Lucene search
K

545 matches found

NVD
NVD
added 2021/10/22 2:15 p.m.10 views

CVE-2021-38485

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

8.8CVSS0.0087EPSS
Exploits0References1
OSV
OSV
added 2021/10/22 2:15 p.m.5 views

CVE-2021-38485

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

8.8CVSS5.8AI score0.0087EPSS
Exploits0References1
Prion
Prion
added 2021/10/22 2:15 p.m.19 views

Input validation

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

6.5CVSS8.6AI score0.0087EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2021/10/22 1:23 p.m.19 views

CVE-2021-38485 Emerson WirelessHART Gateway

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk...

8CVSS8.8AI score0.0087EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2021/10/19 3:28 p.m.40 views

Nameko Arbitrary code execution due to YAML deserialization

Impact Nameko can be tricked to perform arbitrary code execution when deserialising a YAML config file. Example: yaml malicious.yaml !!python/object/new:type args: 'z', !!python/tuple , 'extend': !!python/name:exec listitems: "import'os'.system'cat /etc/passwd'" shell $ nameko run --config...

7.8CVSS7.8AI score0.01488EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2021/10/12 6:30 p.m.27 views

Prototype Pollution in config-handler

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

9.8CVSS3.9AI score0.01154EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2021/10/11 9:15 p.m.12 views

CVE-2021-23448

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

9.8CVSS6.8AI score
Exploits0References2
Cvelist
Cvelist
added 2021/10/11 8:15 p.m.18 views

CVE-2021-23448 Prototype Pollution

All versions of package config-handler are vulnerable to Prototype Pollution when loading config files...

6.5CVSS9.7AI score0.01154EPSS
Exploits1References2
OSV
OSV
added 2021/10/07 6:15 p.m.2 views

CVE-2021-29700

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 could allow an authneticated attacker to obtain sensitive information from configuration files that could aid in further attacks against the system. IBM X-Force ID: 200656...

4.3CVSS5.8AI score
Exploits0References2
Metasploit
Metasploit
added 2021/09/28 5:42 p.m.64 views

Digsby Credential Gatherer

This module searches for Digsby credentials on a Windows host. Module Options msf use post/windows/gather/credentials/digsby msf postdigsby show actions ...actions... msf postdigsby set ACTION msf postdigsby show options ...show and set options... msf postdigsby run This module requires Metasploi...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2021/09/28 5:42 p.m.113 views

Tango Credential Gatherer

This module searches for Tango credentials on a Windows host. Tango is a third-party, cross platform messaging application software for smartphones developed by TangoME, Inc. Module Options msf use post/windows/gather/credentials/tango msf posttango show actions ...actions... msf posttango set...

6.9AI score
Exploits0
OSV
OSV
added 2021/08/31 6:15 p.m.15 views

CVE-2021-39180

OpenOLAT is a web-based learning management system LMS. A path traversal vulnerability exists in versions prior to 15.3.18, 15.5.3, and 16.0.0. Using a specially prepared ZIP file, it is possible to overwrite any file that is writable by the application server user e.g. the tomcat user. Depending...

8.8CVSS7.5AI score
Exploits0References5
Cvelist
Cvelist
added 2021/08/31 5:55 p.m.18 views

CVE-2021-39180 Path Traversal in Archive Handling Leading to Code Execution

OpenOLAT is a web-based learning management system LMS. A path traversal vulnerability exists in versions prior to 15.3.18, 15.5.3, and 16.0.0. Using a specially prepared ZIP file, it is possible to overwrite any file that is writable by the application server user e.g. the tomcat user. Depending...

8.1CVSS9.1AI score0.02441EPSS
Exploits0References5
Snyk
Snyk
added 2021/08/16 1:9 p.m.6 views

Prototype Pollution

Overview Affected versions of this package are vulnerable to Prototype Pollution when loading config files. Details Prototype Pollution is a vulnerability affecting JavaScript. Prototype Pollution refers to the ability to inject properties into existing JavaScript language construct prototypes,...

9.8CVSS9AI score0.01154EPSS
Exploits1References2
OSV
OSV
added 2021/08/05 9:15 p.m.4 views

CVE-2021-34638

Authenticated Directory Traversal in WordPress Download Manager = 3.1.24 allows authenticated Contributor+ users to obtain sensitive configuration file information, as well as allowing Author+ users to perform XSS attacks, by setting Download template to a file containing configuration informatio...

6.5CVSS6.6AI score0.01331EPSS
Exploits1References1
Kitploit
Kitploit
added 2021/07/26 12:30 p.m.169 views

Juumla - Tool Designed To Identify And Scan For Version, Config Files In The CMS Joomla!

Juumla is a python tool developed to identify the current Joomla version and scan for readable Joomla config files. Installing / Getting started A quick guide of how to install and use Juumla. 1. Clone the repository - git clone https://github.com/oppsec/juumla.git 2. Install the libraries - pip3...

7.2AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/06/22 1:23 p.m.5 views

dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient

A flaw was found in the Dynamic Host Configuration Protocol DHCP. There is a discrepancy between the code that handles encapsulated option information in leases transmitted "on the wire" and the code which reads and parses lease information after it has been written to disk storage. This flaw...

7.4CVSS6.1AI score0.06118EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/06/14 8:10 p.m.3 views

dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient

A flaw was found in the Dynamic Host Configuration Protocol DHCP. There is a discrepancy between the code that handles encapsulated option information in leases transmitted "on the wire" and the code which reads and parses lease information after it has been written to disk storage. This flaw...

7.4CVSS6.1AI score0.06118EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/06/14 7:33 p.m.0 views

dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient

A flaw was found in the Dynamic Host Configuration Protocol DHCP. There is a discrepancy between the code that handles encapsulated option information in leases transmitted "on the wire" and the code which reads and parses lease information after it has been written to disk storage. This flaw...

7.4CVSS6.1AI score0.06118EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/06/14 2:53 p.m.6 views

dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient

A flaw was found in the Dynamic Host Configuration Protocol DHCP. There is a discrepancy between the code that handles encapsulated option information in leases transmitted "on the wire" and the code which reads and parses lease information after it has been written to disk storage. This flaw...

7.4CVSS6.1AI score0.06118EPSS
Exploits1References5
Rows per page
Query Builder