Month: abril 2018

More info: https://wpvulndb.com/vulnerabilities/9058

More info: https://wpvulndb.com/vulnerabilities/9061

More info: https://wpvulndb.com/vulnerabilities/9057

Florian Grunow und Birk Kauer of ERNW discovered a path traversalvulnerability in SquirrelMail, a webmail application, allowing anauthenticated remote attacker to retrieve or delete arbitrary filesvia mail attachment. More info: https://www.debian.org/security/2018/dsa-4168

Spring Framework vulnerabilities CVE-2018-1270, CVE-2018-1271, and CVE-2018-1272. Security Advisory. Security Advisory Description. ... More info: https://support.f5.com/csp/article/K29042031

The BIG-IP ASM CSRF token may fail to renew when the original web server renews its session. Security Advisory. Security Advisory Description. ... More info: https://support.f5.com/csp/article/K70517410

The BIG-IP DNS/GTM system may be exposed to DNS hijacking when the BIG-IP system host name belongs to a public domain name that the BIG ... More info: https://support.f5.com/csp/article/K32518458

Apache httpd vulnerability CVE-2018-1283. Security Advisory. Security Advisory Description. In Apache httpd 2.4.0 to 2.4 ... More info: https://support.f5.com/csp/article/K94597539

Apache HTTPD vulnerability CVE-2017-15715. Security Advisory. Security Advisory Description. In Apache httpd 2.4.0 to ... More info: https://support.f5.com/csp/article/K27757011

Red Hat Enterprise Linux: An update for thunderbird is now available for Red Hat Enterprise Linux 7.Red Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which givesa detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146 More info: http://rhn.redhat.com/errata/RHSA-2018-0648.html