Latest Vulnerabilities
In the past week, several vulnerabilities have been reported in various products and plugins, including cross-site scripting in a quiz category page, os command injection in a network device, and stack-based overflows in Tenda routers leading to potential code execution. WordPress plugins like Qi Addons, Timetable and Event Schedule, BackUpWordPress, WPC Composite Products, and Form Maker are also affected by SQL injection, directory traversal, and stored cross-site scripting issues. Additionally, default configurations in SANnav OVA could expose systems to security risks. Users should stay vigilant, update their software, and monitor for patches to protect against these vulnerabilities.
Techkshetra Info Solutions Savsoft Quiz Category Page editCategory cross site scripting
Ruijie RG-UAC gre_edit_commit.php os command injection
Tenda i22 formSetUrlFilterRule stack-based overflow
Tenda i21 DhcpSetSe fromDhcpSetSer stack-based overflow
IBM MQ Appliance<=9.3 LTS
IBM MQ Appliance<=9.3 CD
Tenda i21 wifiSSIDset formwrlSSIDset stack-based overflow
Tenda i21 wifiSSIDget formwrlSSIDget stack-based overflow
Tenda i21 formQosManage_user stack-based overflow
The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Countdown Widget's attributes in all versions up to, and including, 1.7.0 due to insufficient inpu...
Tenda i21 formQosManage_auto stack-based overflow
cyanomiko dcnnt-py Notification notifications.py main command injection
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to SQL Injection via the 'events' attribute of the 'mp-timetable' shortcode in all versions up to, and including, 2.4.1...
Tenda i21 formQosManageDouble_auto stack-based overflow
Tenda i21 formQosManageDouble_user stack-based overflow
The BackUpWordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.13 via the hmbkp_directory_browse parameter. This makes it possible for authentica...
The WPC Composite Products for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wooco_components[0][name]' parameter in all versions up to, and including, 7.2.7 d...
The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a user's display name autofilled into forms in all vers...
By default, SANnav OVA is shipped with root user login enabled (CVE-2024-2859)
### Description:
During the source Code Review of the metrics.erb view of the Sidekiq Web UI, A reflected XSS vulnerability is discovered. The value of substr parameter is reflected in the response wi...
rubygems/sidekiq>=7.2.0<7.2.4
Tenda W9 DhcpSetSer fromDhcpSetSer stack-based overflow
Tenda W9 wifiSSIDset formwrlSSIDset stack-based overflow
Z/IP Gateway S2 Nonce Get Denial of Service Vulnerability
Z/IP Gateway Device Reset Locally Denial of Service Vulnerability
MCUboot Injection attack of unprotected TLV values
rubygems/sidekiq>=7.2.0<7.2.4
Tenda W9 wifiSSIDget formwrlSSIDget stack-based overflow
Tenda W9 formQosManageDouble_auto stack-based overflow
Unauthorized access to GET/SET of Slack Bot Tokens in Danswer
Use of Uninitialized Variable Vulnerability in llama.cpp
Tenda W9 formQosManageDouble_user stack-based overflow
Tenda AX1806 SetRebootTimer formSetRebootTimer stack-based overflow
Tenda AX1806 SetOnlineDevName formSetDeviceName stack-based overflow
A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.4 for Windows. A local attacker may be able to elevate their privileges.
Tenda AX1806 execCommand R7WebsSecurityHandler stack-based overflow
Tenda AX1803 SetDDNSCfg formSetSysToolDDNS stack-based overflow
Netgear DG834Gv5 Web Management Interface cleartext storage
### Impact
DoS vuln via OOM using jq in ignoreDifferences.
```
ignoreDifferences:
- group: apps
kind: Deployment
jqPathExpressions:
- 'until(true == false; [.] + [1])'
```
##...
go/github.com/argoproj/argo-cd/v2<2.8.17
go/github.com/argoproj/argo-cd/v2>=2.9.0<2.9.13
go/github.com/argoproj/argo-cd/v2>=2.10.0<2.10.8
Missing authorization check in SAP Enable Now Manager
Claris International has resolved an issue of potentially allowing unauthorized access to records stored in databases hosted on FileMaker Server. This issue has been fixed in FileMaker Server 20.3.2 b...
Claris International has successfully resolved an issue of potentially exposing password information to front-end websites when signed in to the Admin Console with an administrator role. This issue h...
Denial of Service via malicious jqPathExpressions in ignoreDifferences
go/github.com/argoproj/argo-cd/v2<2.8.17
go/github.com/argoproj/argo-cd/v2>=2.9.0<2.9.13
go/github.com/argoproj/argo-cd/v2>=2.10.0<2.10.8
QTS, QuTS hero, QuTScloud
QTS, QuTS hero, QuTScloud
Contact
SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.coBy using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203