FortiADC -- Read-Only user able to modify system files

An improper privilege management vulnerability CWE-269 in FortiADC may allow a remote authenticated attacker with restricted user profile to modify the system files using the shell access...

Fortinet FortiADC 安全漏洞

Fortinet FortiADC is an application delivery controller from Fortinet, Inc. Fortinet FortiADC is vulnerable to an authorization issue, which stems from improper privilege management. An attacker could exploit the vulnerability to modify system files using a shell...

Zyxel Firewall SUID Binary Privilege Escalation

This module exploits CVE-2022-30526, a local privilege escalation vulnerability that allows a low privileged user e.g. nobody escalate to root. The issue stems from a suid binary that allows all users to copy files as root. This module overwrites the firewall's crontab to execute an attacker...

CVE-2022-29964

The Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 misuse passwords. WIOC SSH provides access to a shell as root, DeltaV, or backup via hardcoded credentials. NOTE: this is different from CVE-2014-2350...

CVE-2022-29964

The Emerson DeltaV Distributed Control System DCS controllers and IO cards through 2022-04-29 misuse passwords. WIOC SSH provides access to a shell as root, DeltaV, or backup via hardcoded credentials. NOTE: this is different from CVE-2014-2350...

Goldshell ASIC Miners 信任管理问题漏洞

Goldshell ASIC Miners is a mining host from Goldshell China. A security vulnerability exists in Goldshell ASIC Miners version v2.1.x, which stems from the discovery of hard-coded credentials included that allow an attacker to connect remotely via SSH protocol port 22...

CVE-2022-27483

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiManager version 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.x and 6.0.x and FortiAnalyzer version 7.0.0 through 7.0.3, version 6.4.0 through 6.4.7, 6.2.x and 6.0.x allows attacker to...

CVE-2021-36461

An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows attackers to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini...

Microweber 代码问题漏洞

Microweber is an online store management system that provides drag and drop functionality from the Microweber community in the United States. The system includes modules for adding products, images, and more. A code issue vulnerability exists in Microweber 1.1.3, which can be exploited by an...

CVE-2022-29560

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions 2.15.1, RUGGEDCOM ROX MX5000RE All versions 2.15.1, RUGGEDCOM ROX RX1400 All versions 2.15.1, RUGGEDCOM ROX RX1500 All versions 2.15.1, RUGGEDCOM ROX RX1501 All versions 2.15.1, RUGGEDCOM ROX RX1510 All versions 2.15.1,...

Siemens RUGGEDCOM ROX 系列命令注入漏洞

RUGGEDCOM products provide a level of robustness and reliability that sets the standard for communication networks deployed in harsh environments. Siemens RUGGEDCOM ROX has a command injection vulnerability that could be exploited by an attacker with administrator privileges to access the shell o...

CVE-2022-32411

An issue in the languages config file of HongCMS v3.0 allows attackers to getshell...

HongCMS 安全漏洞

HongCMS is an open source lightweight content management system CMS. A security vulnerability exists in HongCMS v3.0 that stems from an issue in the language configuration file that allows an attacker to obtain a shell...

HongCMS 安全漏洞

HongCMS is an open source lightweight content management system CMS. A security vulnerability exists in HongCMS v3.0, which stems from an issue in the /template/edit component that allows an attacker to obtain a shell...

RCE due to Improper Authorization in 'Add Extension' functionality

Description The application does not properly implement authorization checks in the add extension functionality and allows a low-privileged user to upload extensions. Since no approval/verification is required to create an account in the application, any unauthenticated attacker can create a...

CVE-2022-2104

The www-data Apache web server account is configured to run sudo with no password for many commands including /bin/sh and /bin/bash...

CVE-2021-33014 KUKA KR C4 - Use of Hard-Coded Credentials

An attacker can gain VxWorks Shell after login due to hard-coded credentials on a KUKA KR C4 control software for versions prior to 8.7 or any product running KSS...

Tenda AX12 缓冲区错误漏洞

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China.Tenda AX12 is vulnerable to a buffer overflow vulnerability, which originates from the /goform/setMacFilterCfg function in the httpd service that does not properly validate data boundaries when performing operations on...

CVE-2022-27506

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI...

CVE-2022-27506

CVE-2022-27506 is a hard-coded credentials flaw that allows administrators to access the SD-WAN shell via the CLI. The issue affects Citrix SD-WAN Center Management Console (before 11.4.3), Citrix SD-WAN Standard/Premium Edition Appliance (before 11.4.1), and Citrix SD-WAN Orchestrator for On-Pre...