Topic

PHP

A collection of 32 issues

CVE-2022-23952 Keylime's old keylime.conf file contained sensitive data as it was readable by the world.

This data is now safely stored in your server’s configuration file. This change was made to reduce the risk of installing keylime on a production server. You can now safely configure keylime and deploy it on your production server. You should ensure that your server’s security is up

CVE-2022-39220 SFTPGo is an SFTP server written in Go. Versions prior to 2.3.5 are vulnerable to Cross-site scripting (XSS) attacks due to a WebClient bug. An update is available.

SFTPGo is susceptible to Cross-site scripting (XSS) vulnerabilities in the WebClient component. According to the vendor, these vulnerabilities have been fixed in version 2.3.5. No known workarounds exist. SFTPGo is susceptible to Cross-site scripting (XSS) vulnerabilities in the WebClient component. According to the vendor, these vulnerabilities have been

CVE-2022-3231 Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.9.0.

It has now been patched. Prior to the patch, XSS could be exploited by an attacker to inject malicious scripts into almost any LibreNMS page, including the login page and the admin panel. There is no effective way to prevent XSS in LibreNMS, but here's a few things you can

CVE-2022-38402 Adobe InCopy versions 17.3 and earlier are vulnerable to a Heap-based Buffer Overflow that could give remote code execution to the user who runs the affected application.

In the majority of cases, InCopy will close the file before the user has a chance to open it. This prevents InCopy from being exploited. However, in the event that a user were to open a malicious file, an attacker could leverage other vulnerabilities to exploit InCopy. CVE-2018-5704: Heap-Based Buffer

CVE-2022-38401 Adobe InCopy versions 17.3 and earlier are vulnerable to a Heap-based Buffer Overflow that could give remote code execution to the user who runs the affected application.

In the majority of cases, InCopy will close the file before the user has a chance to open it. This prevents InCopy from being exploited. However, in the event that a user were to open a malicious file, an attacker could leverage other vulnerabilities to exploit InCopy. CVE-2018-5704: Heap-Based Buffer

CVE-2022-2799 The Affiliates Manager WordPress plugin before 2.9.14 has unsafe settings that allow attackers to do Cross-Site Scripting.

Plugin writers are encouraged to review the settings they have access to to make sure they are only accessible to the WordPress roles that they should have access to. This update also removes the unfiltered_html capability from the Affiliates Manager settings page, which is not recommended to leave enabled

CVE-2022-38303 Leave Management System v1.0 had a SQL injection vulnerability via the id parameter.

An attacker can exploit this to inject PHP code, extract data, or execute arbitrary SQL commands. This is often a vector for hackers to exploit. An attacker can exploit this to inject PHP code, extract data, or execute arbitrary SQL commands. This is often a vector for hackers to exploit.

CVE-2022-37299 An issue was discovered in Shirne CMS 1.2.0

If a user has access to the /static/ueditor/php/ directory, an attacker could exploit the vulnerability. The Shirne CMS version affected is 1.2.0. In Shirne CMS, there is a directory called /static/ueditor/php/. If a user has access to this directory and has permissions to edit

CVE-2022-38260 The Interview Management System v1.0 had a SQL injection vulnerability.

A remote user or attacker can inject arbitrary SQL commands to the system, and the system will execute the command. If SQL injection is not blocked, it can lead to the information leak, data manipulation, or even the system denial and crashing. Recommended precautionary measures to prevent SQL injection attacks

CVE-2022-32548 An issue was found on certain DrayTek Vigor routers before July 2022, such as the Vigor3910 4.3.1.1

An attacker can access or modify the aa or ab field to execute arbitrary code or cause a denial of service condition. When running the DrayTek Vigor3910 before 4.3.1.1 with CPanel or DirectAdmin and DrayTek Vigor 8/Vigor2900/Vigor2950 before 4.3.1.1 with CPanel or