162 matches found
CVE-2016-3654
The device management command line interface CLI in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote authenticated administrators to execute arbitrary OS commands via an SSH command parameter...
Design/Logic Flaw
The device management command line interface CLI in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote authenticated administrators to execute arbitrary OS commands via an SSH command parameter...
CVE-2016-3654
The device management command line interface CLI in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote authenticated administrators to execute arbitrary OS commands via an SSH command parameter...
CVE-2015-4027
The AcuWVSSchedulerv10 service in Acunetix Web Vulnerability Scanner WVS before 10 build 20151125 allows local users to gain privileges via a command parameter in the reporttemplate property in a params JSON object to api/addScan...
CVE-2015-4276
Cisco WebEx Meetings Server 2.5MR1 allows remote authenticated users to execute arbitrary code via a crafted command parameter, aka Bug ID CSCus56138...
Cisco WebEx Meetings Server Remote Code Execution Vulnerability
A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability is due to insufficient sanitization of user-supplied input. An attacker could exploit this vulnerability by sending crafted data in a...
Feixun Wireless Router FWR-604H - Remote Code Execution Exploit
No description provided by source. Exploit Title: Feixun FWR-604H Wireless Router Remote Code Execution Date: 2014-01-09 Exploit Author: Arash Abedian http://www.exploit-db.com/author/?a=6187http://www.exploit-db.com/author/?a=6187 Vendor Homepage: http://feixun.com.cn Version: Hardware Version...
Feixun Wireless Router FWR-604H - Remote Code Execution
Exploit Title: Feixun FWR-604H Wireless Router Remote Code Execution Date: 2014-01-09 Exploit Author: Arash Abedian http://www.exploit-db.com/author/?a=6187 Vendor Homepage: http://feixun.com.cn Version: Hardware Version 1.0, Firmware Build: 7642 Tested on: Hardware Version 1.0, Firmware Build:...
Feixun Wireless Router FWR-604H - Remote Code Execution
Feixun Wireless Router FWR-604H - Remote Code Execution Exploit Title: Feixun FWR-604H Wireless Router Remote Code Execution Date: 2014-01-09 Exploit Author: Arash Abedian http://www.exploit-db.com/author/?a=6187 Vendor Homepage: http://feixun.com.cn Version: Hardware Version 1.0, Firmware Build:...
Feixun Wireless Router FWR-604H - Remote Code Execution Exploit
Exploit for hardware platform in category web applications Exploit Title: Feixun FWR-604H Wireless Router Remote Code Execution Date: 2014-01-09 Exploit Author: Arash Abedian Vendor Homepage: http://feixun.com.cn Version: Hardware Version 1.0, Firmware Build: 7642 Tested on: Hardware Version 1.0,...
Feixun FWR-604H Remote Command Execution
Exploit Title: Feixun FWR-604H Wireless Router Remote Code Execution Date: 2014-01-09 Exploit Author: Arash Abedian http://www.exploit-db.com/author/?a=6187 Vendor Homepage: http://feixun.com.cn Version: Hardware Version 1.0, Firmware Build: 7642 Tested on: Hardware Version 1.0, Firmware Build:...
Cross site scripting
Cross-site scripting XSS vulnerability in mambots/editors/mostlyce/jscripts/tinymce/filemanager/connectors/php/connector.php in MOStlyCE before 2.4, as used in Mambo 4.6.3 and earlier, allows remote attackers to inject arbitrary web script or HTML via the Command parameter...
gmanedit多个缓冲区溢出漏洞
BUGTRAQ ID: 31040 Gmanedit是类似于HTML编辑器的GNOME用户手册编辑器。 Gmanedit中存在多个缓冲区溢出漏洞,在启动向导后如果在手册的标题或名称中输入了超长行的话,或提供了超长的COMMAND=参数,或对编辑器提供了200kb的文件,就可以触发这些溢出,导致执行任意代码。 以下是callbacks.c文件中的有漏洞代码段: 638 gchar command50,datos; 639 gint exitstatus; 640 641 / I read conf file /.gmaneditrc / 642 643 strcpytemp,...
CVE-2008-2841
Argument injection vulnerability in XChat 2.8.7b and earlier on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary commands via the --command parameter in an ircs:// URI...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Smart-Shop allow remote attackers to inject arbitrary web script or HTML via 1 the email parameter to index.php; or the command parameter to index.php in 2 the default action for the home page, 3 a currencies action, or 4 a basket action...
CVE-2007-5725
Multiple cross-site scripting XSS vulnerabilities in Smart-Shop allow remote attackers to inject arbitrary web script or HTML via 1 the email parameter to index.php; or the command parameter to index.php in 2 the default action for the home page, 3 a currencies action, or 4 a basket action...
CVE-2002-2348
Cross-site scripting XSS vulnerability in athcgi.exe in Authoria HR allows remote attackers to inject arbitrary web script or HTML via the command parameter...
CVE-2007-2020
Unspecified vulnerability in administration.php in xodagallery allows remote attackers to execute arbitrary code via the cmd parameter. NOTE: CVE disputes this vulnerability because administration.php does not use the cmd parameter for inclusion...
CVE-2007-1985
Multiple PHP remote file inclusion vulnerabilities in phpexplorator.php in phpexplorator 2.0 allow remote attackers to execute arbitrary PHP code via a URL in the 1 cmd or 2 langpath parameter...
win32 WinExec() Command Parameter 104+ bytes
Exploit for win32 platform in category shellcode ============================================ win32 WinExec Command Parameter 104+ bytes ============================================ ; ; relocateable dynamic runtime assembly code example using hash lookup ; ; WinExec with ExitThread ; 104 bytes ; ...