Multiple security issues have been found in Thunderbird which couldpotentially result in the execution of arbitrary code, cross-sitescripting, spoofing, information disclosure, denial of service orcross-site request forgery.
More info:
https://www.debian.org/security/2019/dsa-4482
https://www.wordfence.com/blog/2019/07/critical-vulnerability-patched-in-ad-inserter-plugin/ Description: Authenticated Remote Code ExecutionAffected Plugin: Ad InserterAffected Versions: <= 2.4.21CVSS Score: 9.9 (Critical)CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H On Friday, July 12th, our Threat Intelligence team discovered a vulnerability present in Ad Inserter, a WordPress plugin installed on over 200,000 websites. The weakness allowed authenticated users (Subscribers and
More info:
https://www.wordfence.com/blog/2019/07/critical-vulnerability-patched-in-ad-inserter-plugin/
Linux kernel vulnerability CVE-2019-11599 Security Advisory Security Advisory Description The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other mechanisms to ...
More info:
https://support.f5.com/csp/article/K51674118
Linux kernel vulnerability CVE-2019-11599 Security Advisory Security Advisory Description The coredump implementation in the Linux kernel before 5.0.10 does not use locking or other mechanisms to ...
More info:
https://support.f5.com/csp/article/K51674118
by Michael Hawkins. The third party TCPDF library used by Moodle required updating to patch bug fixes, including a security fix (see CVE for more details).Severity/Risk:MinorVersions affected:3.7, 3.6 to 3.6.4, 3.5 to 3.5.6 and earlier unsupported versionsVersions fixed:3.7.1, 3.6.5 and 3.5.7Reported by:Dan MarsdenCVE identifier:CVE-2018-17057Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64794Tracker issue:MDL-64794 Upgrade TCPDF library
More info:
https://moodle.org/mod/forum/discuss.php?d=388571&parent=1566333
by Michael Hawkins. The third party TCPDF library used by Moodle required updating to patch bug fixes, including a security fix (see CVE for more details).Severity/Risk:MinorVersions affected:3.7, 3.6 to 3.6.4, 3.5 to 3.5.6 and earlier unsupported versionsVersions fixed:3.7.1, 3.6.5 and 3.5.7Reported by:Dan MarsdenCVE identifier:CVE-2018-17057Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-64794Tracker issue:MDL-64794 Upgrade TCPDF library
More info:
https://moodle.org/mod/forum/discuss.php?d=388571&parent=1566333
https://wpvulndb.com/vulnerabilities/9449
More info:
https://wpvulndb.com/vulnerabilities/9449
https://wpvulndb.com/vulnerabilities/9450
More info:
https://wpvulndb.com/vulnerabilities/9450
https://www.wordfence.com/blog/2019/07/podcast-episode-29-ithemes-security-creator-chris-wiegman-on-flying-plugins-developer-tools/ At WordCamp Atlanta, Mark sat down with Chris Wiegman, the creator of Better WP Security. Now known as iThemes Security, it is installed on over 900,000 WordPress sites. Chris talks about his experiences as a flight captain flying over the Hawaiian islands and what happened when an earthquake occurred shortly after takeoff. He also […]
More info:
https://www.wordfence.com/blog/2019/07/podcast-episode-29-ithemes-security-creator-chris-wiegman-on-flying-plugins-developer-tools/
https://wpvulndb.com/vulnerabilities/9448
More info:
https://wpvulndb.com/vulnerabilities/9448
