Cobbler Arbitrary File Writing Vulnerability

Cobbler is a network installation server suite, which is mainly used to quickly set up Linux network installation environment.Cobbler in versions prior to 3.3.0 there is an arbitrary file writing vulnerability, the vulnerability originates from the system does not do effective filtering of user...

Design/Logic Flaw

In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS...

CVE-2021-21706

In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS...

CVE-2021-3806

A path traversal vulnerability on Pardus Software Center's "extractArchive" function could allow anyone on the same network to do a man-in-the-middle and write files on the system...

CVE-2021-39500

CVE-2021-39500 (EyouCMS 1.5.4) is a directory traversal vulnerability caused by a lack of input validation in the parameters tpldir, filename, type, and nid, allowing an attacker to inject "../" to escape and write files to writable directories. Connected sources corroborate the issue across mult...

The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software lies in its ability to read data beyond the buffer boundaries, allowing an attacker to disclose protected information.

The vulnerability of the Adobe DNG Software Development Kit’s file reading and writing software relates to reading beyond the buffer boundaries. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

CVE-2021-40153

squashfsopendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash. The filename is not validated for traversal outside of the destination directory, and thus allows writing to locations...

Microsoft Exchange ProxyShell Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'winrm' class MetasploitModule 'Microsoft Exchange ProxyShell RCE', 'Description' = %q This module exploit a vulnerability on Microsoft Exchange Server that allo...

Foxit PDF Reader and Foxit PDF Editor file writing vulnerability

Foxit PDF Reader and Foxit PDF Editor are both products of Foxit China. Foxit PDF Reader is a PDF reader and Foxit PDF Editor is a PDF editor. A security vulnerability exists in versions prior to 11.0.1, which can be exploited to allow an attacker to write arbitrary files via submitForm...

Design/Logic Flaw

An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows writing to arbitrary files via submitForm...

CVE-2021-38572

CVE-2021-38572 affects Foxit Reader and Foxit PhantomPDF prior to 10.1.4, where the extractPages pathname is not validated, allowing an attacker to write to arbitrary files. The connected documents confirm the affected products and the root cause (unvalidated extractPages pathname). No exploitati...

CVE-2021-38573

Foxit Reader and Foxit PhantomPDF are affected by CVE-2021-38573. The vulnerability arises from not validating the CombineFiles pathname, enabling arbitrary file writes via this component/file handling; affected product versions are prior to 10.1.4. The issue is described across multiple sources ...

CVE-2021-32016

An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the writing of arbitrary files to a user-controlled location on the remote filesystem with user-controlled content via directory traversal, potentially leading to remote code and command execution...

Arbitrary file write vulnerability in Panavision OA E-office (CNVD-2021-55394)

Panavision OA E-office is a professional office software, a working platform for small businesses or teams. An arbitrary file write vulnerability exists in Panavision OA E-office, which can be exploited by an attacker to gain server control privileges...

Arbitrary File Write Vulnerability in Panavision OA E-office

Panavision OA E-office is a professional office software, a working platform for small businesses or teams. An arbitrary file write vulnerability exists in Panavision OA E-office, which can be exploited by an attacker to gain server control privileges...

Arbitrary File Write Vulnerability in Panavision OA E-office

Panmicro OA E-office system is a professional collaborative OA software for small and medium-sized organizations, a leading brand in the field of domestic collaborative OA office, dedicated to providing professional OA office system, mobile OA applications and other collaborative OA overall...

Arbitrary File Write Vulnerability in ZengCMS

ZengCMS is a backend management system based on the latest TP6.0.x framework and Layui 2.5.x. ZengCMS suffers from an arbitrary file write vulnerability, which can be exploited by an attacker to write malicious files on the server and execute system commands...

Advisory ROSA-SA-2021-1940

Software: openvpn 2.4.9 OS: Cobalt 7.9 CVE-ID: CVE-2020-11462 CVE-Crit: HIGH CVE-DESC: The issue was found in OpenVPN Access Server before 2.7.0 and 2.8.x before 2.8.3. When the full-featured RPC2 interface is enabled, a temporary management interface DoS state can be reached when sending an XML...

Synology DiskStation Manager Path Traversal Vulnerability (CNVD-2021-45742)

DiskStation Manager DSM is an operating system that runs on all Synology NAS and can be operated through an intuitive web interface. A path traversal vulnerability exists in the webapi component in Synology DiskStation Manager versions prior to 6.2.3-25426-3. A remote attacker can exploit the...

Vembu BDR Suite Code Issue Vulnerability (CNVD-2021-50574)

Vembu BDR Suite is a virtual machine management system. A code issue vulnerability exists in Vembu BDR Suite, which can be exploited by an attacker to write an unauthenticated file via a GET request that specifies the name and content of the file...