WordPress JoomSport 3.3 SQL Injection
WordPress JoomSport plugin version 3.3 suffers from a remote SQL injection vulnerability.
View ArticleRed Hat Security Advisory 2019-2002-01
Red Hat Security Advisory 2019-2002-01 - Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets....
View ArticleRed Hat Security Advisory 2019-2400-01
Red Hat Security Advisory 2019-2400-01 - Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Issues addressed include a buffer...
View ArticleRed Hat Security Advisory 2019-2402-01
Red Hat Security Advisory 2019-2402-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism...
View ArticleRed Hat Security Advisory 2019-2401-01
Red Hat Security Advisory 2019-2401-01 - The procps-ng packages contain a set of system utilities that provide system information, including ps, free, skill, pkill, pgrep, snice, tload, top, uptime,...
View ArticleRed Hat Security Advisory 2019-2403-01
Red Hat Security Advisory 2019-2403-01 - Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by...
View ArticleRed Hat Security Advisory 2019-2399-01
Red Hat Security Advisory 2019-2399-01 - The libssh2 packages provide a library that implements the SSH2 protocol. Issues addressed include an out of bounds write vulnerability.
View ArticleRed Hat Security Advisory 2019-2405-01
Red Hat Security Advisory 2019-2405-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
View ArticleUbuntu Security Notice USN-4088-1
Ubuntu Security Notice 4088-1 - It was discovered that PHP incorrectly handled certain regular expressions. An attacker could possibly use this issue to expose sensitive information, cause a denial of...
View ArticleRed Hat Security Advisory 2019-2411-01
Red Hat Security Advisory 2019-2411-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system.
View ArticleUbuntu Security Notice USN-4089-1
Ubuntu Security Notice 4089-1 - It was discovered that Rack incorrectly handled carefully crafted requests. A remote attacker could use this issue to execute a cross-site scripting attack.
View ArticleOpencart 3.0.3.2 Insecure OCMod Generation Pre-Authentication Remote Code...
Opencart versions 3.0.3.2 and below insecure OCMod generation pre-authentication remote code execution exploit.
View ArticleScapy Packet Manipulation Tool 2.4.3
Scapy is a powerful interactive packet manipulation tool, packet generator, network scanner, network discovery tool, and packet sniffer. It provides classes to interactively create packets or sets of...
View ArticleiOS Messaging Tools
This repository contains several tools Project Zero uses to test iPhone messaging. It includes SmsSimulator: an SMS simulator for iPhone, iMessage: tools for sending and dumping iMessage messages, and...
View ArticleFortinet FortiRecorder 2.7.3 Hardcoded Password
Fortinet FortiRecorder versions 2.7.3 and below have a hardcoded password vulnerability.
View ArticleDaily Expense Manager 1.0 Cross Site Request Forgery
Daily Expense Manager version 1.0 suffers from a cross site request forgery vulnerability.
View Article