CVE-2016-0908

EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root shell access by leveraging administrative privileges...

CVE-2016-0908

EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 are affected by CVE-2016-0908. The vulnerability allows a local attacker with administrative privileges to obtain root shell access by exploiting privilege escalation within the Isilon OneFS environment. The description confirms local...

CVE-2016-0908

EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root shell access by leveraging administrative privileges...

Meteocontrol WEB'log Arbitrary Command Execution Vulnerability

Meteocontrol WEB'log is a web-based SCADA system that provides energy and power configuration management functions using different connected devices. A security vulnerability exists in the access command shell-like functionality of several Meteocontrol WEB'log products, which could be exploited b...

SOL44611310 - MySQL vulnerability CVE-2015-0411

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

WordPress ImageMagick Remote Code Execution Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A remote code execution vulnerability exists in WordPress ImageMagick, which allows attackers to exploit the vulnerability to...

CVE-2016-2204

The management console on Symantec Messaging Gateway SMG Appliance devices before 10.6.1 allows local users to obtain root-shell access via crafted terminal-window input...

Input validation

The management console on Symantec Messaging Gateway SMG Appliance devices before 10.6.1 allows local users to obtain root-shell access via crafted terminal-window input...

CVE-2016-2204

The management console on Symantec Messaging Gateway SMG Appliance devices before 10.6.1 allows local users to obtain root-shell access via crafted terminal-window input...

SOL39250133 - glibc vulnerability CVE-2015-8779

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

phpshe backend arbitrary file deletion vulnerability

PHPSHE is the online shopping mall building program. An arbitrary file deletion vulnerability exists in the backend of phpshe. Attackers can utilize the vulnerability to obtain unlimited shell...

SOL21632201 - Linux kernel vulnerability CVE-2011-5321

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

Palo Alto Networks PAN-OS Command Injection Vulnerability (CNVD-2016-02011)

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks, Inc. for its firewall appliances. A security vulnerability exists in Palo Alto Networks PAN-OS. Due to the program failing to properly parse SSH command parameters. An attacker can exploit this vulnerability by...

TaoCMS v2.5Beta5 存在CSRF漏洞可getshell

No description provided by source...

对康创联盛的一次安全检测（成功getshell并可访问数据库）

简要描述： 不得不说,我真是倒霉 详细说明： 本来是打算睡觉的,结果忽然想到那天看到的一个论坛,新架设的,问了下基友,未能getshell 原谅我地址已经忘了... 于是乎就继续看了一下 继续跑一下三级域名,发现admin.hd.comsenz-service.com 手工测试一下弱口令,运气还不错 test test123 进来了 有pic 有j8 涉及多个分站,不过多叙述 进来发现只是个虚拟机啊,还不能执行命令,懒得提权了,就随手翻了翻配置 127.0.0.1 localhost VM138131centos 127.0.0.1 www.comsenz-service.com...

Cisco Nexus 3000 Series and 3500 Platform Switches Insecure Default Credentials Vulnerability (cisco-sa-20160302-n3k)

A vulnerability in Cisco NX-OS Software running on Cisco Nexus 3000 Series Switches and Cisco Nexus 3500 Platform Switches could allow an unauthenticated, remote attacker to log in to the device with the privileges of the root user with bash shell access. Copyright C 2016 Greenbone Networks GmbH...

Cisco Nexus 3000/3500 Switch Default Credentials Vulnerability

Cisco Nexus is Cisco's family of network switches designed for data centers. A security vulnerability exists in NX-OS on Cisco Nexus 3000 series switches and Cisco Nexus 3500 platform switches, which originates from a user account that is created during installation and cannot be deleted or...

SOL50413110 - GnuPG vulnerability CVE-2013-4351

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

SOL61570943 - libXML2 vulnerabilities CVE-2015-7941 and CVE-2015-7942

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

SOL95698826 - LZO vulnerability CVE-2014-4607

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...