Category Archives: Advisories

CVE-2021-36861 (rich_review)

August 5, 2022

Read Time:7 Second

Cross-Site Request Forgery (CSRF) vulnerability in Rich Reviews by Starfish plugin <= 1.9.14 at WordPress allows an attacker to delete reviews.

Advisories

CVE-2016-3098

August 5, 2022

Read Time:7 Second

Cross-site request forgery (CSRF) vulnerability in administrate 0.1.4 and earlier allows remote attackers to hijack the user’s OAuth autorization code.

Advisories

rubygem-rails-html-sanitizer-1.4.3-1.fc37

August 5, 2022

Read Time:27 Second

FEDORA-2022-9cd3e3a570

Packages in this update:

rubygem-rails-html-sanitizer-1.4.3-1.fc37

Update description:

Automatic update for rubygem-rails-html-sanitizer-1.4.3-1.fc37.

Changelog

* Fri Aug 5 2022 Vít Ondruch <vondruch@redhat.com> – 1.4.3-1
– Update to rails-html-sanitizer 1.4.3.
Resolves: rhbz#2095592
Resolves: rhbz#2101883
Resolves: rhbz#2113699
* Sat Jul 23 2022 Fedora Release Engineering <releng@fedoraproject.org> – 1.4.2-3
– Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild

Advisories

net-snmp-5.9.3-1.fc36

August 5, 2022

Read Time:7 Second

FEDORA-2022-3af7a32fc0

Packages in this update:

net-snmp-5.9.3-1.fc36

Update description:

New upstream release 5.9.3

Advisories

mingw-gdk-pixbuf-2.42.8-1.fc35

August 5, 2022

Read Time:8 Second

FEDORA-2022-7254ec5e96

Packages in this update:

mingw-gdk-pixbuf-2.42.8-1.fc35

Update description:

Update to 2.42.8, fixes CVE-2021-46829.

Advisories

owncloud-client-2.10.1-1.fc35

August 5, 2022

Read Time:7 Second

FEDORA-2022-d6faaa50eb

Packages in this update:

owncloud-client-2.10.1-1.fc35

Update description:

Security fix for CVE-2021-44537

Advisories

ZDI-22-1064: OPC Foundation UA .NET Standard BrowseRequest Missing Authentication Information Disclosure Vulnerability

August 5, 2022

Read Time:8 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of OPC Foundation UA .NET Standard. Authentication is not required to exploit this vulnerability.

Advisories

ZDI-22-1063: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-1062: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Advisories

ZDI-22-1061: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

August 5, 2022

Read Time:12 Second

Cyber Security News

Category Archives: Advisories

CVE-2021-36861 (rich_review)

CVE-2016-3098

rubygem-rails-html-sanitizer-1.4.3-1.fc37

FEDORA-2022-9cd3e3a570

Packages in this update:

Update description:

Changelog

net-snmp-5.9.3-1.fc36

FEDORA-2022-3af7a32fc0

Packages in this update:

Update description:

mingw-gdk-pixbuf-2.42.8-1.fc35

FEDORA-2022-7254ec5e96

Packages in this update:

Update description:

owncloud-client-2.10.1-1.fc35

FEDORA-2022-d6faaa50eb

Packages in this update:

Update description:

ZDI-22-1064: OPC Foundation UA .NET Standard BrowseRequest Missing Authentication Information Disclosure Vulnerability

ZDI-22-1063: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1062: Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability

ZDI-22-1061: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

News, Advisories and much more