PHPCompta/NOALYSS 6.7.1 5638 - Remote Command Execution

No description provided by source. Vulnerability title: Remote Command Execution in PHPCompta/NOALYSS CVE: CVE-2014-6389 Vendor: PHPCompta Product: PHPCompta/NOALYSS Affected version: 6.7.1 5638 Fixed version: 6.7.2 Reported by: Jerzy Kramarz Details: PhpCompta 6.7.1-2 does not validate the synta...

DEBIAN-CVE-2014-5247

The UpgradeBeforeConfigurationChange function in lib/client/gntcluster.py in Ganeti 2.10.0 before 2.10.7 and 2.11.0 before 2.11.5 uses world-readable permissions for the configuration backup file, which allows local users to obtain SSL keys, remote API credentials, and other sensitive information...

DZ所有版本都存在一个设计缺陷

简要描述： 试试可以不先吧。 详细说明： 不会分析源码。。木有去分析了。。 最新版本。。目测所有版本都存在。。我们来数据库备份下。 恭喜您，成功创建 3 个备份文件，备份全部完成。 ./data/backupf4b1fa/140811tv3zcb3Z-1.sql ./data/backupf4b1fa/140811tv3zcb3Z-2.sql ./data/backupf4b1fa/140811tv3zcb3Z-3.sql 这个。看起来很长似得。。 data/backupf4b1fa/140811tv3zcb3Z-1.sql...

WordPress Backitup Plugin <= 1.9.1 - Backup File Disclosure

This plugin is prone to a backup file disclosure vulnerability. Solution Update the plugin...

Thomson Wireless VoIP Cable Modem Auth Bypass

No description provided by source. Exploit Title: Thomson Wireless VoIP Cable Modem Auth Bypass Date: February 22, 2011 Authors: Glafkos Charalambous, George Nicolaou Product: TWG850-4 Wireless VoIP Cable Modem Software Version: ST9A.01.06 Severity: High Other Vulnerabilities: Unauthenticated...

ZTE WXV10 W300 - Multiple Vulnerabilities

No description provided by source. Exploit Title: ZTE WXV10 W300 Multiple Vulnerabilities Date: 17-05-2014 Server Version: RomPager/4.07 UPnP/1.0 Tested Routers: ZTE ZXV10 W300 Firmware: W300V1.0.0aZRDLK ADSL Firmware: FwVer:3.11.2.175TC3086 HwVer:T14.F75.0 Tested on: Kali Linux x8664 Exploit...

ZTE WXV10 W300 - Multiple Vulnerabilities

ZTE WXV10 W300 - Multiple Vulnerabilities Exploit Title: ZTE WXV10 W300 Multiple Vulnerabilities Date: 17-05-2014 Server Version: RomPager/4.07 UPnP/1.0 Tested Routers: ZTE ZXV10 W300 Firmware: W300V1.0.0aZRDLK ADSL Firmware: FwVer:3.11.2.175TC3086 HwVer:T14.F75.0 Tested on: Kali Linux x8664...

ZTE WXV10 W300 - Multiple Vulnerabilities

Exploit Title: ZTE WXV10 W300 Multiple Vulnerabilities Date: 17-05-2014 Server Version: RomPager/4.07 UPnP/1.0 Tested Routers: ZTE ZXV10 W300 Firmware: W300V1.0.0aZRDLK ADSL Firmware: FwVer:3.11.2.175TC3086 HwVer:T14.F75.0 Tested on: Kali Linux x8664 Exploit Author: Osanda Malith Jayathissa...

ZTE WXV10 W300 Disclosure / CSRF / Default

Exploit Title: ZTE WXV10 W300 Multiple Vulnerabilities Date: 17-05-2014 Server Version: RomPager/4.07 UPnP/1.0 Tested Routers: ZTE ZXV10 W300 Firmware: W300V1.0.0aZRDLK ADSL Firmware: FwVer:3.11.2.175TC3086 HwVer:T14.F75.0 Tested on: Kali Linux x8664 Exploit Author: Osanda Malith Jayathissa...

Backup Copy "Source backup file has different block size."

Challenge The issue described in this KB Article only occurs when a Backup Copy job is using the Periodic copy pruning mode. During consecutive Backup Copy intervals, the same machine or group of machines fails to be processed. The message "Initial copy did not complete, and will resume on the ne...

CVE-2013-3687

AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwords, user names, and other sensitive information by reading an unspecified backup file...

Buffer overflow

AirLive POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD, and possibly other camera models use cleartext to store sensitive information, which allows attackers to obtain passwords, user names, and other sensitive information by reading an unspecified backup file...

ECSHOP website program can bypass the permission to upload the word Trojan horse-vulnerability warning-the black bar safety net

Brief description: You can bypass the permissions to upload the word Trojan Detailed description: ! The front Desk left a note, content is our word on Trojans:? php eval$POSTcmd;?& gt; ! Then in the background the system==Database Management== Data Backup==select custom backup, selecting...

CVE-2012-0306

Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted backup file...

Memory corruption

Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted backup file...

CVE-2012-0306

Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted backup file...

Manhali v1.8 Local File Inclusion Vulnerability

Exploit for hardware platform in category web applications Exploit Title: Thomson Wireless VoIP Cable Modem Auth Bypass Date: February 22, 2011 Authors: Glafkos Charalambous, George Nicolaou Product: TWG850-4 Wireless VoIP Cable Modem Software Version: ST9A.01.06 Severity: High Other...

Thomson Wireless VoIP Cable Modem Authentication Bypass

Exploit Title: Thomson Wireless VoIP Cable Modem Auth Bypass Date: February 22, 2011 Authors: Glafkos Charalambous, George Nicolaou Product: TWG850-4 Wireless VoIP Cable Modem Software Version: ST9A.01.06 Severity: High Other Vulnerabilities: Unauthenticated Backup File Access, Plaintext Protocol...

Notepad Dog microblogging V3. 6. 1 Build 2 0 A 1 2 0 7 1 8 background to get shell-vulnerability warning-the black bar safety net

Notepad Dog microblogging system, the background presence of design defects that can lead to get backstage access to the shell Version: V3. 6. 1 Build 2 0 a 1 2 0 7 1 8 1. System Tools-data backup-custom backup-select a data amount smaller table-more options-select compress backup...

Easy business v3. 0 code audit-vulnerability warning-the black bar safety net

A gay in a portal to work..site total person-days..so..let us Diamondback help to look at the dish below, do not spray to initiate a dedicated Just a cursory scan of a few eye..pit... ! Simply wood with a filter media OK.. news\install\index. php. bak this turned out also with a dede..although ba...