62 matches found
EUVD-2017-3333
Malware in sbrugna...
EUVD-2006-6254
Malware in sbrugna...
rtfm
This is a Debian package for a Python application called "RTFM" Read The Fine Manual. The package is version 0.96-RC1 and is intended for the "all" architecture. The package contains a single file, "rtfm.py", which is the main executable script for the application. The package also contains a...
FTPDMIN Security Vulnerability
FTPDMIN is an FTP File Transfer Protocol server for Windows-based platforms. A security vulnerability exists in Sentex FTPDMIN version 0.96. An attacker could exploit this vulnerability to perform a denial of service attack...
PT-2024-15421 · Sentex · Sentex Ftpdmin
Name of the Vulnerable Software and Affected Versions: Sentex FTPDMIN version 0.96 Description: A vulnerability has been found in the RNFR Command Handler component, which can be exploited to cause a denial of service. The attack can be launched remotely. Recommendations: For Sentex FTPDMIN versi...
FTPDMIN 0.96 Denial Of Service
!/usr/bin/perl use Net::FTP; Exploit Title: FTPDMIN 0.96 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 2024-01-01 Vendor Homepage: https://www.sentex.ca/mwandel/ftpdmin/ Download to demo: https://drive.google.com/file/d/1CpfvaJbJVxR3HPWvcxIVipTaTj7RAaLd/view?usp=sharing...
acuity (=6.18.0), acuitypro (=6.18.0) +3 more potentially affected by CVE-2019-16224 via lmdb (>=0.92.0 <=0.96.0)
lmdb PYPI version =0.92.0, =0.0.0, =0.100.2, =0.100.3rc1 Source cves: CVE-2019-16224 Source advisory: OSV:GHSA-9Q62-R72G-PVV7...
Django cross-site request forgery (CSRF) vulnerability
The administration application in Django 0.91.x, 0.95.x, and 0.96.x stores unauthenticated HTTP POST requests and processes them after successful authentication occurs, which allows remote attackers to conduct cross-site request forgery CSRF attacks and delete or modify data via unspecified...
Django Admin Media Handler Vulnerable to Directory Traversal
The Admin media handler in core/servers/basehttp.py in Django 1.0 and 0.96 does not properly map URL requests to expected "static media files," which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a crafted URL...
Django vulnerable to Denial of Service via i18n middleware component
The internationalization i18n framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USEI18N option and the i18n component are enabled, allows remote attackers to cause a denial of service memory consumption via many HTTP requests with large...
FTPDMIN Buffer Overflow Vulnerability
FTPDMIN is a Windows-based FTP File Transfer Protocol server. A buffer overflow vulnerability exists in FTPDMIN version 0.96. An attacker can exploit this vulnerability to crash the server with the help of specially crafted packets...
CVE-2020-10813
A buffer overflow vulnerability in FTPDMIN 0.96 allows attackers to crash the server via a crafted packet...
CVE-2020-10813
A buffer overflow vulnerability in FTPDMIN 0.96 allows attackers to crash the server via a crafted packet...
Buffer overflow
A buffer overflow vulnerability in FTPDMIN 0.96 allows attackers to crash the server via a crafted packet...
com.github.delegacy.youngbot:young-bot-core (>=0.0.1 <=0.0.3), com.github.delegacy.youngbot:young-bot-dispatcher (>=0.0.1 <=0.0.3) +65 more potentially affected by CVE-2019-16771 via com.linecorp.armeria:armeria (>=0.50.0 <=0.96.0)
com.linecorp.armeria:armeria MAVEN version =0.50.0, =0.0.1, =0.0.1, =0.0.2, =0.0.1, =0.0.1, =0.0.2, =0.0.1, =0.0.1, =0.88.0, =0.50.0, =0.84.0, =0.50.0, =0.50.0, =0.50.0, =0.50.0, =0.96.0 and more Source cves: CVE-2019-16771 Source advisory: OSV:GHSA-24R8-FM9R-CPJ2...
CVE-2017-11723
Directory traversal vulnerability in plugins/ImageManager/backend.php in Xinha 0.96, as used in Jojo 4.4.0, allows remote attackers to delete any folder via directory traversal sequences in the deld parameter...
CVE-2017-11723
CVE-2017-11723 affects Xinha 0.96 (as used in Jojo 4.4.0) via the plugins/ImageManager/backend.php component. The underlying issue is a directory traversal vulnerability in the deld parameter, which allows a remote attacker to delete arbitrary folders. No exploitation details are provided in the ...
Exponent CMS 0.96 File Upload
File upload vulnerability in Exponent CMS uploadstandalone.php Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...
Linux pkexec / polkitd 0.96 Race Condition
!/bin/sh pid; if stat procbuf, &statbuf != 0 gseterror error, POLKITERROR, POLKITERRORFAILED, "stat failed for /proc/%d: %s", process-pid, gstrerror errno; goto out; where the code only rely on stat of the pseudo filesystem src/polkit/polkitsubject.c --------- there's not enough validation to run...
CVE-2011-1485
Race condition in the pkexec utility and polkitd daemon in PolicyKit aka polkit 0.96 allows local users to gain privileges by executing a setuid program from pkexec, related to the use of the effective user ID instead of the real user ID...