PT-2024-31462 · Za Internet · Za-Internet C-Mor Video Surveillance

Name of the Vulnerable Software and Affected Versions: za-internet C-MOR Video Surveillance version 5.2401 Description: An issue was discovered due to improper user input validation, making it possible to download arbitrary files from the system via a path traversal attack. Different...

[SECURITY] Fedora 38 Update: rdiff-backup-2.2.6-3.fc38

rdiff-backup is a script, written in Python, that backs up one directory to another and is intended to be run periodically nightly from cron for instance. The target directory ends up a copy of the source directory, but extra reverse diffs are stored in the target directory, so you can still...

The vulnerability of the backup_xi.sh script, a Nagios XI monitoring tool, allows a hacker to delete any files they desire.

The vulnerability of the backupxi.sh script, a monitoring tool for Nagios XI, is related to an uncontrolled recursion during the processing of parameters name and rootdir. Exploiting this vulnerability could allow a malicious actor to delete any files they desire...

PT-2023-7768 · Nagios Xi · Nagios Xi

Name of the Vulnerable Software and Affected Versions: Nagios XI affected versions not specified Description: The issue is related to the backup xi.sh script in Nagios XI, which is vulnerable due to uncontrolled recursion when processing the name and rootdir parameters. This could allow a remote...

The vulnerability in the implementation of the backup script backupConfig.sh allows a attacker to escalate their privileges. This vulnerability is related to the Fortinet FortiClient for Linux security solution.

The vulnerability of the backupConfig.sh script, which is used for creating a backup copy as part of the Fortinet FortiClient Linux security solution, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to enhance their privileges by sending special...

CVE-2021-36364

Nagios XI before 5.8.5 incorrectly allows backupxi.sh wildcards...

Deserialization of untrusted data

Nagios XI before 5.8.5 incorrectly allows backupxi.sh wildcards...

CVE-2021-36364

Nagios XI before 5.8.5 incorrectly allows backupxi.sh wildcards...

CVE-2021-36364

Nagios XI before 5.8.5 incorrectly allows backupxi.sh wildcards...

How to land on the Favourites view under Apps on StoreFront 1912?

To set the default landing page to 'Favourites' under the apps tab in 1912. By default, the landing page is 'Home'. The below script would help in achieving the same: Step 1: In the Storefront console, navigate to 'Manage Receiver for Web Sites' Step 2: Click configure and browse to 'Client...

184.107.232.226 Improper Access Control vulnerability

Open Bug Bounty ID: OBB-360526 Description| Value ---|--- Affected Website:| 184.107.232.226 Vulnerable Application:| Custom Code Vulnerability Type:| IAC Improper Access Control / CWE-284 CVSSv3 Score:| 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Remediation Guide:| OWASP Access Control Che...

Teampass v2.1.25 - Unauthenticated Access Vulnerability

Document Title: =============== Teampass v2.1.25 - Unauthenticated Access Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1844 Release Date: ============= 2016-05-17 Vulnerability Laboratory ID VL-ID: ==================================== 18...

Frisk F-Prot Antivirus 3.12 b Command Line Scanner Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6969/info Frisk's F-Prot Antivirus for Linux and BSD is prone to a buffer overflow in file name parameters that are passed to the command line scanner. If a backup script is launched by a privileged user to scan the...

CVE-2011-0532

The 1 backup and restore scripts, 2 main initialization script, and 3 ldap-agent script in 389 Directory Server 1.2.x aka Red Hat Directory Server 8.2.x place a zero-length directory name in the LDLIBRARYPATH, which allows local users to gain privileges via a Trojan horse shared library in the...

paFAQ 1.0 Beta 4 Multiple Vulnerabilities

The remote host is running paFAQ, a web-based FAQ system implemented in PHP / MySQL. The installed version of paFAQ on the remote host suffers from several vulnerabilities. Among the more serious are a SQL injection vulnerability that enables an attacker to bypass admin authentication and a...

PAFaq beta4 - Database Unauthorized Access

source: https://www.securityfocus.com/bid/13999/info paFaq is prone to an unauthorized access vulnerability regarding the database. This issue is a result of the application failing to perform access validation on the 'backup.php' script. A remote unauthenticated user can invoke the script and...

PAFaq beta4 - Database Unauthorized Access

PAFaq beta4 - Database Unauthorized Access source: https://www.securityfocus.com/bid/13999/info paFaq is prone to an unauthorized access vulnerability regarding the database. This issue is a result of the application failing to perform access validation on the 'backup.php' script. A remote...

[Full-disclosure] rsnapshot Security Advisory 001

============================================================================ rsnapshot Security Advisory 001 [email protected] http://www.rsnapshot.org/security/ Apr 10th, 2005 Nathan Rosenquist ============================================================================ Severity: high...