DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function for 'menu_description' variable in dbhcms\mod\mod.menus.edit.php line 83 and in dbhcms\mod\mod.menus.view.php line 111, A remote authenticated with admin user can exploit this vulnerability to hijack other users.
In Artifex MuPDF 1.14.0, the svg_run_image function in svg/svg-run.c allows remote attackers to cause a denial of service (href_att NULL pointer dereference and application crash) via a crafted svg file, as demonstrated by mupdf-gl.
shadow 4.8, in certain circumstances affecting at least Gentoo, Arch Linux, Void Linux, allows local users to obtain root access because setuid programs are misconfigured. Specifically, this affects shadow 4.8 when compiled using --with-libpam but without explicitly passing --disable-account-tools-setuid, and without a PAM configuration suitable for use with setuid account management tools. This combination leads to account management tools (groupadd, groupdel, groupmod, useradd, userdel, usermod) that can
HTM-61 – специально подобранный партнер для фронтальных 683 или 684 в господствующей системе домашнего театра. Это полностью 3-полосная АС, состоящая из 165-мм (6.5 in) НЧ/СЧ-динамика с кевларовым диффузором, среднечастотника с 150-мм (6 in) с кевларовым диффузором и FST подвесом, а также твитером с нагрузочной трубой Nautilus. в наличии Цена: 19882.00 ₽ КУПИТЬ