Tenable Network Security Nessus 输入验证错误漏洞

Tenable Network Security Nessus is an open source system vulnerability scanner from Tenable Network Security, USA. An input validation error vulnerability exists in Nessus Agent version 8.3.0 and prior versions, which can be exploited by an attacker to run a specific executable file on the Nessus...

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System (IGSS) allows a intruder to perform arbitrary actions.

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System IGSS relates to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a attacker to execute arbitrary code...

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System (IGSS) allows a intruder to perform arbitrary actions.

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System IGSS is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a intruder to execute arbitrary code...

OpenMage Magento LTS Input Validation Error Vulnerability (CNVD-2021-101205)

OpenMage Magento Lts Magento, an e-commerce system from the OpenMage organization, is vulnerable to an input validation error in versions prior to OpenMage Magento LTS 19.4.15 and 20.0.13, which can be exploited by attackers to upload arbitrary executable files to the server...

Kramer Electronics VIAware 代码问题漏洞

Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics Israel. A code issue exists in Kramer Electronics VIAware that allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable...

GHSA-XM9F-VXMX-4M58 Data Flow Sanitation Issue Fix

Impact Due to missing sanitation in data flow it was possible for admin users to upload arbitrary executable files to the server...

Data Flow Sanitation Issue Fix

Impact Due to missing sanitation in data flow it was possible for admin users to upload arbitrary executable files to the server...

Remote Code Execution (RCE)

openmage/magento-lts is vulnerable to remote code execution. Lack of data flow sanitization allows admin users to upload malicious executable files to the server...

Design/Logic Flaw

OpenMage magento-lts is an alternative to the Magento CE official releases. Due to missing sanitation in data flow in versions prior to 19.4.15 and 20.0.13, it was possible for admin users to upload arbitrary executable files to the server. OpenMage versions 19.4.15 and 20.0.13 have a patch for...

CVE-2021-32759

OpenMage magento-lts before versions 19.4.15 and 20.0.13 are affected by a data-flow sanitation flaw that allowed admin users to upload arbitrary executable files to the server. The issue is mitigated by patches introduced in OpenMage 19.4.15 and 20.0.13. The connected sources consistently descri...

CVE-2021-32759 Data Flow Sanitation Issue Fix

OpenMage magento-lts is an alternative to the Magento CE official releases. Due to missing sanitation in data flow in versions prior to 19.4.15 and 20.0.13, it was possible for admin users to upload arbitrary executable files to the server. OpenMage versions 19.4.15 and 20.0.13 have a patch for...

GHSA-5XG3-J2J6-RCX4 Relative Path Traversal in git-delta

git-delta before 0.8.3 on Windows resolves an executable's pathname as a relative path from the current directory...

UBUNTU-CVE-2021-36690

A segmentation fault can occur in the sqlite3.exe command-line component of SQLite 3.36.0 via the idxGetTableInfo function when there is a crafted SQL query. NOTE: the vendor disputes the relevance of this report because a sqlite3.exe user already has full privileges e.g., is intentionally allowe...

CVE-2021-38557

raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/hostapd/enablelog.sh wit...

CVE-2021-38557

raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/hostapd/enablelog.sh wit...

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System (IGSS) allows a intruder to perform arbitrary actions.

The vulnerability of the executable file Def.exe in the interactive graphical SCADA system Interactive Graphical SCADA System IGSS is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a intruder to execute arbitrary code...

CVE-2021-3619

CVE-2021-3619 affects Rapid7 Velociraptor up to version 0.5.9. It is a post-authentication persistent XSS vulnerability where an authenticated user could abuse MIME type sniffing to embed executable code via a malicious upload. The issue was fixed in version 0.6.0. Note that Velociraptor login ri...

CVE-2021-3619 Rapid7 Velociraptor Notebooks Authenticated Persistent XSS

Rapid7 Velociraptor 0.5.9 and prior is vulnerable to a post-authentication persistent cross-site scripting XSS issue, where an authenticated user could abuse MIME filetype sniffing to embed executable code on a malicious upload. This issue was fixed in version 0.6.0. Note that login rights to...

Unrestricted file upload

Authenticated File Upload in WordPress Download Manager = 3.1.24 allows authenticated Author+ users to upload files with a double extension, e.g. "payload.php.png" which is executable in some configurations. This issue affects: WordPress Download Manager version 3.1.24 and prior versions...

DEBIAN-CVE-2020-24821

A vulnerability in the dwarf::cursor::skipform function of Libelfin v0.3 allows attackers to cause a denial of service DOS through a segmentation fault via a crafted ELF file...