>> CATEGORY: Security

Liferay Portal 7.1 CE GA=3 / SimpleCaptcha API – Cross-Site Scripting

Webmin 1.910 – ‘Package Updates’ Remote Command Execution (Metasploit)

Ubuntu 18.04 – ‘lxd’ Privilege Escalation

UliCMS 2019.1 ‘Spitting Lama’ – Persistent Cross-Site Scripting

Linux/x86_64 – Bind (4444/TCP) Shell (/bin/sh) Shellcode (104 bytes)

Linux/x86_64 – Bind (4444/TCP) Shell (/bin/sh) Shellcode (131 bytes)

Microsoft Windows – AppX Deployment Service Local Privilege Escalation (3)

Supra Smart Cloud TV – ‘openLiveURL()’ Remote File Inclusion

IBM Websphere Application Server – Network Deployment Untrusted Data Deserialization Remote Code Execution (Metasploit)

LibreNMS – addhost Command Injection (Metasploit)