CVE-2015-4181

CVE-2015-4181 affects phpMyBackupPro versions 2.1–2.5 (get_file.php) with a directory traversal via the view parameter, enabling remote attackers to read arbitrary files. The issue is documented across multiple sources (NVD/NVD-linked CNVD entries) as a path-traversal vulnerability in get_file.ph...

CVE-2017-12598

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case...

Advanced Discovery of Privileged Accounts: ACLight

ACLight is a tool for discovering privileged accounts through advanced ACLs Access Lists analysis. It includes the discovery of Shadow Admins in the scanned network. The tool queries the Active Directory AD for its objects’ ACLs and then filters and analyzes the sensitive permissions of each one...

CVE-2017-12597

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread...

CVE-2017-12604

OpenCV Open Source Computer Vision Library through 3.3 has an out-of-bounds write error in the FillUniColor function in utils.cpp when reading an image file by using cv::imread...

CVE-2017-12601

CVE-2017-12601 is a buffer overflow in OpenCV's BMP decoder (cv::BmpDecoder::readData) in modules/imgcodecs/src/grfmt_bmp.cpp when reading images with cv::imread. Affected: OpenCV up to version 3.3; demonstrated by the 4-buf-overflow-readData-memcpy test case. The connected documents confirm the ...

CVE-2017-12637

Directory traversal vulnerability in scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS in SAP NetWeaver Application Server Java 7.5 allows remote attackers to read arbitrary files via a .. dot dot in the query string, as exploited in the wild in August 2017, aka SAP Security Note 2486657. Recen...

CVE-2017-12586

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users...

Directory traversal

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users...

CVE-2017-12586

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users...

CVE-2017-12586

SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. It can be exploited by remote authenticated librarian users...

CVE-2017-12586

The CVE-2017-12586 issue affects SLiMS 8 Akasia up to version 8.3.1. Affected component: admin/help.php URL parameter handling, where a directory traversal flaw allows arbitrary file reading. It can be exploited by remote authenticated librarian users. The connected sources confirm the vulnerabil...

Sitecore Path Traversal Vulnerability

Sitecore is an online marketing content management system CMS from Sitecore, Denmark. The system supports content editing, multiple languages, multi-site deployment, digital asset management and more. A path traversal vulnerability exists in Sitecore version 8.2. An attacker can exploit this...

wstmall open source mall system payCode parameters exist arbitrary file read vulnerability

WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help companies and individuals to quickly build a community service system. wstmall open source mall system payCode parameters exist arbitrary file reading vulnerability ,...

WordPress Photo Gallery Directory Traversal Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A directory traversal vulnerability exists in the WordPress Photo Gallery plugin, which can be exploited by an attacker to...

Vivotek Network Camera arbitrary file reading and command execution vulnerability

Author: Super viagra the blue cat Within the network there are some Vivotek network camera, as a monitor. Direct access to the 80 port of the Web service, the Configure - maintenance - import/export file to export the configuration file, get a contains etc folder of the tar package. From a...

IBM Cognos Business Intelligence Server Cognos Analytics Information Disclosure Vulnerability

IBM Cognos Business Intelligence Server is a suite of business intelligence and performance management solutions from IBM in the United States. The solution reports, analyzes, monitors and evaluates business data.Cognos Analytics is one of the data mining and analysis components. An information...

Website Star CMS has multiple vulnerabilities

Ltd. is a first-class Internet application service provider based on cloud computing. There is an arbitrary file name modification, arbitrary file reading vulnerability in the background of CMS. Attackers can use this vulnerability to arbitrarily delete or read website file information, and can n...

Riverbed SteelHead VCX 9.6.0a Arbitrary File Read

Exploit title : Arbitry file reading by authenticated users on Riverbed SteelHead VCX Vendor: Riverbed Author: Gregory DRAPERI Date: 03/2017 Software Link: https://www.riverbed.com/gb/products/steelhead/Free-90-day-Evaluation-SteelHead-CX-Virtual-Edition.html Version: SteelHead VCX VCX255U x8664...

CVE-2017-9295

CVE-2017-9295 describes an XML External Entity (XXE) information disclosure affecting Hitachi Device Manager (before 8.5.2-01) and Hitachi Replication Manager (before 8.5.2-00). The vulnerability allows authenticated remote users to read arbitrary files due to a flaw in how XML input is processed...