2184 matches found
Swim Team <= v1.44.10777 - Local File Inclusion
The code in ./wp-swimteam/include/user/download.php doesn't sanitize user input from downloading sensitive system files. PoC $ curl "http://www.vapidlabs.com/wp-content/plugins/wp-swimteam/include/user/download.php?file=/etc/passwd=/etc/passwd=text/html=1=/usr/share/wordpress"...
Tai Chi jailbreak major security Backdoor-vulnerability warning-the black bar safety net
Tai Chi jailbreak iOS8. 1. 3-8. 4 contains a major security back door, escape after causing any the APP can extract right to the Root, thereby affecting the user data safe. For example to obtain Root permission after full control of system files, and even further to install Trojans and other...
WordPress Aspose Cloud eBook Generator Plugin Arbitrary File Download Vulnerability
WordPress is a blogging platform developed using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Aspose Cloud eBook Generator is a plugin for creating eBook blogs, articles, and other content. An arbitrary file download vulnerability exists in the...
Dreambox WebInfo Authentication Bypass Vulnerability
This exploit is caused by systems files , they are writable , so i check them and i was able to cat or download the /etc/shadow user file , and bypass auth by fetching the user and cracking password. This is private exploit. You can buy it at https://0day.today...
SavySoda WiFi HD has multiple vulnerabilities (CNVD-2015-03902)
SavySoda WiFi HD is a suite of applications that turn your iPhone into a wireless removable drive. A denial of service vulnerability and a directory traversal vulnerability exists in SavySoda WiFi HD, which could be exploited by a remote attacker to conduct a denial of service attack or overwrite...
Ubuntu 12.04 / 14.04 / 14.10 / 15.04 overlayfs Local Root Exploit
The overlayfs filesystem does not correctly check file permissions when creating new files in the upper filesystem directory. This can be exploited by an unprivileged process in kernels with CONFIGUSERNS=y and where overlayfs has the FSUSERNSMOUNT flag, which allows the mounting of overlayfs insi...
E-Detective Lawful Interception System LFD / Code Execution
Advisory: E-Detective Lawful Interception System multiple security vulnerabilities Date: 14/06/2015 CVE: unassigned Authors: Mustafa Al-Bassam https://musalbas.com slipstream/RoL https://twitter.com/TheWack0lian Software: Decision Group E-Detective Lawful Interception System Vendor URL:...
Magnifica Webscripts Anima Gallery Directory Traversal Vulnerability
Magnifica Webscripts is a PHP image management system. Magnifica Webscripts Anima Gallery suffers from a directory traversal vulnerability due to the func.php function in the program failing to adequately filter the 'theme' and 'lang' cookie parameter, which allows remote attackers to obtain the...
Pluck 'albums_getimage.php' path traversal vulnerability
pluk is a simple PHP-based content management system. A directory traversal vulnerability exists in Pluck that allows remote attackers to submit a special directory traversal request to view the contents of system files with WEB privileges...
Synology Cloud Station sync client for OS X allows regular users to claim ownership of system files
Overview The Synology Cloud Station sync client for OS X contains a setuid root executable that allows regular users to claim ownership of system files. Description CWE-276: Incorrect Default Permissions - CVE-2015-2851The Synology Cloud Station sync client for OS X contains an executable named...
WordPress Advanced XML Reader Plugin <= 0.1.1 - Arbitrary File Disclosure
This plugin is prone to a XML external entity data parsing arbitrary file disclosure vulnerability. It allows attackers to read system files. Solution Update the plugin...
ManageEngine Applications Manager FailOverHelperServlet Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose files on vulnerable installations of ManageEngine Applications Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the FailOverHelperServlet servlet. The issue lies in the...
EMC Isilon OneFS Elevation of Privilege Vulnerability
EMC Isilon OneFS is a distributed file system from EMC Corporation that supports EMC Isilon horizontally scalable storage systems. An elevation of privilege vulnerability exists in EMC Isilon OneFS, which can be exploited by local users to gain privileges by modifying system files...
Vulnerability: CVE-2 0 1 5-0 9 3 2-vulnerability warning-the black bar safety net
ANTLabs is a very popular gateway device. It is usually installed in hotels, conference centres and other places for guests to provide WIFI service. It is usually tied in a room for billing purposes. If you are in a hotel Use it, then you should be especially familiar with such devices...
CVE-2015-0528
The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability to modify system files...
CVE-2015-0528
The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability to modify system files...
File Containment Vulnerability in CDN Acceleration Server of Shanghai Dilian Information Technology Co.
Ltd. CDN acceleration server, through the introduction of active content management layer and global load balancing, and combined with content caching and other technologies, for users to build a middle layer optimized for broadband service support on the basis of the existing IP network, so that...
Webshop hun directory traversal vulnerability
Webshop hun is a WEB-based application. Webshop hun suffers from a directory traversal vulnerability that can be exploited by remote attackers to view the contents of system files with WEB privileges...
WordPress WP All Import Plugin <= 3.2.3 - Remote Code Execution
Because of this vulnerability, remote attackers can upload arbitrary files to system or retrieve any files on the system that ends in .txt or .html. Solution Update the plugin...
Speed Software Root Explorer Directory Traversal Vulnerability
Speed Software Root Explorer is an explorer for Android. A directory traversal vulnerability in Speed Software Root Explorer's handling of filenames allows attackers to exploit the vulnerability to overwrite system files...