
199d4e134ffc8bf451bf7d9a9a76e51f074673a986dd081a509653edf98f9898Debian Linux Security Advisory 5440-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
f84596c62fb724d073ebd5b72c07a6885f8cf5d47b41525b97b64ea0282c14bcProperty Listing Script version 1.0 suffers from a cross site scripting vulnerability.
6fa8fcfd630a483d49fc934be31a1b423cb69fd07e2bc5e726c7ccb472df3c5dCar Listing Script version 1.8 suffers from a cross site scripting vulnerability.
3ff9292c826e68cb45cbb3838b7388c5f15f34e41767703a0fb8b33482b3dc69Red Hat Security Advisory 2023-3948-01 - The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Issues addressed include a bypass vulnerability.
d7f5bf54c95f76bc8cac732bbb6c83db36c8a03ed42162c01a6dea3d9e347986Red Hat Security Advisory 2023-3946-01 - The Open Virtual Machine Tools are the open source implementation of the VMware Tools. They are a set of guest operating system virtualization components that enhance performance and user experience of virtual machines. Issues addressed include a bypass vulnerability.
bf67955398ee05e2c45a45523ee7af80fa60e4aae4610f46faaff54c5a5eec79
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed