OpenHarmony 安全漏洞

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom Foundation OpenAtom Foundation Foundation. A security vulnerability exists in OpenHarmony-v3.1.5 version and earlier versions. An attacker exploiting this vulnerability could gain access to kernel memory data...

SQL Injection

sequelize is vulnerable to SQL Injection attacks. A specifically crafted attack statement through query-generator.js allows a malicious user to inject and execute arbitrary SQL queries on the target system due to improper attribute filtering...

Apache Tomcat On Ubuntu Log Init Privilege Escalation Exploit

This Metasploit module targets a vulnerability in Tomcat versions 6, 7, and 8 on Debian-based distributions where these older versions provide a vulnerable tomcat init script that allows local attackers who have already gained access to the tomcat account to escalate their privileges from the...

VMware addresses Security Flaws in vRealize Log Insight

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary VMware has patched four security flaws in vRealize Log Insight aka Aria Operations for Logs that could potentially expose users to remote code execution attacks and allow an unauthenticated attack...

Cross-site Scripting (XSS)

phpmyfaq is vulnerable to Cross-Site ScriptingXSS attacks. The library does not properly escape the user input before converting to HTML entities, which allows an attacker to inject and execute malicious code on the target system...

Qognify Ocularis Insecure Deserialization (CVE-2020-27868)

An insecure deserialization vulnerability exists in Qognify Ocularis. Successful exploitation of this vulnerability could allow an unauthenticated attacker to execute arbitrary code on the target system...

Remote Code Execution

com.alibaba:hessian-lite is vulnerable to remote code execution. The vulnerability exists due to insecure input validation when processing serialized data in getSerializer and getDeserializer functions in SerializerFactory.java, which allows an attacker to pass specifically crafted data to the...

Remote Code Execution

Dolibarr is vulnerable to remote code execution. By default, it is possible to add any administrator to the installation page, which enables the malicious user to inject and execute malicious code on the target system due to improper validations in the verifCond function in functions.lib.php...

Zimbra Collaboration Suite Remote Code Execution Vulnerability

Zimbra Collaboration Suite ZCS is an open source collaborative office suite. The product includes WebMail, Calendar, Address Book, etc. A security vulnerability exists in Zimbra Collaboration Suite ZCS versions 8.8.15 and 9.0, which stems from a lack of valid authentication of uploaded files by t...

Cisco Nexus Dashboard Elevation of Privilege Vulnerability (CNVD-2022-54958)

Cisco Nexus Dashboard is the United States Cisco Cisco a single console. It can simplify the operation and management of data center networks. An elevation of privilege vulnerability exists in Cisco Nexus Dashboard that stems from insufficient input validation during CLI command execution. An...

Apple macOS Monterey Buffer Overflow Vulnerability

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. Apple macOS Monterey suffers from a buffer overflow vulnerability that originates from a boundary error in the handling of untrusted input in the SMB component, which can be exploited by an...

Improper Input Validation

In certain situations it is possible for an unmanaged rule to exist on the target system that has the same comment as the rule specified in the manifest. This could allow for unmanaged rules to exist on the target system and leave the system in an unsafe state. A flaw was found in the Puppet...

Carrier LenelS2 HID Mercury access panels OS command injection vulnerability

Carrier LenelS2 HID Mercury access panels is a controller panel from Carrier, U.S.A. An operating system command injection vulnerability exists in Carrier LenelS2 HID Mercury access panels, which could be exploited by an attacker to pass specially crafted data to an application and execute...

Validation Bypass

bottle is vulnerable to validation bypass. The library mishandles errors in handle function during early request binding, allowing an attacker to compromise the target system...

Mozilla Firefox Buffer Overflow Vulnerability (CNVD-2023-06864)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox suffers from a buffer overflow vulnerability that originates from a boundary error when processing HTML content. An attacker could exploit this vulnerability to execute arbitrary code o...

Money Transfer Management System SQL Injection Vulnerability (CNVD-2022-85121)

Money Transfer Management System is a remittance management system.Money Transfer Management System 1.0 is vulnerable to SQL injection, which can be exploited by attackers to obtain information about data in the target system...

IBM Robotic Process Automation SQL Injection Vulnerability

IBM Robotic Process Automation is a robotic process automation product from IBM Corporation. It helps you automate more business and IT processes at scale with the ease and speed of traditional RPA. IBM Robotic Process Automation is vulnerable to a SQL injection vulnerability that could be...

Adobe InDesign < 16.4.2 / 17.0 < 17.2.0 Multiple Arbitrary code execution (APSB22-23)

The version of Adobe InDesign installed on the remote Windows host is prior to 16.4.2, 17.2.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-23 advisory. - Adobe InDesign versions 17.1 and earlier and 16.4.1 and earlier are affected by an out-of-bounds write...

CVE-2021-20051

SonicWall Global VPN Client 4.10.7.1117 installer 32-bit and 64-bit and earlier versions have a DLL Search Order Hijacking vulnerability in one of the installer components. Successful exploitation via a local attacker could result in command execution in the target system...

CSV Injection

csv-safe is vulnerable to CSV injection. The library doesn't properly filter out special characters in str parameter which allows remote attackers to inject and execute malicious payloads on target system...