CVE-2014-2914

fish aka fish-shell 2.0.0 before 2.1.1 does not restrict access to the configuration service aka fishconfig, which allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by setprompt...

CVE-2019-18276

An issue was discovered in disableprivmode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID not equal to its real UID, it will drop privileges by setting its effective UID to its real UID. However, it does so incorrectly. On Linux and other systems th...

Cisco IOS XE Path Traversal Vulnerability

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices. A path traversal vulnerability exists in the Guest Shell of Cisco IOS XE. The vulnerability stems from incomplete validation of certain commands. An attacker can exploit this vulnerability to execute arbitrary...

CVE-2019-13638

GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156...

BlogEngine.NET 3.3.6 / 3.3.7 dirPath Directory Traversal / Remote Code Execution

Exploit Title: Directory Traversal + RCE on BlogEngine.NET Date: 17 Jun 2019 Exploit Author: Aaron Bishop Vendor Homepage: https://blogengine.io/ Version: v3.3.7 Tested on: 3.3.7, 3.3.6 CVE : 2019-10719 1. Description ============== BlogEngine.NET is vulnerable to an Directory Traversal on...

The vulnerability of the SSH network protocol implementation in Cisco Wireless LAN Controllers allows a intruder to gain unauthorized access to protected information.

The vulnerability of the Secure Shell SSH network protocol implementation in Cisco Wireless LAN Controller WLC software relates to access control errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

CVE-2017-11561

CVE-2017-11561 affects ZOHO ManageEngine OpManager 12.2. An authenticated user can upload arbitrary files in the Group Chat or Alarm sections, enabling potential web shells. The vulnerability arises from insecure file upload handling, allowing an attacker to upload executable content. Public desc...

The vulnerability of the Shell component of the MySQL database management system, which allows a hacker to cause a service failure

The vulnerability of the Shell component of the Oracle MySQL database management system is related to insufficient access control. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Windows Shell component of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the Windows Shell component of the Windows operating system exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created web page from a remote location...

The vulnerability of the Remote Shell (RSH) service on the JunOS operating system allows a hacker to gain access to devices with root privileges.

The vulnerability of the Remote Shell RSH service in the JunOS operating system is related to insufficient access control. Exploiting this vulnerability could allow a malicious actor to gain access to the device with root privileges...

zsh utils.c:checkmailpath function stack buffer overflow vulnerability

Z Shell Zsh is a Unix shell that can be used as an interactive login shell and a shell script command interpreter. A stack buffer overflow vulnerability exists in the utils.c:checkmailpath function in zsh. A local attacker can exploit this vulnerability to execute arbitrary code in the context of...

UBUNTU-CVE-2018-1083

Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete functionality. A local unprivileged user can create a specially crafted directory path which leads to code execution in the context of the user who tries to use autocomplete to traverse the before mention...

Unauthorized Access Vulnerability in NX-OS System Software for Multiple Cisco Products

Cisco Nexus 3000 Series Switches and others are products of Cisco Corporation.Cisco Nexus 3000 Series Switches is a 3000 series switch.Nexus 9500 R-Series Line Cards is a 9500R series line card. NX-OS System Software is an operating system that runs on it. An unauthorized access vulnerability...

CVE-2017-12351

A vulnerability in the guest shell feature of Cisco NX-OS System Software could allow an authenticated, local attacker to read and send packets outside the scope of the guest shell container. An attacker would need valid administrator credentials to perform this attack. The vulnerability is due t...

The vulnerability of the Windows Shell component of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the Windows Shell component of the Windows operating system exists due to insufficient checking of file copy addresses. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary code in the context of the current user, using specially...

bash: popd controlled free

A denial of service flaw was found in the way bash handled popd commands. A poorly written shell script could cause bash to crash resulting in a local denial of service limited to a specific bash session...

Ceragon FibeAir IP-10 7.2.0 Hidden User Backdoor

Credits: Ian Ling + Website: iancaling.com + Source: http://blog.iancaling.com/post/160817658078 Vendor: ================= https://www.ceragon.com Products: ====================== Ceragon FibeAir IP-10 =7.2.0 latest version Vulnerability Types: =================== Hidden User Backdoor...

CVE-2017-8386

git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before 2.6.7, 2.7.x before 2.7.5, 2.8.x before 2.8.5, 2.9.x before 2.9.4, 2.10.x before 2.10.3, 2.11.x before 2.11.2, and 2.12.x before 2.12.3 might allow remote authenticated users to gain privileges via a repository name that starts with...

The vulnerability of the SSH network protocol, related to the disclosure of information, allows a perpetrator to gain access to confidential data.

The vulnerability of the SSH network protocol is related to an error in password hashing. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data remotely...

Google Android Remote Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. There is a security vulnerability in the Android Shell, which can be exploited by remote attackers to build special applications, induce application parsing, and elevate privileges...