2245 matches found
Code Execution Vulnerability in Netnifty CMS v7.3
Netnew CIMS is an intelligent program developed professionally for building personal and corporate websites. A code execution vulnerability exists in Netnifty CMS v7.3, which can be exploited to obtain a webshell due to insufficient filtering of the parameters of the database file to be backed up...
ABB MicroSCADA Installation Elevation of Privilege Vulnerability
ABB MicroSCADA is a suite of substation monitoring and control software from ABB Switzerland, developed specifically for power transmission and distribution systems. The software includes a human-machine interface MMI and flexible application engineering tools, and provides monitoring, event...
CVE-2017-8984
A remote code execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0506P03 was found...
CVE-2017-8961
A directory traversal vulnerability in HPE Intelligent Management Center IMC PLAT 7.3 E0504P02 could allow remote code execution...
CVE-2017-8956
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P04 was found...
CVE-2017-5816
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version 7.3 E0504P04 was found...
CVE-2017-12554
A remote code execution vulnerability in HPE intelligent Management Center iMC PLAT iMC Plat 7.3 E0504P2 and earlier was found...
CVE-2017-12534
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...
CVE-2017-12525
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...
CVE-2017-12511
A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...
OMRON NS Device Authentication Bypass Vulnerability
OMRON NS devices is a touch screen HMI programming device from Omron. A security vulnerability exists in OMRON NS devices versions 1.1 through 1.3. A remote attacker can exploit this vulnerability by sending a direct request to an .html file to bypass authentication...
Atlassian Confluence Server Cross-Site Scripting Vulnerability (CNVD-2018-03442)
Atlassian Confluence Server is a suite of professional enterprise knowledge management and collaboration software from Atlassian Australia, which can also be used to build an enterprise WiKi. the software enables collaboration and knowledge sharing amongst team members. A cross-site scripting...
phpyun v4.3.1 Beta has a reinstallation vulnerability
PHP cloud talent system phpyun is an open source talent and enterprise job search recruitment, hiring solutions built using PHP and MySQL database. A reinstallation vulnerability exists in phpyun v4.3.1 Beta. Allows attackers to exploit the vulnerability to reinstall the system...
NetIQ Access Manager Arbitrary Code Execution Vulnerability
NetIQ Access Manager NAM is a set of resource access control solutions from American NetIQ. The solution provides multiple authentication, data encryption, single sign-on and SSL VPN for local and remote users.Identity Server is one of the authentication servers. A security vulnerability exists i...
Advantech WebAccess Arbitrary File Upload Vulnerability
Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. An arbitrary file upload vulnerability exists in versions ...
CVE-2017-16736
An Unrestricted Upload Of File With Dangerous Type issue was discovered in Advantech WebAccess versions prior to 8.3. WebAccess allows a remote attacker to upload arbitrary files...
Advantech WebAccess Path Traversal Vulnerability
Advantech WebAccess formerly known as BroadWin WebAccess is a set of HMI/SCADA software based on browser architecture from Advantech. The software supports dynamic graphical displays and real-time data control, and provides the ability to remotely control and manage automation equipment. A path...
Advantech WebAccess Denial of Service Vulnerability (CNVD-2018-00673)
Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. A denial of service vulnerability exists in Advantech...
Advantech WebAccess stack buffer overflow vulnerability (CNVD-2018-00671)
Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. A stack buffer overflow vulnerability exists in versions...
CVE-2017-11296
An issue was discovered in Adobe Experience Manager 6.3, 6.2, 6.1, 6.0. A cross-site scripting vulnerability in Apache Sling Servlets Post 2.3.20 has been resolved in Adobe Experience Manager...