[KIS-2022-04] ImpressCMS <= 1.4.3 (findusers.php) SQL Injection Vulnerability
Posted by Egidio Romano on Mar 22 --------------------------------------------------------------- ImpressCMS <= 1.4.3 (findusers.php) SQL Injection Vulnerability --------------------------------------------------------------- [-] Software Link: https://www.impresscms.org [-] Affected Versions: Version 1.4.3...
[KIS-2022-03] ImpressCMS <= 1.4.2 (findusers.php) Incorrect Access Control Vulnerability
Posted by Egidio Romano on Mar 22 -------------------------------------------------------------------------- ImpressCMS <= 1.4.2 (findusers.php) Incorrect Access Control Vulnerability -------------------------------------------------------------------------- [-] Software Link: https://www.impresscms.org [-] Affected Versions: Version...
[KIS-2022-02] ImpressCMS <= 1.4.2 (image-edit.php) Path Traversal Vulnerability
Posted by Egidio Romano on Mar 22 ----------------------------------------------------------------- ImpressCMS <= 1.4.2 (image-edit.php) Path Traversal Vulnerability ----------------------------------------------------------------- [-] Software Link: https://www.impresscms.org [-] Affected Versions: Version 1.4.2...
[KIS-2022-01] ImpressCMS <= 1.4.2 (autologin.php) Authentication Bypass Vulnerability
Posted by Egidio Romano on Mar 22 ----------------------------------------------------------------------- ImpressCMS <= 1.4.2 (autologin.php) Authentication Bypass Vulnerability ----------------------------------------------------------------------- [-] Software Link: https://www.impresscms.org [-] Affected Versions: Version 1.4.2...
swaylock-1.6-1.fc34
FEDORA-2022-194c3da292 Packages in this update: swaylock-1.6-1.fc34 Update description: Update to version 1.6. Contains security fix for CVE-2022-26530. Read More
USN-5339-1: Linux kernel vulnerabilities
Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the Linux kernel did not properly restrict access to the cgroups v1 release_agent feature....
USN-5338-1: Linux kernel vulnerabilities
Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the Linux kernel did not properly restrict access to the cgroups v1 release_agent feature....
USN-5337-1: Linux kernel vulnerabilities
It was discovered that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use...
ZDI-22-517: Apple Safari WebGLMultiDraw Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple Safari. User interaction is required to exploit this vulnerability in that...
unrealircd-5.2.4-1.fc34
FEDORA-2022-47da296f2b Packages in this update: unrealircd-5.2.4-1.fc34 Update description: UnrealIRCd 5.2.4 This release fixes a crash bug that can be triggered by ordinary users. Fixes Fix...