80 matches found
S.Siedle & Soehne SG 150-0 Smart Gateway Code Execution Vulnerability
S.Siedle & Soehne SG 150-0 Smart Gateway is a home smart gateway product from S.Siedle & Soehne, Germany. A security vulnerability exists in the S.Siedle & Soehne SG 150-0 Smart Gateway prior to version 1.2.4. The vulnerability can be exploited by an attacker to execute code via the backup functi...
Gira TKS-IP-Gateway Operating System Command Injection Vulnerability
Gira TKS-IP-Gateway is a network communication gateway product from Gira Germany. A security vulnerability exists in Gira TKS-IP-Gateway version 4.0.7.7. The vulnerability can be exploited by an attacker to execute code via the backup function of the web front-end...
CVE-2019-19105
The backup function in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway saves the current settings and configuration of the application, including credentials of existing user accounts and other configuration's credentials in plaintext...
h2: Information Exposure due to insecure handling of permissions in the backup
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files outside of their permissions via a symlink to a fake database file...
Exploit for Unrestricted Upload of File with Dangerous Type in Atutor
ATutor-Instructor-Backup-Exploit - Exploit Title: ATutor 2.2...
CVE-2018-15432
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote attacker to view sensitive information. The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit this vulnerability by...
CVE-2018-15432
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote attacker to view sensitive information. The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit this vulnerability by...
H2 Database 1.4.197 - Information Disclosure
H2 Database 1.4.197 - Information Disclosure Exploit Title: H2 Database 1.4.197 - Information Disclosure Date: 2018-07-16 Exploit Author: owodelta Vendor Homepage: www.h2database.com Software Link: http://www.h2database.com/html/download.html Version: all versions Tested on: Linux CVE :...
H2 Database 1.4.197 - Information Disclosure Exploit
Exploit for linux platform in category web applications Exploit Title: H2 Database 1.4.197 - Information Disclosure Exploit Author: owodelta Vendor Homepage: www.h2database.com Software Link: http://www.h2database.com/html/download.html Version: all versions Tested on: Linux CVE : CVE-2018-14335...
CVE-2018-14335
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files outside of their permissions via a symlink to a fake database file...
Design/Logic Flaw
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files outside of their permissions via a symlink to a fake database file...
UBUNTU-CVE-2018-14335
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files outside of their permissions via a symlink to a fake database file...
Sandstorm Arbitrary File Read Vulnerability
Sandstorm is a personal cloud platform. The platform features file storage, application management, task and project management, and more. A security vulnerability exists in versions prior to Sandstorm build 0.203, which stems from the failure of the 'findFilesToZip' function to filter newline n...
Simple App to-end security vulnerability of the backup function is enabled and a local denial of service vulnerability-vulnerability warning-the black bar safety net
The last description about the App end to sensitive information leaks, then the App end what security vulnerability is worth the developers food for thought and attention? When an App installed in A mobile phone, the user Joe Smith to login through the App, the login data is stored in the mobile...
Some disks which were excluded in the source backup are included in the replication job settings
Challenge A Replication job utilizing the Replica from Backup feature to source data from a Backup job's restore points fails with the error: Some disks which were excluded in the source backup are included in the replication job settings Cause This error occurs when there are disks that were...
Authentication-Bypass in CosmoShop ePRO V10.17.00 (and lower, maybe higher)
Issue: Authentication-Bypass in CosmoShop ePRO V10.17.00 and lower, maybe higher Author: l0om http://l0om.org Date: 26.02.2013 Overview: Cosmoshop provides an admin backup-function which saves .htaccess protected MySQL dump files in a backup directory. This directory does only prevent HTTP...
WordPress Better WP Security 3.6.3 XSS / Disclosure
Exploit Title: Wordpress Plugin - Better WP Security multiple vulnerability Date: 2014 11 Fabruary Exploit Author: Yashar shahinzadeh Special thanks to Mormoroth Credit goes for: http://y-shahinzadeh.ir & ha.cker.ir Vendor Homepage: https://wordpress.org/plugins/better-wp-security/ Tested on: Lin...
How to Relocate Veeam Backup & Replication Backup Files
Other Data Relocation-Related Articles KB2236 --Moving backup files to/from a Scale-Out Backup Repository. KB2321 -- Changing the backup location of Veeam Agent jobs operating in Standalone mode not directly controlled by Veeam Backup & Replication but targeting a Veeam Backup & Replication...
W78cms website management system 0day-vulnerability warning-the black bar safety net
The vulnerability is simple, appear in the editor above, the prawns should all know: Keywords: inurl:ShopMore. asp? id Visit this address http://hackqing.com/nbwebshell/admin/Editor/asp/upload.asp?action=save&type=image&style=popup&cusdir=Hack. the asp Visit this address can build a Hack. ASP...
China computer education web site management system 3. 0 vulnerability analysis-vulnerability warning-the black bar safety net
In the/edit/downfile. asp has the following code: Copy code !-- include file="fsoconfig. asp" - !-- include file="checklogin. asp" - % call downloadFileRequest"path" function downloadFilestrFile strFilename = server. MapPathstrFile Response. Buffer = True Response. Clear Set s = Server...