Lucene search
K

1646 matches found

CVE
CVE
added 2020/02/21 2:50 p.m.87 views

CVE-2020-5324

CVE-2020-5324 describes an Arbitrary File Overwrite vulnerability in the Dell Firmware Update Utility. During the execution window by an administrator, a locally authenticated, low-privileged user could exploit a symlink attack to overwrite arbitrary files, though the vulnerability does not affec...

7.1CVSS4.7AI score0.00252EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/01/28 5:15 p.m.1 views

DEBIAN-CVE-2015-7851

Directory traversal vulnerability in the saveconfig function in ntpd in ntpcontrol.c in NTP before 4.2.8p4, when used on systems that do not use '' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files...

6.5CVSS7.2AI score0.03942EPSS
Exploits1References1
Apple
Apple
added 2020/01/28 12:0 a.m.45 views

About the security content of watchOS 6.1.2

About the security content of watchOS 6.1.2 This document describes the security content of watchOS 6.1.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

9.3CVSS8.9AI score0.16111EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/01/13 1:15 p.m.17 views

Arbitrary file deletion

WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...

6.5CVSS7AI score0.03288EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2020/01/13 12:22 p.m.23 views

CVE-2014-6059

WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...

6.9AI score0.03288EPSS
Exploits3References3
CVE
CVE
added 2020/01/13 12:22 p.m.109 views

CVE-2014-6059

CVE-2014-6059 concerns the WordPress plugin Advanced Access Manager (AAM) prior to version 2.8.2. The vulnerability is an Arbitrary File Overwrite flaw that allows an admin user to write arbitrary content to arbitrary files, which could in some configurations lead to arbitrary code execution or o...

7.2CVSS6.9AI score0.03288EPSS
Exploits3References3Affected Software1
Positive Technologies
Positive Technologies
added 2020/01/13 12:0 a.m.6 views

PT-2020-7722 · WordPress · Wordpress Advanced Access Manager Plugin

Name of the Vulnerable Software and Affected Versions: WordPress Advanced Access Manager Plugin versions prior to 2.8.2 Description: The issue is related to an Arbitrary File Overwrite Vulnerability. There is no information provided about the estimated number of potentially affected devices...

7.2CVSS6.8AI score0.03288EPSS
Exploits3References6
Veracode
Veracode
added 2019/12/18 2:53 a.m.19 views

Arbitrary File Overwrite

cakephp/cakephp is vulnerable to arbitrary file overwrite. The SmtpTransport module could be used to overwrite arbitrary files on the web server during deserialization of malicious values...

7.1CVSS3.5AI score0.00599EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2019/12/13 1:15 a.m.18 views

CVE-2019-16777

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

7.7CVSS7.5AI score0.01984EPSS
Exploits0References11
OSV
OSV
added 2019/12/13 1:15 a.m.29 views

CVE-2019-16777

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

6.5CVSS6.2AI score
Exploits0References11
OSV
OSV
added 2019/12/13 1:15 a.m.2 views

DEBIAN-CVE-2019-16777

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

6.5CVSS6.9AI score0.01984EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/12/13 1:15 a.m.28 views

CVE-2019-16777

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

7.7CVSS6.9AI score0.01984EPSS
Exploits0References3
Prion
Prion
added 2019/12/13 1:15 a.m.26 views

Code injection

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

5.5CVSS7.5AI score0.01984EPSS
Exploits0References11Affected Software6
Debian CVE
Debian CVE
added 2019/12/13 1:0 a.m.24 views

CVE-2019-16777

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

7.7CVSS6.9AI score0.01984EPSS
Exploits0
CVE
CVE
added 2019/12/13 1:0 a.m.396 views

CVE-2019-16777

The CVE-2019-16777 entry affects the npm CLI for versions prior to 6.13.4, which are vulnerable to Arbitrary File Overwrite. The issue allows overwriting globally-installed binaries (e.g., a serve binary) during subsequent package installations, including when --ignore-scripts is used. This behav...

7.7CVSS6.8AI score0.01984EPSS
Exploits0References11Affected Software1
Veracode
Veracode
added 2019/12/12 3:16 a.m.25 views

Arbitrary File Overwrite

npm is vulnerable to arbitrary file overwrite. The package does not prevent existing globally-installed binaries from being overwritten by other package installations in /usr/local/bin. This would allow the overwriting of binary files created from the first installation...

8.1CVSS5.1AI score0.03342EPSS
Exploits0References14Affected Software2
Veracode
Veracode
added 2019/12/12 3:0 a.m.13 views

Arbitrary File Overwrite

bin-links is vulnerable to arbitrary file overwrite. The application does not prevent globally-installed binaries to be overwritten by other package installs...

3.2AI score
Exploits0
exploitpack
exploitpack
added 2019/12/11 12:0 a.m.82 views

AppXSvc 17763 - Arbitrary File Overwrite (DoS)

AppXSvc 17763 - Arbitrary File Overwrite DoS Exploit Title: AppXSvc 17763 - Arbitrary File Overwrite DoS Date: 2019-10-28 Exploit Author: Gabor Seljan Vendor Homepage: https://www.microsoft.com/ Version: 17763.1.amd64fre.rs5release.180914-1434 Tested on: Windows 10 Version 1809 for x64-based...

7.2CVSS0.7AI score0.41667EPSS
Exploits20
Packet Storm
Packet Storm
added 2019/12/11 12:0 a.m.251 views

AppXSvc 17763 Arbitrary File Overwrite

Exploit Title: AppXSvc 17763 - Arbitrary File Overwrite DoS Date: 2019-10-28 Exploit Author: Gabor Seljan Vendor Homepage: https://www.microsoft.com/ Version: 17763.1.amd64fre.rs5release.180914-1434 Tested on: Windows 10 Version 1809 for x64-based Systems CVE: CVE-2019-1476 Summary: AppXSvc...

7.2CVSS0.9AI score0.41667EPSS
Exploits20
Symantec
Symantec
added 2019/12/11 12:0 a.m.27 views

Drupal Webform Module Multiple Security Vulnerabilities

Description Webform Module of Drupal is prone to the following multiple security vulnerabilities: 1. An arbitrary-file-overwrite vulnerability 2. A cross-site scripting vulnerability An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

Exploits0References1Affected Software1
Rows per page
Query Builder