Jedesmal, wenn mit eingeschaltetem AdBlocker eine Webseite besucht wird, stirbt in einem Labor ein unschuldiges, niedliches Kaninchen einen grausamen Tod! Zusätzlich werden einige Funktionen dieser Webseite durch den AdBlocker blockiert. Bitte deaktivieren Sie Ihren AdBlocker für diese Webseite und retten Sie unschuldige Kaninchen!
Sie können durch Schliessen dieses Fensters natürlich mit AdBlocker weitermachen - wenn Sie mit dieser Schuld leben können .... es liegt an Ihnen - AdBlocker abschalten und ruhig schlafen können oder mit AdBlocker weitermachen und von übelsten Albträumen gequält werden!
Wir haben Sie gewarnt ....
Search - Review
plg_search_jdownloads
Search - K2
Suche - Kategorien
Suche - Kontakte
Suche - Inhalt
Suche - Newsfeeds
Suche - Schlagwörter
Script Security (4)
Im Sinne der Aktualität sind diese News grösstenteils in englischer Sprache. Falls nötig, bitte die Übersetzungsfunktion verwenden.
-
Red Hat Security Advisory 2019-2466-01
Ruby Files ≈ Packet Storm Aug 13, 2019 | 16:33 pmRed Hat Security Advisory 2019-2466-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web[…]
Read more... -
Red Hat Security Advisory 2019-2028-01
Ruby Files ≈ Packet Storm Aug 6, 2019 | 22:58 pmRed Hat Security Advisory 2019-2028-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include code execution, cross site scripting, denial of service, deserialization, and[…]
Read more... -
Red Hat Security Advisory 2019-1972-01
Ruby Files ≈ Packet Storm Jul 30, 2019 | 20:55 pmRed Hat Security Advisory 2019-1972-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a code execution vulnerability.
Read more... -
Red Hat Security Advisory 2019-1948-01
Ruby Files ≈ Packet Storm Jul 30, 2019 | 20:14 pmRed Hat Security Advisory 2019-1948-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. A name equality check issue was addressed.
Read more... -
Red Hat Security Advisory 2019-1833-01
Ruby Files ≈ Packet Storm Jul 24, 2019 | 16:44 pmRed Hat Security Advisory 2019-1833-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web[…]
Read more... -
Debian Security Advisory 4481-1
Ruby Files ≈ Packet Storm Jul 13, 2019 | 20:22 pmDebian Linux Security Advisory 4481-1 - Harsh Jaiswal discovered a remote shell execution vulnerability in ruby-mini-magick, a Ruby library providing a wrapper around ImageMagick or GraphicsMagick, exploitable when using MiniMagick::Image.open with specially crafted URLs coming from unsanitized user input.
Read more... -
Red Hat Security Advisory 2019-1429-01
Ruby Files ≈ Packet Storm Jun 11, 2019 | 16:56 pmRed Hat Security Advisory 2019-1429-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web[…]
Read more... -
Red Hat Security Advisory 2019-1289-01
Ruby Files ≈ Packet Storm May 29, 2019 | 15:27 pmRed Hat Security Advisory 2019-1289-01 - Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller framework for web[…]
Read more... -
Red Hat Security Advisory 2019-1235-01
Ruby Files ≈ Packet Storm May 15, 2019 | 20:44 pmRed Hat Security Advisory 2019-1235-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a code execution vulnerability.
Read more... -
Red Hat Security Advisory 2019-1151-01
Ruby Files ≈ Packet Storm May 13, 2019 | 17:14 pmRed Hat Security Advisory 2019-1151-01 - Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Issues addressed include a code execution vulnerability.
Read more...
Published in: Script Security
-
YouPHPTube 7.2 SQL Injection
PHP Files ≈ Packet Storm Aug 19, 2019 | 18:46 pmYouPHPTube version 7.2 suffers from a remote SQL injection vulnerability in userCreate.json.php.
Read more... -
Red Hat Security Advisory 2019-2519-01
PHP Files ≈ Packet Storm Aug 19, 2019 | 17:07 pmRed Hat Security Advisory 2019-2519-01 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Issues addressed include buffer overflow, bypass, cross site scripting, denial of service, information leakage, and null pointer vulnerabilities.
Read more... -
Ubuntu Security Notice USN-4097-1
PHP Files ≈ Packet Storm Aug 14, 2019 | 04:37 amUbuntu Security Notice 4097-1 - It was discovered that PHP incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code.
Read more... -
Ubuntu Security Notice USN-4097-2
PHP Files ≈ Packet Storm Aug 14, 2019 | 04:37 amUbuntu Security Notice 4097-2 - USN-4097-1 fixed several vulnerabilities in php5. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. It was discovered that PHP incorrectly handled certain images. An attacker could possibly use this[…]
Read more... -
Joomla JS Support Ticket 1.1.6 SQL Injection
PHP Files ≈ Packet Storm Aug 12, 2019 | 19:53 pmJoomla JS Support Ticket component version 1.1.6 suffers from a remote SQL injection vulnerability in ticketreply.php.
Read more... -
BSI Advance Hotel Booking System 2.0 Cross Site Scripting
PHP Files ≈ Packet Storm Aug 12, 2019 | 19:52 pmBSI Advance Hotel Booking System version 2.0 suffers from a persistent cross site scripting vulnerability in booking_details.php.
Read more... -
Joomla JS Support Ticket 1.1.6 Arbitrary File Deletion
PHP Files ≈ Packet Storm Aug 12, 2019 | 19:23 pmJoomla JS Support Ticket component version 1.1.6 suffers from an arbitrary file deletion vulnerability in ticket.php.
Read more... -
UNA 10.0.0 RC1 Cross Site Scripting
PHP Files ≈ Packet Storm Aug 12, 2019 | 19:22 pmUNA version 10.0.0 RC1 suffers from a persistent cross site scripting vulnerability in polyglot.php.
Read more... -
Joomla JS Jobs 1.2.5 SQL Injection
PHP Files ≈ Packet Storm Aug 12, 2019 | 19:18 pmJoomla JS Jobs component version 1.2.5 suffers from a remote SQL injection vulnerability in cities.php.
Read more... -
osTicket 1.12 Cross Site Scripting
PHP Files ≈ Packet Storm Aug 11, 2019 | 19:57 pmAn issue was discovered in osTicket versions before 1.10.7 and 1.12.x before 1.12.1. Stored XSS exists in setup/install.php. It was observed that no input sanitization was provided in the firstname and lastname fields of the application. The insertion of malicious[…]
Read more...
Published in: Script Security
-
Ubuntu Security Notice USN-4059-1
CGI Files ≈ Packet Storm Jul 16, 2019 | 22:09 pmUbuntu Security Notice 4059-1 - It was discovered that Squid incorrectly handled certain SNMP packets. A remote attacker could possibly use this issue to cause memory consumption, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS[…]
Read more... -
ABB IDAL HTTP Server Authentication Bypass
CGI Files ≈ Packet Storm Jun 21, 2019 | 22:32 pmThe IDAL HTTP server CGI interface contains a URL, which allows an unauthenticated attacker to bypass authentication and gain access to privileged functions. In the IDAL CGI interface, there is a URL (/cgi/loginDefaultUser), which will create a session in an[…]
Read more... -
Telus Actiontec WEB6000Q Denial Of Service
CGI Files ≈ Packet Storm Jun 12, 2019 | 20:44 pmTelus Actiontec WEB6000Q with firmware 1.1.02.22 suffers from a denial of service vulnerability. By querying CGI endpoints with empty (GET/POST/HEAD) requests causes a Segmentation Fault of the uhttpd webserver. Since there is no watchdog on this daemon, a device reboot[…]
Read more... -
RICOH SP 4520DN Printer HTML Injection
CGI Files ≈ Packet Storm May 9, 2019 | 20:22 pmAn HTML Injection vulnerability has been discovered on the RICOH SP 4520DN via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn or entryDisplayNameIn parameter.
Read more... -
RICOH SP 4510DN Printer HTML Injection
CGI Files ≈ Packet Storm May 9, 2019 | 16:55 pmAn HTML Injection vulnerability has been discovered on the RICOH SP 4510DN via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.
Read more... -
Sierra Wireless AirLink ES450 ACEManager template_load.cgi Information Disclosure
CGI Files ≈ Packet Storm Apr 27, 2019 | 19:20 pmAn exploitable information disclosure vulnerability exists in the ACEManager template_load.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a information leak, resulting in the disclosure of internal paths and files. An attacker can[…]
Read more... -
Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Set_Task.cgi Permission Assignment
CGI Files ≈ Packet Storm Apr 27, 2019 | 01:55 amAn exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a arbitrary setting writes, resulting in the unverified changes to any system setting. An attacker[…]
Read more... -
Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Get_Task.cgi Information Disclosure
CGI Files ≈ Packet Storm Apr 27, 2019 | 01:44 amAn exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an information disclosure, resulting in the exposure of confidential information, including, but not limited to,[…]
Read more... -
Sierra Wireless AirLink ES450 ACEManager ping_result.cgi Cross Site Scripting
CGI Files ≈ Packet Storm Apr 26, 2019 | 23:01 pmAn exploitable cross-site scripting vulnerability exists in the ACEManager ping_result.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP ping request can cause reflected javascript code execution, resulting in the execution of javascript code running on the[…]
Read more... -
Sierra Wireless AirLink ES450 ACEManager upload.cgi Remote Code Execution
CGI Files ≈ Packet Storm Apr 26, 2019 | 23:01 pmAn exploitable remote code execution vulnerability exists in the upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can upload a file, resulting in executable code being uploaded, and routable, to the webserver. An attacker[…]
Read more...
snaplitics made a real revolution in the industry.
Published in: Script Security
-
Debian Security Advisory 4498-1
Python Files ≈ Packet Storm Aug 12, 2019 | 19:14 pmDebian Linux Security Advisory 4498-1 - Several vulnerabilities were discovered in python-django, a web development framework. They could lead to remote denial-of-service or SQL injection,
Read more... -
Scapy Packet Manipulation Tool 2.4.3
Python Files ≈ Packet Storm Aug 7, 2019 | 22:38 pmScapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from[…]
Read more... -
Red Hat Security Advisory 2019-2035-01
Python Files ≈ Packet Storm Aug 6, 2019 | 23:10 pmRed Hat Security Advisory 2019-2035-01 - The python-requests package contains a library designed to make HTTP requests easy for developers.
Read more... -
Red Hat Security Advisory 2019-2030-01
Python Files ≈ Packet Storm Aug 6, 2019 | 22:54 pmRed Hat Security Advisory 2019-2030-01 - Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as[…]
Read more... -
Red Hat Security Advisory 2019-2272-01
Python Files ≈ Packet Storm Aug 6, 2019 | 22:48 pmRed Hat Security Advisory 2019-2272-01 - The python-urllib3 package provides the Python HTTP module with connection pooling and file POST abilities. An access check and a CRLF injection vulnerability were addressed.
Read more... -
Red Hat Security Advisory 2019-2298-01
Python Files ≈ Packet Storm Aug 6, 2019 | 22:47 pmRed Hat Security Advisory 2019-2298-01 - The libarchive programming library can create and read several different streaming archive formats, including GNU tar, cpio, and ISO 9660 CD-ROM images. Libarchive is used notably in the bsdtar utility, scripting language bindings such[…]
Read more... -
Scapy Packet Manipulation Tool 2.4.3rc4
Python Files ≈ Packet Storm Jul 30, 2019 | 20:30 pmScapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from[…]
Read more... -
Scapy Packet Manipulation Tool 2.4.3rc3
Python Files ≈ Packet Storm Jul 12, 2019 | 13:58 pmScapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from[…]
Read more... -
Red Hat Security Advisory 2019-1742-01
Python Files ≈ Packet Storm Jul 12, 2019 | 01:33 amRed Hat Security Advisory 2019-1742-01 - openstack-tripleo-common contains the python library for code common to the Red Hat OpenStack Platform director CLI and GUI.
Read more... -
Red Hat Security Advisory 2019-1728-01
Python Files ≈ Packet Storm Jul 11, 2019 | 01:02 amRed Hat Security Advisory 2019-1728-01 - This Python package provides a dynamic vendordata plugin for the OpenStack nova metadata service to manage host instantiation in an IPA server. A missing folder issue was addressed.
Read more...
Published in: Script Security