CVE-2026-7461

Improper neutralization of inputs used in an OS command in the FSx Windows File Server volume mounting component in Amazon ECS Agent on Windows before version 1.103.0 might allow a remote authenticated threat actor to execute shell commands with SYSTEM privileges on the underlying host via a...

CVE-2026-7461

creationtimestamp| type| source ---|---|--- 2026-05-07 01:40:29+00:00| seen| https://gist.github.com/alon710/685bd82e2bb849307786205498652c75 2026-05-08 16:06:05+00:00| seen| https://bsky.app/profile/securitycipher.bsky.social/post/3mle4disudb2h...

CVE-2020-7461

In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient8 fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle ...

CVE-2025-7461

A vulnerability was found in code-projects Modern Bag 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /action.php. The manipulation of the argument proId leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to...

CVE-2025-7461

CVE-2025-7461 affects code-projects Modern Bag 1.0, specifically the file /action.php. The vulnerability arises from improper validation of the proId parameter, enabling SQL injection and potentially allowing remote exploitation. Multiple connected sources confirm this SQLi in an unknown/unspecif...

RHEL 8 : cups-filters (RHSA-2024:7461)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:7461 advisory. The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System CUPS...

CVE-2024-7461 ForIP Tecnologia Administração PABX monitcallcenter authMonitCallcenter sql injection

A vulnerability was found in ForIP Tecnologia Administração PABX 1.x. It has been rated as critical. Affected by this issue is some unknown functionality of the file /authMonitCallcenter of the component monitcallcenter. The manipulation of the argument user leads to sql injection. The attack may...

Juniper Junos OS Vulnerability (JSA69496)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA69496 advisory. - In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient8 fails to handle...

Oracle Linux 8 : libreoffice (ELSA-2022-7461)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-7461 advisory. 6.4.7.2-11.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor=Oracle America, Inc. - Added the --with-hamcrest option to...

CVE-2020-7461

creationtimestamp| type| source ---|---|--- 2021-04-16 11:01:26+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/3138...

CVE-2020-7461

CVE-2020-7461 affects FreeBSD dhclient: malformed input for DHCP option 119 triggers a heap overflow, potentially enabling remote code execution. Impact is mitigated by Capsicum sandboxing. Affected versions are FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p...

CVE-2015-7461

CVE-2015-7461 describes an XML external entity (XXE) vulnerability in IBM Connections versions 3.0.1.1 and earlier, 4.0, 4.5, and 5.0 prior to CR4. The issue allows remote authenticated users to trigger a denial of service through crafted XML data, causing memory consumption. The vulnerability’s ...

CVE-2017-7461

CVE-2017-7461 affects the Intellinet NFC-30ir IP Camera (firmware LM.1.6.16.05). A directory traversal flaw arises in a vendor-supplied CGI script used to read HTML text files, caused by a lack of URI/path sanitization. Attackers can remotely read arbitrary files via that CGI, exposing sensitive ...

Intellinet NFC-30IR Camera - Multiple Vulnerabilities

Bitcrack Cyber Security - BitLabs Advisory http://www.bitcrack.net Multiple Vulnerabilities in Intellinet NFC-30IR Network Cameras ADVISORY -------- Title: Local File Inclusion in CGI-SCRIPT & Hard-Coded Manufacturer Backdoor Advisory ID: BITL-17-001 Date published: 2017-04-05 Date of last update...

Intellinet NFC-30IR Camera - Multiple Vulnerabilities

Intellinet NFC-30IR Camera - Multiple Vulnerabilities Bitcrack Cyber Security - BitLabs Advisory http://www.bitcrack.net Multiple Vulnerabilities in Intellinet NFC-30IR Network Cameras ADVISORY -------- Title: Local File Inclusion in CGI-SCRIPT & Hard-Coded Manufacturer Backdoor Advisory ID:...

Intellinet NFC-30IR Camera - Multiple Vulnerabilities

Exploit for hardware platform in category web applications Multiple Vulnerabilities in Intellinet NFC-30IR Network Cameras ADVISORY -------- Title: Local File Inclusion in CGI-SCRIPT & Hard-Coded Manufacturer Backdoor Advisory ID: BITL-17-001 Date published: 2017-04-05 Date of last update:...

CVE-2013-7461

A write protection and execution bypass vulnerability in McAfee now Intel Security Change Control MCC 6.1.0 for Linux and earlier allows authenticated users to change files that are part of write protection rules via specific conditions...

CVE-2013-7461

CVE-2013-7461 concerns a write protection and execution bypass in McAfee Change Control (MCC) for Linux, affecting MCC 6.1.0 and earlier. The issue allows authenticated users to modify files that are protected by write-protection rules under specific conditions, causing partial integrity impact. ...

CVE-2016-7461

CVE-2016-7461 affects VMware desktop products via a drag-and-drop (DnD) and copy-paste (CnP) memory handling bug in the DnD/CnP RPC path. The issue allows a guest OS user to execute arbitrary code on the host or cause a host DoS through an out-of-bounds memory access. Affected: VMware Workstation...

KLA10934 Arbitrary code execution and denial of service vulnerability in VMware products

An unspecified vulnerability was found in VMware Workstation Pro 12.x before 12.5.2, VMware Workstation Player 12.x before 12.5.2 and VMware Fusion, Fusion Pro 8.x before 8.5.2. By exploiting this vulnerability malicious users can execute arbitrary code on the host OS or cause a denial of service...