FreeBSD : py-salt -- potential shell injection vulnerabilities (865863af-fb5e-11e4-8fda-002590263bf5)

Colton Myers reports : In order to fix potential shell injection vulnerabilities in salt modules, a change has been made to the various cmd module functions. These functions now default to pythonshell=False, which means that the commands will not be sent to an actual shell. The largest side effec...

py-salt -- potential shell injection vulnerabilities

Colton Myers reports: In order to fix potential shell injection vulnerabilities in salt modules, a change has been made to the various cmd module functions. These functions now default to pythonshell=False, which means that the commands will not be sent to an actual shell. The largest side effect...

pillow multiple security vulnerabilities

Symbolic links vulnerability, DoS, shell injection...

cups-filters remove_bad_chars function arbitrary command execution vulnerability

CUPS is a Universal Unix Printing System, a cross-platform printing solution for Unix environments, based on the Internet Printing Protocol, providing most PostScript and raster printer services. A security vulnerability exists in the removebadchars function in cups-filters utils/cups-browsed.c,...

Cisco WebEx Meetings Server code execution

Shell injection...

Different mailx versions security vulnerabilities

Shell characters injection...

某高校通用内容管理系统后台任意用户登录+getshell

简要描述： 本来我是发现了该系统后台注入和万能密码登录的问题的，搜索了下没找到相关内容，以为没人提交过。等我整理好了，又发现了 http://www.wooyun.org/bugs/wooyun-2010-055845。 挺郁闷的啊....既然这样，那咱就换种方法吧。条条大路通后台啊 详细说明： 南京南软科技为研究生院开发的管理系统 http://www.southsoft.com.cn/Case.asp?id=941 该系统登陆后每次cookie都是一样的，通过简单的伪造cookie就可以绕过后台登陆。...

VideoScript 3.0 <= 4.0.1.50 - Official Shell Injection Exploit

No description provided by source. ?php =========================================== = x VideoScript 3.0 = 4.0.1.50 Official Shell Injection Exploit = = x by G4N0K = =========================================== errorreportingEALL; $G4N0K...

TCExam <= 4.0.011 (SessionUserLang) Shell Injection Exploit

No description provided by source. ?php printr' -------------------------------------------------------------------------- TCExam = 4.0.011 $COOKIESessionUserLang shell injection exploit by rgod mail: retrog at alice dot it site: http://retrogod.altervista.org...

VideoScript 3.0 <= 4.1.5.55 - Unofficial Shell Injection Exploit

No description provided by source. ?php ============================================= = x VideoScript 3.0 = 4.1.5.55 Unofficial Shell Injection Exploit = = x by G4N0K = ============================================= errorreportingEALL; $G4N0K...

Sun VirtualBox <= 3.0.6 - Privilege Escalation

No description provided by source. !/bin/sh CVE-2009-3692 Sun VirtualBox = 3.0.6 local root exploit ======================================================== Exploits popen meta char shell injection vulnerability in Sun VirtualBox. E.g. admin@sundevil:/test$ id uid=101admin gid=10staff...

ESA-2014-046: EMC Documentum Content Server Multiple Vulnerabilities

ESA-2014-046.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-046: EMC Documentum Content Server Multiple Vulnerabilities EMC Identifier: ESA-2014-046 CVE Identifier: CVE-2014-2506, CVE-2014-2507, CVE-2014-2508 Severity Rating: CVSS v2 Base Score: See below for individual scores Affecte...

openSUSE Security Update : weechat (openSUSE-SU-2012:1580-1)

added weechat-fix-hookprocess-shell-injection.patch which fixes a shell injection vulnerability in the hookprocess function bnc790217, CVE-2012-5534 - added weechat-fix-buffer-overflow-in-irc-color-decoding.patch which fixes a heap-based overflow when decoding IRC colors in strings bnc789146,...

Fedora 19 : python-gnupg-0.3.6-1.fc19 (2014-2140)

fixes protection against shell injection from previous 0.3.5 release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora 20 : python-gnupg-0.3.6-1.fc20 (2014-2103)

fixes protection against shell injection from previous 0.3.5 release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

yxcms各处存在xss可getshell

简要描述： 求审核啊，乌云是不是不重视xss了，可是这是通用性哟。而且也不是弹窗啊，getshell利用方法都给各位想好了…… 详细说明： 不知为何之前提交的一个投稿处的xss一直不审核。是不是要注册会员过于鸡肋，反正这网站各种xss，我干脆一起提交了吧。 1.文章评论处xss，需要改包，无需登录：alertdocument.cookie 2.留言板处xss，无需登录：alertdocument.cookie 3.用户管理处xss，需要改包：alertdocument.cookie 利用方法： 外连如下javascript： $document.readyfunction var cod...

PineApp Mail-SeCure ldapsyncnow.php Arbitrary Command Execution

This module exploits a command injection vulnerability on PineApp Mail-SeCure 3.70. The vulnerability exists on the ldapsyncnow.php component, due to the insecure usage of the shellexec php function. This module has been tested successfully on PineApp Mail-SeCure 3.70. This module requires...

SuSE 11.2 / 11.3 Security Update : nagios-nrpe, nagios-plugins-nrpe (SAT Patch Numbers 8032 / 8033)

Nagios NRPE was updated to add more blacklisting to avoid shell injection via nagios request packets. CVE-2013-1362 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is...

Huawei E587 3G Mobile Hotspot Command Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2013-2612 Huawei E587 3G Mobile Hotspot Command Injection Summary: Huawei E587 3G Mobile Hotspot, version 11.203.27, is prone to a command injection vulnerability in the Web UI. Successful exploitation allows unauthenticated attackers to execute...

EasyPHP Webserver PHP Command Execution

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...