#vulnerability

Ubuntu Security Notice 6944-2 - USN-6944-1 fixed CVE-2024-7264 for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS. This update provides the corresponding fix for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 18.04 LTS. Dov Murik discovered that curl incorrectly handled parsing ASN.1 Generalized Time fields. A remote attacker could use this issue to cause curl to crash, resulting in a denial of service, or possibly obtain sensitive memory contents.

Online Diagnostic Lab Management System version 1.0 suffers from an arbitrary file upload vulnerability.

Online Banking System version 1.0 suffers from a cross site request forgery vulnerability.

Music Gallery Site version 1.0 suffers from a cross site request forgery vulnerability.

Multi-Vendor Online Groceries Management System version 1.0 suffers from a cross site request forgery vulnerability.

Medical Center Portal version 1.0 suffers from a cross site request forgery vulnerability.

Ubuntu Security Notice 6970-1 - It was discovered that exfatprogs incorrectly handled certain memory operations. If a user or automated system were tricked into handling specially crafted exfat partitions, a remote attacker could use this issue to cause exfatprogs to crash, resulting in a denial of service, or possibly execute arbitrary code.

Event Registration and Attendance System version 1.0 suffers from a cross site request forgery vulnerability.

Cab Management System version 1.0 suffers from a cross site request forgery vulnerability.

Alphaware E-Commerce System version 1.0 suffers from a code injection vulnerability.