Weekly Update: a new vulnerability is published on the National Vulnerability Database (18 items)

New vulnerabilities from the NVD: CVE-2018-12303 Cross-site scripting in filebrowser in Seagate NAS OS version 4.3.15.1 allows attackers to execute JavaScript via directory names. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12302 Missing HTTPOnly flag on session cookies in the Seagate NAS OS version 4.3.15.1 web application allows attackers to steal session tokens via cross-site scripting. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12301 Unvalidated URL in Download Manager in Seagate NAS OS version 4.3.15.1 allows attackers to access the loopback interface via a Download URL of 127.0.0.1 or localhost. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12300 Arbitrary Redirect in echo-server.html in Seagate NAS OS version 4.3.15.1 allows attackers to disclose information in the Referer header via the 'state' URL parameter. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12299 Cross-site scripting in filebrowser in Seagate NAS OS version 4.3.15.1 allows attackers to execute JavaScript via uploaded file names. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12298 Directory Traversal in filebrowser in Seagate NAS OS 4.3.15.1 allows attackers to read files within the application's container via a URL path. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12297 Cross-site scripting in API error pages in Seagate NAS OS version 4.3.15.1 allows attackers to execute JavaScript via URL path names. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12296 Insufficient access control in /api/external/7.0/system.System.get_infos in Seagate NAS OS version 4.3.15.1 allows attackers to obtain information about the NAS without authentication via empty POST requests. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-12295 SQL injection in folderViewSpecific.psp in Seagate NAS OS version 4.3.15.1 allows attackers to execute arbitrary SQL commands via the dirId URL parameter. Published at: May 13, 2019 at 04:29PM View on website May 13, 2019 at 05:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2012-6652 Directory traversal vulnerability in pageflipbook.php script from index.php in Page Flip Book plugin for WordPress (wppageflip) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pageflipbook_language parameter. Published at: May 13, 2019 at 05:29PM View on website May 13, 2019 at 07:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2015-9287 Directory Traversal was discovered in University of Cambridge mod_ucam_webauth before 2.0.2. The key identification field ("kid") of the IdP's HTTP response message ("WLS-Response") can be manipulated by an attacker. The "kid" field is not signed like the rest of the message, and manipulation is therefore trivial. The "kid" field should only ever represent an integer. However, it is possible to provide any string value. An attacker could use this to their advantage to force the application agent to load the RSA public key required for message integrity checking from an unintended location. Published at: May 13, 2019 at 07:29PM View on website May 13, 2019 at 09:36PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2016-7151 Capstone 3.0.4 has an out-of-bounds vulnerability (SEGV caused by a read memory access) in X86_insn_reg_intel in arch/X86/X86Mapping.c. Published at: May 15, 2019 at 05:29PM View on website May 15, 2019 at 07:59PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2016-10719 TP-Link Archer CR-700 1.0.6 devices have an XSS vulnerability that can be introduced into the admin account through a DHCP request, allowing the attacker to steal the cookie information, which contains the base64 encoded username and password. Published at: May 15, 2019 at 05:29PM View on website May 15, 2019 at 07:59PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2014-9919 An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the fullname parameter to signup.php. Published at: May 15, 2019 at 05:29PM View on website May 15, 2019 at 07:59PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2014-9918 An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the user_id parameter to signup.php. Published at: May 15, 2019 at 05:29PM View on website May 15, 2019 at 07:59PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2014-9917 An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter. Published at: May 15, 2019 at 05:29PM View on website May 15, 2019 at 07:59PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2016-7043 It has been reported that KIE server and Busitess Central before version 7.21.0.Final contain username and password as plaintext Java properties. Any app deployed on the same server would have access to these properties, thus granting access to ther services. Published at: May 15, 2019 at 07:29PM View on website May 15, 2019 at 10:04PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2013-7285 Xstream API versions up to 1.4.6 and version 1.4.10, if the security framework has not been initialized, may allow a remote attacker to run arbitrary shell commands by manipulating the processed input stream when unmarshaling XML or any supported format. e.g. JSON. Published at: May 15, 2019 at 08:29PM View on website May 15, 2019 at 10:04PM via National Vulnerability Database Manage this Applet