CVE-2018-10866

It was discovered that the /configuration view of redhat-certification 7 does not perform an authorization check and it allows an unauthenticated user to remove a "system" file, that is an xml file with host related information, not belonging to him...

Authorization

It was discovered that the /configuration view of redhat-certification 7 does not perform an authorization check and it allows an unauthenticated user to remove a "system" file, that is an xml file with host related information, not belonging to him...

CVE-2018-10866

CVE-2018-10866 affects redhat-certification version 7. The vulnerability stems from the /configuration view not performing an authorization check, enabling an unauthenticated user to remove a host-specific XML file (a “system” file). This represents an integrity/availability risk without requirin...

Arbitrary File Read Vulnerability in Novelty House-plus

Novel boutique-plus novel-plus is a multi-end PC, WAP reading, functional original literature CMS system , built on SpringCloud , using MyBatis as the persistence layer . Novel-plus has an arbitrary file read vulnerability that can be exploited by an attacker to read any file in the system...

CVE-2020-27569

Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the system...

Cisco SD-WAN vManage Software Multiple Vulnerabilities (cisco-sa-vmanage-YuTVWqy)

The version of Cisco SD-WAN vManage Software installed on the remote host is affected by multiple vulnerabilities as referenced in the cisco-sa-vmanage-YuTVWqy advisory, as follows: - A vulnerability in the remote management component allows an unauthenticated, remote attacker to cause a buffer...

ASUS BMC Firmware Path Traversal Vulnerability (CNVD-2021-36268)

ASUS BMC Firmware is a firmware from Asus China. A path traversal vulnerability exists in the ASUS BMC Firmware Web management page, which can be exploited by a remote attacker to gain administrator privileges and then access system files via path traversal...

OurPHP backend has an arbitrary file read vulnerability

OurPHP is an enterprise e-commerce marketing website building system. OurPHP backend has an arbitrary file reading vulnerability, which can be exploited by an attacker to read any system file...

Server Side Request Forgery (SSRF)

github.com/thecodingmachine/gotenberg is vulnerable to Server Side Request Forgery SSRF. An attacker is able to send malicious requests on behalf of the application via the /convert/html endpoint when the src attribute of an HTML element refers to an internal system file, such as...

CVE-2021-23345

All versions of package github.com/thecodingmachine/gotenberg are vulnerable to Server-side Request Forgery SSRF via the /convert/html endpoint when the src attribute of an HTML element refers to an internal system file, such as...

Server side request forgery (ssrf)

All versions of package github.com/thecodingmachine/gotenberg are vulnerable to Server-side Request Forgery SSRF via the /convert/html endpoint when the src attribute of an HTML element refers to an internal system file, such as...

CVE-2021-23345 Server-side Request Forgery (SSRF)

All versions of package github.com/thecodingmachine/gotenberg are vulnerable to Server-side Request Forgery SSRF via the /convert/html endpoint when the src attribute of an HTML element refers to an internal system file, such as...

Nozomi Networks Guardian Path Traversal Vulnerability

Nozomi Networks Guardian is an IoT device and software inspection system from Nozomi Networks, Switzerland. Nozomi Networks Guardian 20.0.7.3 version 20.0.7.3 and prior versions. A security vulnerability exists in the Nozomi Networks CMC 20.0.7.3 version 20.0.7.3 and prior versions, which...

CVE-2021-23876

Bypass Remote Procedure call in McAfee Total Protection MTP prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file modification as the SYSTEM user potentially causing Denial of Service via executing carefully constructed malware...

迈克菲 McAfee Total Protection 后置链接漏洞

McAfee Total Protection MTP is a one-stop security suite. An elevation of privilege vulnerability exists in McAfee Total Protection prior to version 16.0.30. A local attacker can exploit this vulnerability to elevate privileges and perform arbitrary file deletions with SYSTEM user privileges, whi...

CVE-2020-29489

Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. A user credentials including the Unisphere admin privilege user password is stored in a plain text in a system file. A local authenticated attacker with access to the syste...

CVE-2020-29489

Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability. A user credentials including the Unisphere admin privilege user password is stored in a plain text in a system file. A local authenticated attacker with access to the syste...

CVE-2020-26277

DBdeployer is a tool that deploys MySQL database servers easily. In DBdeployer before version 1.58.2, users unpacking a tarball may use a maliciously packaged tarball that contains symlinks to files external to the target. In such scenario, an attacker could induce dbdeployer to write into a syst...

Datacharmer Dbdeployer Backlink Vulnerability

Datacharmer Dbdeployer is a Go language based software for efficient deployment of Mysql databases by the individual developer Datacharmer. A security vulnerability exists in DBdeployer versions prior to 1.58.2, which stems from the possibility that a user unpacking a tarball could use a...

Sonatype Nexus Repository Manager External Entity Injection Vulnerability

Sonatype Nexus Repository Manager NXRM is a Maven repository manager from Sonatype USA. An external entity injection vulnerability exists in the Sonatype Nexus Repository Manager product, which allows an attacker with Nexus Repository Manager administrator privileges to configure the system in su...