SOL16984 - PCRE library vulnerability CVE-2015-2326

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...

ESA-2015-115: EMC RecoverPoint for Virtual Machines (VMs) Restriction Bypass Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-115: EMC RecoverPoint for Virtual Machines VMs Restriction Bypass Vulnerability EMC Identifier: ESA-2015-115 CVE Identifier: CVE-2015-4526 Severity Rating: CVSSv2 Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C Affected products: • EMC RecoverPoin...

SOL16950 - SQLite vulnerability CVE-2015-3416

Although the software of the affected F5 products contain the vulnerable code, the affected F5 products do not use the vulnerable code in a way which exposes the vulnerability in a standard configuration. An attacker must have local shell access to the affected F5 products to trigger an exploit...

SOL16865 - GNU C Library (glibc) vulnerability CVE-2015-1781

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Although the BIG-IP, BIG-IQ, and Enterprise Manager software contains the vulnerable code, BIG-IP, BIG-IQ, and Enterprise...

SOL16863 - Apache vulnerability CVE-2013-5704

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

FineCMS一处SQL注入

简要描述： 某处过滤不严格导致sql注入 详细说明： 在用户修改个人头像的地方： http://localhost:8081/index.php?s=member&c=info&a=avatar 没有对提交的参数进行过滤： $data = $this-input-post'data', TRUE; 直接带入了sql查询： $this-member-updatearray'avatar'= $data'avatar', 'id=' . $this-memberinfo'id'; 于是造成注入，本人使用如下注入代码： 'or updatexml1,concat0x7e,version,0...

WordPress dzs-zoomsounds Remote Shell Upload

Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google dork:inurl:/wp-content/plugins/dzs-zoomsounds/ Tested on : Linux | Windows...

WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload

WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google...

WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload

Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google dork:inurl:/wp-content/plugins/dzs-zoomsounds/ Tested on : Linux | Windows...

SOL16479 - Linux kernel vulnerability CVE-2009-4537

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...

Unrestricted file upload

Unrestricted file upload vulnerability in the Custom Prompts upload implementation in Cisco Unified MeetingPlace 8.61.9 allows remote authenticated users to execute arbitrary code by using the languageShortName parameter to upload a file that provides shell access, aka Bug ID CSCus95712...

某OA系统高危漏洞无需登陆Getshell

简要描述： 危害比较大把 详细说明： 我这个说的是前台无需登录的，前人好像说要注入后登录其实构造表单就可以了 海天OA官网：http://www.haitiansoft.com:8080/ 存在一处不需要登录就可以getshell的高危漏洞！ Upload bug: None...

Android OS 4.4.4 Backup Agent Arbitrary Code Execution Vulnerability

The Android backup agent implementation was vulnerable to privilege escalation and race condition. An attacker with adb shell access could run arbitrary code as the system 1000 user or any other valid package. The attack is tested on Android OS 4.4.4. Android backup agent arbitrary code execution...

CVE-2014-7953 Android backup agent code execution

Android backup agent arbitrary code execution --------------------------------------------- The Android backup agent implementation was vulnerable to privilege escalation and race condition. An attacker with adb shell access could run arbitrary code as the system 1000 user or any other valid...

SOL16398 - Python vulnerability CVE-2006-4980

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

SOL16285 - OpenSSL vulnerability CVE-2012-2110

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...

ArcSight Logger - Arbitrary File Upload / Code Execution

Exploit Title: ArcSight Logger - Arbitrary File Upload Code Execution Date: 13.03.2015 Exploit Author: Julian Horoszkiewicz Vendor Homepage: www.hp.com Software Link: http://www8.hp.com/us/en/software-solutions/arcsight-logger-log-management/try-now.html Version: ArcSight Logger 5.3.1.6838.0 and...

LebiShop商城系统无需登录getshell

简要描述： www.lebi.cn 十余年累计被 上万 个中小网站采用LebiShop = =官方demo 演示。 详细说明： 漏洞文件 http://demo.lebi.cn/ajax/imageuploadone.aspx 无需验证 参数path可控，这里修改为path=../config.asp 默认path 为upload。 官方限制目录执行了。但可绕过该上传目录。 利用iis 解析漏洞成功getshell。 漏洞证明： 如图。...

PCMan FTP Server 2.0.7 - 'MKD' Remote Buffer Overflow

Title: PCMan FTP Server v2.0.7 Buffer Overflow - MKD Command Date : 12/02/2015 Author: R-73eN Software: PCMan FTP Server v2.0.7 Tested On Windows Xp SP3 import socket 348 Bytes Bind Shell Port TCP/4444 shellcode = "\xdb\xcc\xba\x40\xb6\x7d\xba\xd9\x74\x24\xf4\x58\x29\xc9" shellcode +=...

SOL16122 - Linux kernel vulnerability CVE-2014-9322

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...