PT-2023-9256

Name of the Vulnerable Software and Affected Versions Gogs versions 0.13.0 and earlier Description The built-in SSH server of Gogs allows argument injection in internal/ssh/ssh.go, leading to remote code execution. Authenticated attackers can exploit this by opening an SSH connection and sending ...

CVE-2023-28308

Windows DNS Server Remote Code Execution Vulnerability...

Microsoft SQL Server Remote Code Execution Vulnerability

...

CVE-2023-21529

Microsoft Exchange Server Remote Code Execution Vulnerability...

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

...

Exploit for Argument Injection in Atlassian Bitbucket

CVE-2022-36804: Pre-Auth RCE in Atlassian Bitbucket Server A c...

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

CVE-2022-41037 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2022-34733

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...

Microsoft SharePoint Server Remote Code Execution Vulnerability

...

Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2021-31198 Microsoft Exchange Server Remote Code Execution Vulnerability

...

Microsoft Exchange Server Remote Code Execution Vulnerability (CNVD-2021-29060)

Microsoft Exchange Server is a mail server and calendar server developed by Microsoft. A remote code execution vulnerability exists in Microsoft Exchange Server, which can be exploited by an attacker to achieve remote code execution...

CVE-2021-26857 Microsoft Exchange Server Remote Code Execution Vulnerability

...

CVE-2005-0101

Buffer overflow in the socketgetline function in Newspost 2.1.1 and earlier allows remote malicious NNTP servers to execute arbitrary code via a long string without a newline character...

CVE-2003-1036

Multiple buffer overflows in the AGate component for SAP Internet Transaction Server ITS allow remote attackers to execute arbitrary code via long 1 command, 2 runtimemode, or 3 session parameters, or 4 a long HTTP Content-Type header...

CVE-2003-0939

eo420GetStringFromVarPart in veo420.c for SAP database server SAP DB 7.4.03.27 and earlier may allow remote attackers to execute arbitrary code via a connect packet with a 256 byte segment to the niserver aka serv.exe process on TCP port 7269, which prevents the server from NULL terminating the...

CVE-2003-0595

Buffer overflow in WiTango Application Server and Tango 2000 allows remote attackers to execute arbitrary code via a long cookie to WitangoUserReference...

CVE-2003-0271

Buffer overflow in Personal FTP Server allows remote attackers to execute arbitrary code via a long USER argument...

CVE-2002-0159

Format string vulnerability in the administration function in Cisco Secure Access Control Server ACS for Windows, 2.6.x and earlier and 3.x through 3.01 build 40, allows remote attackers to crash the CSADMIN module only denial of service of administration function or execute arbitrary code via...