Weekly Update: a new vulnerability is published on the National Vulnerability Database (11 items)

New vulnerabilities from the NVD: CVE-2011-4558 Tiki 8.2 and earlier allows remote administrators to execute arbitrary PHP code via crafted input to the regexres and regex parameters. Published at: January 27, 2020 at 05:15PM View on website January 27, 2020 at 08:22PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2006-7246 NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used. Published at: January 27, 2020 at 05:15PM View on website January 27, 2020 at 08:22PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2011-3614 (vanilla) An Access Control vulnerability exists in the Facebook, Twitter, and Embedded plugins in Vanilla Forums before 2.0.17.9. Published at: January 22, 2020 at 08:15PM View on website January 28, 2020 at 08:22PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2011-3613 (vanilla) An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled. Published at: January 22, 2020 at 08:15PM View on website January 28, 2020 at 08:22PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2012-5776 Dokeos 2.1.1 has multiple XSS issues involving "extra_" parameters in main/auth/profile.php. Published at: January 29, 2020 at 05:15PM View on website January 29, 2020 at 08:22PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2012-4383 contao prior to 2.11.4 has a sql injection vulnerability Published at: January 29, 2020 at 05:15PM View on website January 29, 2020 at 08:22PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2012-5698 (babygekko) BabyGekko before 1.2.4 has SQL injection. Published at: January 23, 2020 at 05:15PM View on website January 30, 2020 at 12:22AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2011-4117 The Batch::BatchRun module 1.03 for Perl does not properly handle temporary files. Published at: January 31, 2020 at 08:15PM View on website January 31, 2020 at 09:55PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2011-4116 _is_safe in the File::Temp module for Perl does not properly handle symlinks. Published at: January 31, 2020 at 08:15PM View on website January 31, 2020 at 09:55PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2011-4115 Parallel::ForkManager module before 1.0.0 for Perl does not properly handle temporary files. Published at: January 31, 2020 at 08:15PM View on website January 31, 2020 at 09:55PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2011-4088 ABRT might allow attackers to obtain sensitive information from crash reports. Published at: January 31, 2020 at 07:15PM View on website January 31, 2020 at 09:55PM via National Vulnerability Database