8703 matches found
ASUS router drive-by code execution via XSS and authentication bypass
ASUS router drive-by code execution via XSS and authentication bypass ===================================================================== The latest version of this advisory is available at: https://sintonen.fi/advisories/asus-router-auth-bypass.txt Overview -------- Various ASUS routers contai...
CVE-2014-0466
The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...
MS-DOS: Arbitrary command execution in MS-DOS
Versions 1.1 and 2.0 of MS-DOS allow a malicious actor to execute arbitrary system commands via the main application interface. Prerequisites: MS-DOS 1.1 or MS-DOS 2.0 installation Input device e.g. keyboard Steps to reproduce: Enter the command mode Type VER to make sure that the system is on of...
OS command injection flaw in awesome_spawn
Awesome spawn contains OS command injection vulnerability, which allows execution of additional commands passed to Awesome spawn as arguments, e.g. AwesomeSpawn.run'ls',:params = '-l' = ";touch haxored". If untrusted input was included in command arguments, attacker could use this flaw to execute...
CentOS Update for sudo CESA-2014:0266 centos5
Check for the Version of sudo OpenVAS Vulnerability Test CentOS Update for sudo CESA-2014:0266 centos5 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CVE-2013-6719
delivery.php in the Passive Capture Application PCA web console in IBM Tealeaf CX 7.x, 8.x through 8.6, 8.7 before FP2, and 8.8 before FP2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the testconnhost parameter...
CsSearch csSearch.cgi Arbitrary Command Execution - Ver2 (CVE-2002-0495)
A command execution vulnerability has been reported in Cgiscript.net Cssearch. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
phpmywind最新版本注入漏洞第二弹
简要描述: 继续之前的代码审计,发现其他地方还有类似的问题存在,都是没有对变量进行适当的过滤就直接拼接到sql语句里面执行,导致任意sql指令的执行。 详细说明: 漏洞位于member.php 689行处: $r = $dosql-GetOne"SELECT checkinfo FROM @goodsorder WHERE username='$cuname' AND id=$id"; id参数未做任何过滤直接放到sql语句里面执行。 利用分析:...
NetGear DGN2200 N300 Wireless Router Multiple Vulnerabilities (Feb 2014) - Active Check
NetGear DGN2200 N300 Wireless Routers are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
HP Data Protector EXEC_BAR Remote Command Execution
import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Tested On: Windows Server 2003, Windows Server 2008 R2...
HP Data Protector - 'EXEC_BAR' Remote Command Execution
import argparse import socket """ Exploit Title: HP Data Protector EXECBAR Remote Command Execution Exploit Author: Chris Graham @cgrahamseven CVE: CVE-2013-2347 Date: February 14, 2014 Vendor Homepage: www.hp.com Version: 6.10, 6.11, 6.20 Tested On: Windows Server 2003, Windows Server 2008 R2...
Dell KACE K2000 < 3.3.52857 Multiple Vulnerabilities
The remote Dell KACE K2000 appliance is affected by multiple vulnerabilities : - The appliance stores the recovery account password in plaintext within a PHP script. CVE-2011-4046 - The appliance can allow arbitrary command execution by leveraging database write access. CVE-2011-4047 - An...
NETGEAR D6300B - diag.cgi?IPAddr4 Remote Command Execution
NETGEAR D6300B - diag.cgi?IPAddr4 Remote Command Execution source: https://www.securityfocus.com/bid/65444/info The Netgear D6300B router is prone to the following security vulnerabilities: 1. Multiple unauthorized-access vulnerabilities 2. A command-injection vulnerability 3. An information...
Skybluecanvas CMS - Remote Code Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'SkyBlueCanvas CMS Remote Code Execution', 'Description' = %q This module exploits an arbitrary command execution vulnerability in...
SkyBlueCanvas CMS Remote Code Execution Exploit
This Metasploit module exploits an arbitrary command execution vulnerability in SkyBlueCanvas CMS version 1.1 r248-03 and below. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3...
SkyBlueCanvas CMS Remote Code Execution
This module exploits an arbitrary command execution vulnerability in SkyBlueCanvas CMS version 1.1 r248-03 and below. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SkyBlueCanvas CMS Remote Co...
echor Gem for Ruby backplane.rb perform_request Function Arbitrary Command Execution
Echor Gem for Ruby contains a flaw in backplane.rb in the performrequest function that is triggered when a semi-colon ; is injected into a username or password. This may allow a context-dependent attacker to inject arbitrary commands if the gem is used in a rails application...
Hewlett-Packard Data Protector Backup Client Service EXEC_BAR Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute remote code on vulnerable installations of HP Data Protector. Authentication is not required to exploit this vulnerability. This specific flaw exists in the Backup Client Service OmniInet.exe. The Backup Client Service listens on TCP port 5555...
Webbynode Ruby Gems命令注入漏洞
Bugtraq ID:64289 CVE ID:CVE-2013-7086 Ruby Gem Webbynode是一款让用户部署应用至Webbynode平台的工具。 Ruby Gem Webbynode没有正确过滤通过growlnotify命令所提交的消息,如果消息中包含shell元字符,可以应用程序上下文执行任意命令。 0 Ruby Gem Webbynode 1.0.5.3 目前厂商暂无提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://rubygems.org/gems/webbynode...
iScripts AutoHoster - 'fname' Local File Inclusion
source: https://www.securityfocus.com/bid/64377/info iScripts AutoHoster is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data, or exploit laten...