Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 28228 of 28407

CVE-2016-5312

Posted by Cyberthreat Blog | Apr 14, 2017 | CVE Notifications |

Directory traversal vulnerability in the charting component in Symantec Messaging Gateway before 10.6.2 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the sn parameter to...

CVE-2017-7877

Posted by Cyberthreat Blog | Apr 14, 2017 | CVE Notifications |

CSRF vulnerability in flatCore version 1.4.6 allows remote attackers to modify CMS configurations.

CVE-2017-7357

Posted by Cyberthreat Blog | Apr 14, 2017 | CVE Notifications |

Hipchat Server before 2.2.3 allows remote authenticated users with Server Administrator level privileges to execute arbitrary code by importing a file.

CVE-2017-7875

Posted by Cyberthreat Blog | Apr 14, 2017 | CVE Notifications |

In wallpaper.c in feh before v2.18.3, if a malicious client pretends to be the E17 window manager, it is possible to trigger an out-of-boundary heap write while receiving an IPC message. An integer overflow leads to a buffer...

CVE-2017-7871

Posted by Cyberthreat Blog | Apr 14, 2017 | CVE Notifications |

trollepierre/tdm before 2017-04-13 is vulnerable to a reflected XSS in tdm-master/webhook.php (challenge parameter).

Author: Cyberthreat Blog

CVE-2016-5312

CVE-2017-7877

CVE-2017-7357

CVE-2017-7875

CVE-2017-7871