17
12
Perchè smettere di usare facebook
Ciò che leggi in queste righe non è il risultato di una apatia […]
L’articolo Perchè smettere di usare facebook sembra essere il primo su rinorusso.it.
Categoria: Linux
17
12
OpenStego Free Steganography Solution 0.7.2
OpenStego is a tool implemented in Java for generic steganography, with support for password-based encryption of the data. It supports plugins for various steganographic algorithms (currently, only Least Significant Bit algorithm is supported for image…
17
12
Telegram Messenger For Android Directory Traversal
There is a directory traversal issue in the Telegram client for Android. The method saveFile in MediaController.java saves a file to external memory based on an optional name that is not filtered. The name is provided by the remote peer when sending a …
17
12
Outlook For Android Directory Traversal
There is a directory traversal issue in attachment downloads in Outlook for Android. There is no path sanitization on the attachment filename in the app. If the email account is a Hotmail account, this will be sanitized by the server, but for other accounts it will not be. This allows a file to be written […]
The post Outlook For Android Directory Traversal appeared first on MondoUnix.
17
12
WordPress Placemarks 2.0.0 Cross Site Scripting
WordPress Placemarks plugin version 2.0.0 suffers from a persistent cross site scripting vulnerability.
Source: WordPress Placemarks 2.0.0 Cross Site Scripting
The post WordPress Placemarks 2.0.0 Cross Site Scripting appeared first on MondoUnix.
17
12
WordPress Sagepay Server Gateway For WooCommerce 1.0.7 XSS
WordPress Sagepay Server Gateway For WooCommerce plugin version 1.0.7 suffers from a persistent cross site scripting vulnerability.
Source: WordPress Sagepay Server Gateway For WooCommerce 1.0.7 XSS
The post WordPress Sagepay Server Gateway For WooComm…
17
12
Zoom Linux Client 2.0.106600.0904 Command Injection
The binary /opt/zoom/ZoomLauncher is vulnerable to command injection because it uses user input to construct a shell command without proper sanitization. The client registers a scheme handler (zoommtg://) and this makes possible to trigger the vulnerab…
17
12
Zoom Linux Client 2.0.106600.0904 Buffer Overflow
The binary /opt/zoom/ZoomLauncher is vulnerable to a buffer overflow because it concatenates a overly long user input to a stack variable without checking if the destination buffer is long enough to hold the data. The binary also has important security features like canary turned off. The client registers a scheme handler (zoommtg://) and this makes […]
The post Zoom Linux Client 2.0.106600.0904 Buffer Overflow appeared first on MondoUnix.
17
12
Monstra CMS 3.0.4 Remote Shell Upload
Monstra CMS version 3.0.4 suffers from a remote shell upload vulnerability that allows for remote code execution.
Source: Monstra CMS 3.0.4 Remote Shell Upload
The post Monstra CMS 3.0.4 Remote Shell Upload appeared first on MondoUnix.
16
12
SalentOS 2.0
SalentOS SalentOS è una distribuzione Linux basata su Ubuntu che usa il desktop manager Openbox. E’ sviluppata per essere veloce, ma allo stesso tempo mantenere le caratteristiche di Ubuntu (includendo anche elementi di GNOME e Xfce). Una versione con …