PT-2022-22806 · Zoho · Manageengine Opmanager +1

Name of the Vulnerable Software and Affected Versions: ManageEngine Password Manager Pro versions 12100 and prior ManageEngine OPManager versions 126100 and prior Description: The issue allows for unauthorized file and directory creation on a server machine. Recommendations: For ManageEngine...

CVE-2019-5422

XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an arbitrary file on the server...

UBUNTU-CVE-2018-1000550

The Sympa Community Sympa version prior to version 6.2.32 contains a Directory Traversal vulnerability in wwsympa.fcgi template editing function that can result in Possibility to create or modify files on the server filesystem. This attack appear to be exploitable via HTTP GET/POST request. This...

LebiShop Mall Backend Arbitrary File Write Vulnerability

LebiShop mall system is an online mall system using ASP.NET language. The system is widely used in small and medium-sized e-commerce enterprises. The mall system's management background provides a system template file editing function, the function of the page file parameters have not been strict...