Security Vulnerabilities - CVEs Published In August 2020
Mara CMS 7.5 allows cross-site scripting (XSS) in contact.php via the theme or pagetheme parameters.
CVSS Score
6.1
EPSS Score
0.25
Published
2020-08-30
osTicket before 1.14.3 allows XSS via a crafted filename to DraftAjaxAPI::_uploadInlineImage() in include/ajax.draft.php.
CVSS Score
6.1
EPSS Score
0.003
Published
2020-08-30
A flaw was found in librepo in versions before 1.12.1. A directory traversal vulnerability was found where it failed to sanitize paths in remote repository metadata. An attacker controlling a remote repository may be able to copy files outside of the destination directory on the targeted system via path traversal. This flaw could potentially result in system compromise via the overwriting of critical system files. The highest threat from this flaw is to users that make use of untrusted third-party repositories.
CVSS Score
8.0
EPSS Score
0.04
Published
2020-08-30
A buffer over-read vulnerability exists in bl <4.0.3, <3.0.1, <2.2.1, and <1.2.3 which could allow an attacker to supply user input (even typed) that if it ends up in consume() argument and can become negative, the BufferList state can be corrupted, tricking it into exposing uninitialized memory via regular .slice() calls.
CVSS Score
6.5
EPSS Score
0.004
Published
2020-08-30
This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function.
CVSS Score
7.2
EPSS Score
0.004
Published
2020-08-30
The Kleopatra component before 3.1.12 (and before 20.07.80) for GnuPG allows remote attackers to execute arbitrary code because openpgp4fpr: URLs are supported without safe handling of command-line options. The Qt platformpluginpath command-line option can be used to load an arbitrary DLL.
CVSS Score
8.8
EPSS Score
0.211
Published
2020-08-29
The Table Filter and Charts for Confluence Server app before 5.3.25 (for Atlassian Confluence) allow remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) through the provided Markdown markup to the "Table from CSV" macro.
CVSS Score
8.9
EPSS Score
0.003
Published
2020-08-29
The Table Filter and Charts for Confluence Server app before 5.3.26 (for Atlassian Confluence) allows SSRF via the "Table from CSV" macro (URL parameter).
CVSS Score
7.6
EPSS Score
0.002
Published
2020-08-29
managers/socketManager.ts in PreMiD through 2.1.3 has a locally hosted socketio web server (port 3020) open to all origins, which allows attackers to obtain sensitive Discord user information.
CVSS Score
5.3
EPSS Score
0.002
Published
2020-08-29
MPXJ through 8.1.3 allows XXE attacks. This affects the GanttProjectReader and PhoenixReader components.
CVSS Score
9.8
EPSS Score
0.02
Published
2020-08-29