338 matches found
Microsoft Exchange ProxyLogon Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework begin auxiliary class class MetasploitModule 'Microsoft Exchange ProxyLogon Scanner', 'Description' = %q This module scan for a vulnerability on Microsoft Exchange Serve...
Siemens TIA Administrator Arbitrary File Write Vulnerability
TIA Administrator is a web-based framework that merges different functional modules to accomplish administrative tasks as well as to manage SIMATIC software and licenses. An arbitrary file write vulnerability exists in Siemens TIA Administrator, which can be exploited by an authenticated attacker...
RHEL 6 : numpy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - numpy: crafted serialized object passed in numpy.load in pickle python module allows arbitrary code...
Arbitrary File Write Vulnerability in Unisys Desktop Operating System of Unisys Software Technology Co.
Unisys desktop operating system is a domestic desktop operating system. Unisys Desktop Operating System has an arbitrary file write vulnerability, which can be exploited by attackers to modify arbitrary files for local lifting of privileges...
RHEL 7 : CloudForms 4.6.5 (RHSA-2018:3466)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3466 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments...
CVE-2024-31462
stable-diffusion-webui is a web interface for Stable Diffusion, implemented using Gradio library. Stable-diffusion-webui 1.7.0 is vulnerable to a limited file write affecting Windows systems. The createui method Backup/Restore tab in modules/uiextensions.py takes user input into the configsavenam...
CVE-2024-22178
A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of Open Automation Software OAS Platform V19.00.0057. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can send a sequence of requests to trigg...
CVE-2024-22178
Open Automation Software OAS Platform (V19.00.0057) has a file-write vulnerability in the OAS Engine Save Security Configuration feature. A crafted sequence of network requests can create or overwrite arbitrary files. TALOS confirms CVE-2024-22178 (CWE-73) affects OAS Platform V19.00.0057; impact...
Open Automation Software OAS Platform OAS Engine Tags Configuration file write vulnerability
Talos Vulnerability Report TALOS-2024-1950 Open Automation Software OAS Platform OAS Engine Tags Configuration file write vulnerability April 3, 2024 CVE Number CVE-2024-21870 SUMMARY A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open Automation Software...
Open Automation Software OAS Platform OAS Engine Save Security Configuration file write vulnerability
Talos Vulnerability Report TALOS-2024-1951 Open Automation Software OAS Platform OAS Engine Save Security Configuration file write vulnerability April 3, 2024 CVE Number CVE-2024-22178 SUMMARY A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of Open...
Ivanti ITSM 代码问题漏洞
Ivanti ITSM is an IT service management solution from Ivanti Corporation, USA. A security vulnerability exists in Ivanti ITSM versions prior to 2023.4. An attacker exploited the vulnerability to perform a file write operation to the server...
CVE-2024-22204
Whoogle Search is a self-hosted metasearch engine. Versions 0.8.3 and prior have a limited file write vulnerability when the configuration options in Whoogle are enabled. The config function in app/routes.py does not validate the user-controlled name variable on line 447 and configdata variable o...
Honor FRI-AN00 Security Vulnerability
Honor FRI-AN00 is a smartphone from China-based Honor Honor. The Honor FRI-AN00 suffers from a security vulnerability that stems from a file write vulnerability, successful exploitation of which may lead to information disclosure...
Honor NTH-AN00 Security Breach
The Honor NTH-AN00 Honor 50 is a smartphone from the Chinese company Honor. The Honor NTH-AN00 suffers from a security vulnerability that stems from a file write vulnerability, which can be successfully exploited to cause code execution...
CVE-2023-49796
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.11.4.1 contain a limited file write vulnerability in file.py Users should use MindsDB's staging branch or v23.11.4.1, which contain a fix for the issue...
PYSEC-2023-278
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.11.4.1 contain a limited file write vulnerability in file.py Users should use MindsDB's staging branch or v23.11.4.1, which contain a fix for the issue...
Design/Logic Flaw
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.11.4.1 contain a limited file write vulnerability in file.py Users should use MindsDB's staging branch or v23.11.4.1, which contain a fix for the issue...
PYSEC-2023-278
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.11.4.1 contain a limited file write vulnerability in file.py Users should use MindsDB's staging branch or v23.11.4.1, which contain a fix for the issue...
CVE-2023-49796 MindsDB Arbitrary File Write vulnerability
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.11.4.1 contain a limited file write vulnerability in file.py Users should use MindsDB's staging branch or v23.11.4.1, which contain a fix for the issue...
CVE-2023-46253 Remote code execution in Squidex
Squidex is an open source headless CMS and content management hub. Affected versions are subject to an arbitrary file write vulnerability in the backup restore feature which allows an authenticated attacker to gain remote code execution RCE. Squidex allows users with the squidex.admin.restore...