Commvault CommCell Remote Code Execution Vulnerability (CNVD-2021-101451)

Commvault CommCell enables fast, large-scale backup and recovery of virtual machines, structured and unstructured data.A remote code execution vulnerability exists in versions of Commvault CommCell prior to 11.25, which could be exploited by an attacker to execute code in the context of NETWORK...

Commvault CommCell 代码问题漏洞

Commvault CommCell enables fast, large-scale backup and recovery of virtual machines, structured and unstructured data.An arbitrary file upload vulnerability exists in the AppStudioUploadHandler class in versions of Commvault CommCell prior to 11.25, which stems from a lack of proper validation o...

Commvault CommCell 安全漏洞

Commvault CommCell enables fast, large-scale backup and recovery of virtual machines, structured and unstructured data.A remote code execution vulnerability exists in the DemoExecuteProcessOnGroup workflow in versions of Commvault CommCell prior to 11.25, which could be exploited by an attacker t...

Commvault CommCell 授权问题漏洞

Commvault CommCell enables fast, large-scale backup and recovery of virtual machines, structured and unstructured data.An authentication bypass vulnerability exists in the CVSearchService service in versions of Commvault CommCell prior to 11.25, which could be exploited by an attacker to bypass...

Commvault CommCell 代码注入漏洞

Commvault CommCell enables fast, large-scale backup and recovery of virtual machines, structured and unstructured data.A remote code execution vulnerability exists in versions of Commvault CommCell prior to 11.25, which could be exploited by an attacker to execute code in the context of NETWORK...

cPanel 11.25 - Cross-Site Request Forgery (Add User PHP Script)

cPanel 11.25 - Cross-Site Request Forgery Add User PHP Script Exploit Title: cPanel " Afterwards simply check for ninjashell.php in the directory. III. Counter-measures All cPanel versions starting from 11.25 and above have two in-built security features to prevent such attacks - security tokens...

Cpanel PHP - Restriction Bypass

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 1 0day | | | | || / \ || | | | || ||// \/|/ ''' abysssec Inc Public Advisory 1 Advisory information Title : Cpanel PHP Restriction Bypass Vulnerability Version : = 11.25 Discovery : http://www.abysssec.com...

cPanel XSS Vulnerability

cPanel 11.25 is vulnerable to an XSS exploit as it fails to clean user-supplied input. All versions prior to 47010 are affected. Please note that whilst this vulnerability is patched in version 47010, 47010 is currently on the bleeding-edge and isn't recommended for the stable environment...

cPanel 11.25 - Cross-Site Request Forgery (Add FTP Account)

Exploit Title: Cpanel 11.25 - CSRF Add FTP Account Author: G0D-F4Th3r Software Link: http://www.cpanel.net/ Version: 11.25 Exploit Greetz to : AL-MoGrM - dEvIL NeT - Bad hacker - v4-team members - And All My Friends...

Cpanel 11.25 Cross Site Request Forgery

Exploit Title: Cpanel 11.25 - CSRF Add FTP Account Author: G0D-F4Th3r Software Link: http://www.cpanel.net/ Version: 11.25 Exploit Greetz to : AL-MoGrM - dEvIL NeT - Bad hacker - v4-team members - And All My Friends...

cPanel 11.25 Image Manager - 'target' Local File Inclusion

source: https://www.securityfocus.com/bid/40622/info cPanel Image Manager is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view files and execute local scripts in the context of the webserver...