Author Topic: Rules Updates: Changelog  (Read 35695 times)

Offline SergeiP

  • Moderator
  • Comodo Family Member
  • *****
  • Posts: 94
Re: Rules Updates: Changelog
« Reply #135 on: December 21, 2017, 09:00:52 AM »
2017.12.21
Rules for: Apache, LiteSpeed, Nginx, IIS
Version 1.151


- XSS vulnerability in concrete5 before 5.6.3.4 (CVE-2017-6905)
- XSS vulnerability in the MODX Revolution 2.5.7 and earlier (CVE-2017-1000223 & CVE-2017-11744)
- Open redirect vulnerability in XOOPS Core 2.5.8 (CVE-2017-12138)
- Arbitrary File Read vulnerability in Fiyo CMS 2.0.7 (CVE-2017-17104)
- XSS vulnerability in the EyesOfNetwork web interface aka eonweb 5.0 (CVE-2017-6087)
- XSS vulnerability in MetInfo 5.3.15 (CVE-2017-6878)
- XSS vulnerability in ViMbAdmin 3.0.15 (CVE-2017-5870)
- bl_domains update

Offline SergeiP

  • Moderator
  • Comodo Family Member
  • *****
  • Posts: 94
Re: Rules Updates: Changelog
« Reply #136 on: December 27, 2017, 11:09:54 AM »
2017.12.27
Rules for: Apache, LiteSpeed, Nginx, IIS
Version 1.152


- XSS vulnerability in custom-map plugin through 1.1 for WordPress (CVE-2017-17744)
- CSRF vulnerability in admidio 3.2.8 (CVE-2017-8382)
- SQL injection vulnerability in Dolibarr ERP/CRM version 6.0.4 (CVE-2017-17899)
- SQL injection vulnerability in Dolibarr ERP/CRM version 6.0.4 (CVE-2017-17897)
- SQL injection vulnerability in Dolibarr ERP/CRM version 6.0.4 (CVE-2017-17900)
- XSS & SQL injection vulnerability in Piwigo 2.9.2 (CVE-2017-17823)
- XSS vulnerability in Piwigo 2.9.2 (CVE-2017-17826)
- CSRF vulnerability in the Piwigo through 2.9.2 (CVE-2017-17827)
- bl_domains update

Offline SergeiP

  • Moderator
  • Comodo Family Member
  • *****
  • Posts: 94
Re: Rules Updates: Changelog
« Reply #137 on: January 11, 2018, 11:45:38 AM »
2018.01.11
Rules for: Apache, LiteSpeed, Nginx, IIS
Version 1.153


- SQL injection vulnerability in Joomla! Component JEXTN FAQ Pro 4.0.0 (CVE-2017-17875)
- SQL injection vulnerability in JEXTN Video Gallery extension 3.0.5 for Joomla! (CVE-2017-17872)
- SQL injection vulnerability in surveys v1.01.8 for WordPress (CVE-2017-1002020, CVE-2017-1002021, CVE-2017-1002022)
- XSS vulnerability in wp-concours plugin through 1.1 for WordPress (CVE-2017-17719)
- SQL Injection vulnerability in Oturia Smart Google Code Inserter plugin before 3.5 for WordPress (CVE-2018-3811)
- XSS vulnerability in Z-URL Preview plugin 1.6.1 for WordPress (CVE-2017-18012)
- XSS and Directory Traversal vulnerability in GD Rating System plugin 2.3 for WordPress (CVE-2018-5286, CVE-2018-5287, CVE-2018-5288, CVE-2018-5289, CVE-2018-5290, CVE-2018-5291, CVE-2018-5292, CVE-2018-5293)
- SQL Injection vulnerability in Piwigo 2.9.2 (CVE-2017-17822)
- XSS vulnerability in Piwigo 2.9.2 (CVE-2017-17825)
- XSS vulnerability in NetWin SurgeFTP version 23f2 (CVE-2017-17933)
- bl_domains update

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek