BugTraq Latest Security Advisories

Syndicate content
The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!
Updated: 13 min 40 sec ago

BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability

June 27, 2016 - 9:29am

Posted by mehmet on Jun 27

1. ADVISORY INFORMATION
========================================
Title: BigTree CMS <= 4.2.11 Authenticated SQL Injection Vulnerability
Application: BigTree CMS
Remotely Exploitable: Yes
Versions Affected: < 4.2.11
Vendor URL: https://www.bigtreecms.org
Bugs: SQL Injection
Author: Mehmet Ince
Date of found: 27 Jun 2016

2. CREDIT
========================================
Those vulnerabilities was identified during external penetration...
Categories:

[fd] CVE ID request: Untangle NGFW <= v12.1.0 post-auth command injection

June 27, 2016 - 6:36am

Posted by Matt Bush on Jun 27

Product:

https://www.untangle.com/untangle-ng-firewall/

Description:

CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')

The Untangle NGFW <= 12.1.0 web interface is prone to a command injection vulnerability, allowing non-root users to
execute arbitrary commands with root privileges and gain remote shell access to the appliance.

This vulnerability can be triggered via modifying any...
Categories:

MyLittleForum v2.3.5 PHP Command Injection

June 27, 2016 - 6:26am

Posted by hyp3rlinx on Jun 27

[+] Credits: hyp3rlinx

[+] Website: hyp3rlinx.altervista.org

[+] Source: http://hyp3rlinx.altervista.org/advisories/MYLITTLEFORUM-PHP-CMD-EXECUTION.txt

[+] ISR: APPARITIONSEC

Vendor:
=================
mylittleforum.net

Download:
github.com/ilosuna/mylittleforum/releases/tag/v2.3.5

Product:
===================
MyLittleForum 2.3.5

my little forum is a simple PHP and MySQL based internet forum that displays the messages in classical...
Categories:

[slackware-security] php (SSA:2016-176-01)

June 27, 2016 - 6:17am

Posted by Slackware Security Team on Jun 27

[slackware-security] php (SSA:2016-176-01)

New php packages are available for Slackware 14.0, 14.1, and -current to
fix security issues.

Here are the details from the Slackware 14.1 ChangeLog:
+--------------------------+
patches/packages/php-5.6.23-i486-1_slack14.1.txz: Upgraded.
This release fixes bugs and security issues.
For more information, see:
http://php.net/ChangeLog-5.php#5.6.23...
Categories:

[SECURITY] [DSA 3606-1] libpdfbox security update

June 27, 2016 - 6:07am

Posted by Moritz Muehlenhoff on Jun 27

-------------------------------------------------------------------------
Debian Security Advisory DSA-3606-1 security () debian org
https://www.debian.org/security/ Moritz Muehlenhoff
June 24, 2016 https://www.debian.org/security/faq
-------------------------------------------------------------------------

Package : libpdfbox-java
CVE ID : CVE-2016-2175

It was...
Categories:

#146416 Ruby:HTTP Header injection in 'net/http'

June 24, 2016 - 8:03am

Posted by redrain root on Jun 24

TIMELINE
rootredrain submitted a report to Ruby.

show raw
Jun 22nd

Hi,

I would like to report a HTTP Header injection vulnerability in
'net/http' that allows attackers to inject arbitrary headers in
request even create a new evil request.

PoC

require 'net/http'
http = Net::HTTP.new('192.168.30.214','80')
res = http.get("/r.php HTTP/1.1\r\nx-injection: memeda")

Example

Server Code:...
Categories:

SEC Consult SA-20160624-0 :: ASUS DSL-N55U router XSS and information disclosure

June 24, 2016 - 7:50am

Posted by SEC Consult Vulnerability Lab on Jun 24

SEC Consult Vulnerability Lab Security Advisory < 20160624-0 >
=======================================================================
title: XSS and information disclosure vulnerability
product: ASUS DSL-N55U router
vulnerable version: 3.0.0.4.376_2736
fixed version: 3.0.0.4_380_3679
CVE number: requested
impact: Medium
homepage: https://www.asus.com/
found:...
Categories:

[KIS-2016-06] SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability

June 24, 2016 - 7:38am

Posted by Egidio Romano on Jun 24

-----------------------------------------------------------------------------
SugarCRM <= 6.5.18 (MySugar::addDashlet) Insecure fopen() Usage Vulnerability
-----------------------------------------------------------------------------

[-] Software Link:

http://www.sugarcrm.com/

[-] Affected Versions:

Version 6.5.18 CE and other versions.

[-] Vulnerability Description:

The vulnerable code is located within the MySugar::addDashlet() method:...
Categories:

[KIS-2016-05] SugarCRM <= 6.5.18 Two PHP Code Injection Vulnerabilities

June 24, 2016 - 7:26am

Posted by Egidio Romano on Jun 24

---------------------------------------------------------
SugarCRM <= 6.5.18 Two PHP Code Injection Vulnerabilities
---------------------------------------------------------

[-] Software Link:

http://www.sugarcrm.com/

[-] Affected Versions:

Version 6.5.18 CE and prior versions.

[-] Vulnerabilities Description:

1) The vulnerable code is located in the /include/utils/array_utils.php script:

99. function...
Categories:

[KIS-2016-04] SugarCRM <= 6.5.18 Missing Authorization Check Vulnerabilities

June 24, 2016 - 7:16am

Posted by Egidio Romano on Jun 24

--------------------------------------------------------------
SugarCRM <= 6.5.18 Missing Authorization Check Vulnerabilities
--------------------------------------------------------------

[-] Software Link:

http://www.sugarcrm.com/

[-] Affected Versions:

Version 6.5.18 CE and prior versions.

[-] Vulnerabilities Description:

The application fails to properly check whether the user has administrator privileges within the following...
Categories:

[KIS-2016-07] SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability

June 24, 2016 - 7:06am

Posted by Egidio Romano on Jun 24

------------------------------------------------------------------------------
SugarCRM <= 6.5.23 (SugarRestSerialize.php) PHP Object Injection Vulnerability
------------------------------------------------------------------------------

[-] Software Link:

http://www.sugarcrm.com/

[-] Affected Versions:

Version 6.5.23 CE and prior versions.

[-] Vulnerability Description:

The vulnerable code is located in the...
Categories: