Lucene search
+L

25 matches found

openvas
openvas
added 2021/08/12 12:0 a.m.115 views

ownCloud < 10.8 Multiple Vulnerabilities

ownCloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:owncloud:owncloud"; ifdescription...

9.8CVSS5.8AI score0.01482EPSS
Exploits0References4
packetstorm
packetstorm
added 2021/07/01 12:0 a.m.322 views

WordPress XCloner 4.2.12 Remote Code Execution

Exploit Title: Wordpress Plugin XCloner 4.2.12 - Remote Code Execution Authenticated Date 30.06.2021 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.xcloner.com/ Software Link: https://downloads.wordpress.org/plugin/xcloner-backup-and-restore.4.2.12.zip Version: 4.2.1 - 4.2.12...

6.5CVSS8.8AI score0.24937EPSS
Exploits5
zdt
zdt
added 2021/07/01 12:0 a.m.134 views

Wordpress XCloner 4.2.12 Plugin - Remote Code Execution (Authenticated) Exploit

Exploit Title: Wordpress Plugin XCloner 4.2.12 - Remote Code Execution Authenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.xcloner.com/ Software Link: https://downloads.wordpress.org/plugin/xcloner-backup-and-restore.4.2.12.zip Version: 4.2.1 - 4.2.12 Tested on: Ubunt...

9.9CVSS0.4AI score0.24937EPSS
Exploits5
cve
cve
added 2021/01/01 3:27 a.m.165 views

CVE-2020-35948

The CVE-2020-35948 issue affects the WordPress plugin XCloner Backup and Restore (versions prior to 4.2.13). The root cause is an insecure write_file_action in xcloner_restore.php that can overwrite files (e.g., wp-config.php), enabling authenticated attackers to modify arbitrary files and achiev...

9.9CVSS8.8AI score0.24937EPSS
Exploits5References4Affected Software1
zdt
zdt
added 2015/02/17 12:0 a.m.23 views

X360 VideoPlayer ActiveX Control Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow in the VideoPlayer.ocx ActiveX installed with the X360 Software. By setting an overly long value to 'ConvertFile',an attacker can overrun a .data buffer to bypass ASLR/DEP and finally execute arbitrary code. This module requires Metasploit:...

8AI score
Exploits0
Rows per page
Query Builder