Security Vulnerabilities - CVEs Published In April 2019
In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by --cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). If --cache-dir is specified and pointed at a different location accessible to other users/groups, the written files may be modified by other users/groups and disrupt the kubectl invocation.
CVSS Score
3.3
EPSS Score
0.001
Published
2019-04-22
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-04-22
whatsns 4.0 allows index.php?inform/add.html qid SQL injection.
CVSS Score
7.2
EPSS Score
0.003
Published
2019-04-22
I, Librarian 4.10 has XSS via the notes.php notes parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-04-22
An issue was discovered in ATutor through 2.2.4. It allows the user to run commands on the server with the teacher user privilege. The Upload Files section in the File Manager field contains an arbitrary file upload vulnerability via upload.php. The $IllegalExtensions value only lists lowercase (and thus .phP is a bypass), and omits .shtml and .phtml.
CVSS Score
8.8
EPSS Score
0.038
Published
2019-04-22
An issue was discovered in CutePHP CuteNews 2.1.2. An attacker can infiltrate the server through the avatar upload process in the profile area via the avatar_file field to index.php?mod=main&opt=personal. There is no effective control of $imgsize in /core/modules/dashboard.php. The header content of a file can be changed and the control can be bypassed for code execution. (An attacker can use the GIF header for this.)
CVSS Score
8.8
EPSS Score
0.74
Published
2019-04-22
An issue was discovered in Zoho ManageEngine Applications Manager 11.0 through 14.0. An unauthenticated user can gain the authority of SYSTEM on the server due to a Popup_SLA.jsp sid SQL injection vulnerability. For example, the attacker can subsequently write arbitrary text to a .vbs file.
CVSS Score
9.8
EPSS Score
0.194
Published
2019-04-22
An issue was discovered in Artifex MuJS 1.0.5. jscompile.c can cause a denial of service (invalid stack-frame jump) because it lacks an ENDTRY opcode call.
CVSS Score
7.5
EPSS Score
0.018
Published
2019-04-22
An issue was discovered in Artifex MuJS 1.0.5. It has unlimited recursion because the match function in regexp.c lacks a depth check.
CVSS Score
7.5
EPSS Score
0.009
Published
2019-04-22
An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-04-22