422 matches found
CVE-2021-34811
Server-Side Request Forgery SSRF vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors...
CVE-2021-34811
Server-Side Request Forgery SSRF vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors...
CVE-2021-34809
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors...
Command injection
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors...
Server side request forgery (ssrf)
Server-Side Request Forgery SSRF vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors...
CVE-2021-34809
Improper neutralization of special elements used in a command 'Command Injection' vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors...
Synology Download Station 代码问题漏洞
Synology Download Station is a download management tool for Synology. A server-side request forgery vulnerability exists in the Synology Download Station task management component, which can be exploited by remote attackers to submit a special request to obtain sensitive information...
Server side request forgery (ssrf)
Server-Side request forgery SSRF vulnerability in task management component in Synology Download Station before 3.8.15-3563 allows remote authenticated users to read arbitrary files via unspecified vectors...
CVE-2021-33184
Synology Download Station (task management component) is affected by CVE-2021-33184. The vulnerability is a Server-Side Request Forgery (SSRF) that can be exploited by remote authenticated users to read arbitrary files via unspecified vectors. Affected versions are before 3.8.15-3563. The connect...
CVE-2021-33184
Server-Side request forgery SSRF vulnerability in task management component in Synology Download Station before 3.8.15-3563 allows remote authenticated users to read arbitrary files via unspecified vectors...
Courier Management System 1.0 - 'ref_no' SQL Injection
Exploit Title: Courier Management System 1.0 - 'refno' SQL Injection Exploit Author: Zhaiyi Zeo Date: 2020-12-11 Vendor Homepage: https://www.sourcecodester.com/php/14615/task-management-system-using-phpmysqli-source-code.html Software Link:...
Unbreakable Enterprise kernel security update
4.1.12-124.45.6 - qla2xxx: disable target reset during link reset and update version Quinn Tran Orabug: 32095664 - scsi: qla2xxx: Fix early srb free on abort Quinn Tran Orabug: 32095664 - scsi: qla2xxx: Fix comment in MODULEPARMDESC in qla2xxx Masanari Iida Orabug: 32095664 - scsi: qla2xxx: Enabl...
PESCMS Team Cross-Site Scripting Vulnerability
PESCMS TEAM is an open source team task management system under the GPLv2 license. a cross-site scripting vulnerability exists in PESCMS Team 2.3.2. An attacker can exploit this vulnerability to conduct cross-site scripting attacks...
Natlas - Scaling Network Scanning
You've got a lot of maps and they are getting pretty unruly. What do you do? You put them in a book and call it an atlas. This is like that, except it's a website and it's a collection of nmaps. The Natlas server doubles as a task manager for the agents to get work, allowing you to control the...
New Facebook Tool Let Users Transfer Their Photos and Videos to Google
Facebook has finally started implementing the open source data portability framework as the first phase of 'Data Transfer Project,' an initiative the company launched last year in collaboration with Google, Apple, Microsoft, and Twitter. Facebook today announced a new feature that will allow its...
Fedora Update for php-horde-nag FEDORA-2018-8ab75bcc08
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Introducing GoCrack: A Managed Password Cracking Tool
FireEye's Innovation and Custom Engineering ICE team released a tool today called GoCrack that allows red teams to efficiently manage password cracking tasks across multiple GPU servers by providing an easy-to-use, web-based real-time UI Figure 1 shows the dashboard to create, view, and manage...
CVE-2017-15200
In Kanboard before 1.0.47, by altering form data, an authenticated user can add a new task to a private project of another user...
The vulnerability in the task management of the 1x Android operating system from the CAF repository allows a perpetrator to compromise privacy, integrity, and accessibility.
The vulnerability in the task management of the 1x Android operating system arises from reading beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to compromise privacy, integrity, and accessibility...
The vulnerability in the task management of the 1x Android operating system from the CAF repository allows a attacker to trigger a buffer overflow.
Vulnerability of task management in the 1x Android operating system from the CAF repository. Exploiting this vulnerability can allow a malicious actor to trigger buffer overflows during task processing...