A vulnerability, which was classified as problematic, has been found in Pi-hole AdminLTE up to 5.7. This issue affects an unknown part of the component FTLDNS. Upgrading to version 5.8 eliminates this vulnerability. The upgrade is hosted for download at github.com. Applying the patch 01191c7a1b8d5032991ed9d88e0db8d3dbec744d is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Pi-hole AdminLTE up to 5.7 FTLDNS cross site scripting
- Virtual Patching
- October 26, 2021
- 10:04 pm
Contact us to get started
CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
CVE-2022-20651 : CISCO ADAPTIVE SECURITY DEVICE MANAGER LOG FILE
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker
CVE-2022-32549 : APACHE SLING COMMONS LOG/SLING API NEUTRALIZATION FOR LOGS
Description Apache Sling Commons Log