Home | Latest News | Popular News | Our Network | About | Contact
Security Advisories & Vulnerabilities | www.SecurityPhresh.com
Security Advisories & Vulnerabilities
Showing 'Security Advisories & Vulnerabilities' from 21 to 30
[slackware-security] Zsh (SSA:2019-013-01)
14th Jan 2019 [6 days ago] from Seclist
Posted by Slackware Security Team on Jan 14[slackware-security] zsh (SSA:2019-013-01)New zsh packages are available for Slackware 14.0, 14.1, and 14.2 to fix security issues.Here are the details from the Slackware 14.2 ChangeLog: +--+ patches/packages/zsh-5.6.2-i586-1_slack14.2.txz:...
X41 D-Sec GmbH Security Advisory X41-2018-009: ReDoS Vulnerability In UA-Parser
10th Jan 2019 [9 days ago] from Seclist
Posted by X41 D-Sec GmbH Advisories on Jan 10X41 D-SEC GmbH Security Advisory: X41-2018-009ReDoS Vulnerability in UA-ParserSeverity Rating: Medium Confirmed Affected Versions: 2015-05-14 and newer, commit 6fd6c261274254bcbbacd77ef4b12534c7f9923d Confirmed...
[SECURITY] [DSA 4365-1] Tmpreaper Security Update
10th Jan 2019 [9 days ago] from Seclist
Posted by Moritz Muehlenhoff on Jan 10- Debian Security Advisory DSA-4365-1 security () debian org https://www.debian.org/security/ Moritz Muehlenhoff January 10, 2019 https://www.debian.org/security/faq -Package...
Shield CMS 2.2 Cross Site Request Forgery / SQL Injection
10th Jan 2019 [9 days ago] from PacketStormSecurity
Shield CMS version 2.2 suffers from cross site request forgery and remote SQL injection vulnerabilities.
Systemd-journald Memory Corruption / Information Leak
9th Jan 2019 [10 days ago] from PacketStormSecurity
This is a thorough analysis of how Qualys approached exploiting three vulnerabilities in systemd-journald. Although they have not released formal exploits yet, they detail in here is useful in understanding the flaws.
Cisco VoIP Script Insertion / Weak Passwords / Undocumented Functionality
9th Jan 2019 [10 days ago] from PacketStormSecurity
Cisco VoIP phone such as models 88XX suffer from script insertion, weak and hard-coded passwords, undocumented debug functionality, and various outdated components with known vulnerabilities.
System Down: A Systemd-journald Exploit
9th Jan 2019 [10 days ago] from Seclist
Posted by Qualys Security Advisory on Jan 09Qualys Security AdvisorySystem Down: A systemd-journald exploit Contents Summary CVE-2018-16864 - Analysis - Exploitation CVE-2018-16865 - Analysis - Exploitation CVE-2018-16866 - Analysis - Exploitation Combined...
SEC Consult SA-20190109-0 :: Multiple Vulnerabilities In Cisco VoIP Phones (88xx Series)
9th Jan 2019 [10 days ago] from Seclist
Posted by SEC Consult Vulnerability Lab on Jan 09SEC Consult Vulnerability Lab Security Advisory 20190109-0 ===title: Multiple Vulnerabilitiesproduct: Cisco VoIP Phones, e.g. models 88XXvulnerable version: See list of vulnerable devices/firmwares...
ZenPhoto 1.4.14 Cross Site Scripting
8th Jan 2019 [11 days ago] from PacketStormSecurity
ZenPhoto version 1.4.14 suffers from multiple cross site scripting vulnerabilities.
Webgalamb Information Disclosure / XSS / CSRF / SQL Injection
7th Jan 2019 [13 days ago] from PacketStormSecurity
Webgalamb suffers from remote code execution, cross site request forgery, cross site scripting, information leakage, and remote SQL injection vulnerabilities.
« Newer 1 2 3 4 5 6 7 8 9 10 Older »