CVE-2023-45256

Multiple SQL injection vulnerabilities in the EuroInformation MoneticoPaiement module before 1.1.1 for PrestaShop allow remote attackers to execute arbitrary SQL commands via the TPE, societe, MAC, reference, or aliascb parameter to transaction.php, validation.php, or callback.php...

Linux Distros Unpatched Vulnerability : CVE-2021-45256

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c. CVE-2021-45256 Note that Nessus relies on the presence of the package as...

CVE-2023-45256

creationtimestamp| type| source ---|---|--- 2025-06-12 17:35:14+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18211...

CVE-2024-45256

An arbitrary file write issue in the exfiltration endpoint in BYOB Build Your Own Botnet 2.0 allows attackers to overwrite SQLite databases and bypass authentication via an unauthenticated HTTP request with a crafted parameter. This occurs in fileadd in api/files/routes.py...

BYOB Unauthenticated Remote Code Execution Exploit

This Metasploit module exploits two vulnerabilities in the BYOB Build Your Own Botnet web GUI. It leverages an unauthenticated arbitrary file write that allows modification of the SQLite database, adding a new admin user. It also uses an authenticated command injection in the payload generation...

BYOB Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'sqlite3' class MetasploitModule 'BYOB Unauthenticated RCE via Arbitrary File Write and Command Injection CVE-2024-45256, CVE-2024-45257', 'Description' = %q Thi...

BYOB Unauthenticated RCE via Arbitrary File Write and Command Injection (CVE-2024-45256, CVE-2024-45257)

This module exploits two vulnerabilities in the BYOB Build Your Own Botnet web GUI: 1. CVE-2024-45256: Unauthenticated arbitrary file write that allows modification of the SQLite database, adding a new admin user. 2. CVE-2024-45257: Authenticated command injection in the payload generation page...

CVE-2024-45256

creationtimestamp| type| source ---|---|--- 2024-08-26 09:31:40+00:00| seen| https://t.me/cvedetector/4103 2024-10-15 15:35:55+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/byobunauthrce.rb 2025-02-06 03:13:46+00:00| seen|...

CVE-2021-45256

A null-pointer dereference flaw was found in nasm's preproc.c. An attacker with local network access could pass specially crafted unknown input causing an application to halt or crash, leading to a denial of service...

DEBIAN-CVE-2021-45256

A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c...

CVE-2021-45256

A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c...

CVE-2021-45256

CVE-2021-45256 affects nasm 2.16rc0, with the vulnerability located in asm/preproc.c where a null pointer dereference occurs. The declared impact in public sources indicates a denial of service via a crash when exploited locally. Public documents do not provide exploit details, affected version r...

CVE-2021-45256

A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c...

CAJViewer 7.3 suffers from a binary vulnerability (CNVD-2021-45256)

CAJViewer 7.3 is a specialized full-text format viewer for China Journal Network CJN, which supports CJN's TEB, CAJ, NH, KDH and PDF format files. A binary vulnerability exists in CAJViewer 7.3, which can be exploited by attackers to cause a denial of service...