Exploit for OS Command Injection in Gerapy

CVE-2021-43857 CVE-2021-43857 Gerpy command execution...

Pluck 代码问题漏洞

Pluck is a content management system CMS developed using the PHP language. A code issue vulnerability exists in Pluck CMS version 4.7.16, which stems from a remote shell upload execution vulnerability in Pluck CMS version 4.7.16...

USN-5327-1 netkit-rsh vulnerability

Hiroyuki Yamamori discovered that rsh incorrectly handled certain filenames. If a user or automated system were tricked into connecting to a malicious rsh server, a remote attacker could possibly use this issue to modify directory permissions...

USN-5327-1: rsh vulnerability

Hiroyuki Yamamori discovered that rsh incorrectly handled certain filenames. If a user or automated system were tricked into connecting to a malicious rsh server, a remote attacker could possibly use this issue to modify directory permissions...

Remote shell execution vulnerability in image_processing

Impact When using the apply method from imageprocessing to apply a series of operations that are coming from unsanitized user input, this allows the attacker to execute shell commands: rb ImageProcessing::Vips.apply system: "echo EXECUTED" EXECUTED This method is called internally by Active Stora...

Remote shell execution vulnerability when applying commands from user input

Impact When using the apply method from imageprocessing to apply a series of operations that are coming from unsanitized user input, this allows the attacker to execute shell commands: rb ImageProcessing::Vips.apply system: "echo EXECUTED" EXECUTED This method is called internally by Active Stora...

Path traversal

Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set an arbitrary file on the router's filesystem as the log file used by either Quagga service zebra or ripd. Subsequen...

CVE-2021-20134

Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set an arbitrary file on the router's filesystem as the log file used by either Quagga service zebra or ripd. Subsequen...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Log4jUnifi Exploiting CVE-2021-44228 in Unifi Network Applicat...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

CVE-2021-44228 Il 9 dicembre 2021 il mondo è venuto a conoscen...

Teamcenter Active Workspace Path Traversal Vulnerability

Teamcenter Active Workspace is a web application for accessing the Teamcenter system. Teamcenter Active Workspace path traversal vulnerability, where the application contains an insecure decompression mode, could lead to a compressed path traversal attack. An attacker could use this vulnerability...

CVE-2021-41547

A vulnerability has been identified in Teamcenter Active Workspace V4.3 All versions V4.3.11, Teamcenter Active Workspace V5.0 All versions V5.0.10, Teamcenter Active Workspace V5.1 All versions V5.1.6, Teamcenter Active Workspace V5.2 All versions V5.2.3. The application contains an unsafe...

Path traversal

A vulnerability has been identified in Teamcenter Active Workspace V4.3 All versions V4.3.11, Teamcenter Active Workspace V5.0 All versions V5.0.10, Teamcenter Active Workspace V5.1 All versions V5.1.6, Teamcenter Active Workspace V5.2 All versions V5.2.3. The application contains an unsafe...

CVE-2021-41547

A vulnerability has been identified in Teamcenter Active Workspace V4.3 All versions V4.3.11, Teamcenter Active Workspace V5.0 All versions V5.0.10, Teamcenter Active Workspace V5.1 All versions V5.1.6, Teamcenter Active Workspace V5.2 All versions V5.2.3. The application contains an unsafe...

CVE-2021-41547

CVE-2021-41547 affects Siemens Teamcenter Active Workspace (versions V4.3 < 4.3.11, V5.0 < 5.0.10, V5.1 < 5.1.6, V5.2

Siemens Teamcenter Active Workspace 路径遍历漏洞

Teamcenter Active Workspace is a web application for accessing the Teamcenter system. Teamcenter Active Workspace path traversal vulnerability, where the application contains an insecure decompression mode, could lead to a compressed path traversal attack. An attacker could use this vulnerability...

Exploit for CVE-2021-42278

noPac Exploiting CVE-2021-42278 and CVE-2021-42287 The origi...

Debian: Security Advisory (DLA-2822-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 2822-1] netkit-rsh security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2822-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 19, 2021 https://wiki.debian.org/LTS -...

[SECURITY] Fedora 34 Update: et-6.1.9-1.fc34

Eternal Terminal ET is a remote shell that automatically reconnects without interrupting the session...