826 matches found
Cisco Data Center Network Manager AFW Image Upload Directory Traversal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco Data Center Network Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
PT-2019-14912 · Fusionpbx · Fusionpbx
Name of the Vulnerable Software and Affected Versions: FusionPBX versions prior to 4.5.8 Description: The issue concerns an unsanitized file variable in the filedelete.php file, which is reflected in HTML. This leads to a potential XSS issue. Recommendations: For FusionPBX versions prior to 4.5.8...
RHEL 7 : OpenShift Container Platform 4.1 jenkins (RHSA-2019:2548)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:2548 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...
jenkins: Arbitrary file write vulnerability using file parameter definitions (SECURITY-1424)
A path traversal vulnerability in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java allowed attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an arbitrary fil...
jenkins: Arbitrary file write vulnerability using file parameter definitions (SECURITY-1424)
A path traversal vulnerability in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java allowed attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an arbitrary fil...
Nevma Adaptive Images File Inclusion Vulnerability
WordPress plugin Adaptive Images is used to serve images in Wordpress based on device resolution, allowing dynamic resizing. A file inclusion vulnerability exists in WordPress plugin Adaptive Images versions prior to 0.6.67. An attacker can exploit this vulnerability to retrieve arbitrary files v...
jenkins -- multiple vulnerabilities
Jenkins Security Advisory: Description Medium SECURITY-1424 / CVE-2019-10352 Arbitrary file write vulnerability using file parameter definitions High SECURITY-626 / CVE-2019-10353 CSRF protection tokens did not expire Medium SECURITY-534 / CVE-2019-10354 Unauthorized view fragment access...
CVE-2018-16961
An issue was discovered in Open XDMoD through 7.5.0. html/gui/general/dlpublication.php allows Path traversal via the file parameter, allowing remote attackers to read PDF files in arbitrary directories...
CVE-2018-17289
An XML external entity XXE vulnerability in Kofax Front Office Server Administration Console version 4.1.1.11.0.5212 allows remote authenticated users to read arbitrary files via crafted XML inside an imported package configuration .ZIP file within the Kofax/KFS/Admin/PackageService/package/uploa...
CVE-2018-17289
An XML external entity XXE vulnerability in Kofax Front Office Server Administration Console version 4.1.1.11.0.5212 allows remote authenticated users to read arbitrary files via crafted XML inside an imported package configuration .ZIP file within the Kofax/KFS/Admin/PackageService/package/uploa...
SDCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-07928)
Smoke and Fire Network Technology SDCMS is a PHP and MySQL based enterprise station building content management system CMS by China Smoke and Fire Network Technology. A cross-site request forgery vulnerability exists in version 1.7 of Fireworks SDCMS. A remote attacker can exploit this...
(0Day) Hewlett Packard Enterprise Intelligent Management Center CommonUtils unzip Directory Traversal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...
CVE-2019-9182
There is a CSRF in ZZZCMS zzzphp V1.6.1 via a /admin015/save.php?act=editfile request. It allows PHP code injection by providing a filename in the file parameter, and providing file content in the filetext parameter...
ZZZCMS zzzphp Cross-Site Request Forgery Vulnerability
ZZZCMS zzzphp is a content management system CMS. A cross-site request forgery vulnerability exists in ZZZCMS zzzphp version V1.6.1. A remote attacker can exploit this vulnerability to inject PHP code with the help of the 'file' and 'filetext' parameters...
jenkins: Arbitrary file write vulnerability using file parameter definitions
A path traversal vulnerability exists in Jenkins 2.145 and earlier, LTS 2.138.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java that allows attackers with Job/Configure permission to define a file parameter with a file name outside the intended directory, resulting in an...
Jenkins < 2.146 and < 2.138.2 LTS Multiple Vulnerabilities - Linux
Jenkins is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-12314
Directory Traversal in downloadwallpaper.cgi in ASUSTOR ADM version 3.1.1 allows attackers to download arbitrary files by manipulating the "file" and "folder" URL parameters...
WordPress Localize My Post plugin directory traversal vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Localize My Post is used in one of the plug-ins used to add content to the post. A directory traversal vulnerabili...
CVE-2018-14928
/contingency/servlet/ServletFileDownload executes as root and provides unauthenticated access to files via the file parameter...
Design/Logic Flaw
/contingency/servlet/ServletFileDownload executes as root and provides unauthenticated access to files via the file parameter...