» 2019 » 5월

CVE-2019-12215

Posted on 2019년 5월 21일2019년 5월 21일 by admin

CVE-2019-12215

** DISPUTED ** A full path disclosure vulnerability was discovered in Matomo v3.9.1 where a user can trigger a particular error to discover the full path of Matomo on the disk, because lastError.file is used in plugins/CorePluginsAdmin/templates/safemode.twig. NOTE: the vendor disputes the significance of this issue, stating "avoid reporting path disclosures, as we don’t consider them as security vulnerabilities."

Source: CVE-2019-12215

CVE-2018-12270

Posted on 2019년 5월 20일2019년 5월 21일 by admin

CVE-2018-12270

In Valve Steam 1528829181 BETA, it is possible to perform a homograph / homoglyph attack to create fake URLs in the client, which may trick users into visiting unintended web sites.

Source: CVE-2018-12270

CVE-2019-12208

Posted on 2019년 5월 20일2019년 5월 21일 by admin

CVE-2019-12208

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in njs_function_native_call in njs/njs_function.c.

Source: CVE-2019-12208

CVE-2019-12207

Posted on 2019년 5월 20일2019년 5월 21일 by admin

CVE-2019-12207

njs through 0.3.1, used in NGINX, has a heap-based buffer over-read in nxt_utf8_decode in nxt/nxt_utf8.c.

Source: CVE-2019-12207

CVE-2019-12206

Posted on 2019년 5월 20일2019년 5월 21일 by admin

CVE-2019-12206

njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in nxt_utf8_encode in nxt_utf8.c.

Source: CVE-2019-12206

CVE-2019-11809

Posted on 2019년 5월 20일2019년 5월 20일 by admin

CVE-2019-11809

An issue was discovered in Joomla! before 3.9.6. The debug views of com_users do not properly escape user supplied data, which leads to a potential XSS attack vector.

Source: CVE-2019-11809

CVE-2019-12198

Posted on 2019년 5월 20일2019년 5월 20일 by admin

CVE-2019-12198

In GoHttp through 2017-07-25, there is a stack-based buffer over-read via a long User-Agent header.

Source: CVE-2019-12198

CVE-2019-12185

Posted on 2019년 5월 20일2019년 5월 20일 by admin

CVE-2019-12185

eLabFTW 1.8.5 is vulnerable to arbitrary file uploads via the /app/controllers/EntityController.php component. This may result in remote command execution. An attacker can use a user account to fully compromise the system using a POST request. This will allow for PHP files to be written to the web root, and for code to execute on the remote server.

Source: CVE-2019-12185

CVE-2019-12184

Posted on 2019년 5월 20일2019년 5월 20일 by admin

CVE-2019-12184

There is XSS in browser/components/MarkdownPreview.js in BoostIO Boostnote 0.11.15 via a label named flowchart, sequence, gallery, or chart, as demonstrated by a crafted SRC attribute of an IFRAME element, a different vulnerability than CVE-2019-12136.

Source: CVE-2019-12184

CVE-2019-12173

Posted on 2019년 5월 18일2019년 5월 18일 by admin

CVE-2019-12173

MacDown 0.7.1 (870) allows remote code execution via a file:\ URI, with a .app pathname, in the HREF attribute of an A element. This is different from CVE-2019-12138.

Source: CVE-2019-12173