Local Privilege Escalation in OpenBSD’s dynamic loader
Overview : OpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in setuid programs can be defeated by setting…
Octeth Oempro 4.7 allows SQL injection
Overview : Octeth Oempro 4.7 found a SQL injection. The parameter "CampaignID" in "Campaign.Get" is vulnerable to SQL Injection attacks. Affected Product(s) : Oempro -…
AWS Firecracker through v0.19.0 has a Buffer Overflow vuln
Overview : A logical error in bounds checking performed on vsock virtio descriptors can be used by a malicious guest to read from and write…
Accentis Content Resource Management System suffer from a remote SQL injection vulnerability.
Overview : Accentis Content Resource Management System versions released prior to the October 2015 patch suffer from a remote SQL injection vulnerability. Affected Product(s) :…
Accentis Content Resource Management System suffer from a cross site scripting vulnerability.
Overview : Accentis Content Resource Management System versions released prior to the October 2015 patch suffer from a cross site scripting vulnerability. Affected Product(s) :…
Multiple issues in Cloud Foundry Products
Overview : UAA logs all query parameters with debug logging level Affected Product(s) : CF Deployment All versions prior to v12.12.0 UAA Release All versions…