4 matches found
SQL Injection
Overview drupal/core is an an open source content management platform powering millions of websites and applications. Affected versions of this package are vulnerable to SQL Injection via the process that handles SQL queries. An attacker can execute arbitrary SQL commands by injecting specially...
Custom API Generator for Cross Platform and Import Export in WP 2.0.3 Privilege Escalation
WordPress REST API | Custom API Generator For Cross Platform And Import Export In WP plugin versions 1.0.0 through 2.0.3 are susceptible to a privilege escalation vulnerability due to a missing capability check on the processhandler...
Privilege Escalation
rkt is vulnerable to privilege escalation attacks. Processes generated with the rkt enter command run with escalated capabilities, without seccomp filtering, and are not limited by cgroups which leads to the privilege escalation vulnerability. Affected component is Process Handler...
Debploit: Microsoft Windows NT/2000 debug API privelege escalation
By connection to PLC port DbgSsApiPOrt it's possible to obtain handler for any process or thread for debugging...