CVE-2005-1909

The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "...

EUVD-2005-1911

Malware in sbrugna...

CVE-2022-46135

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...

CVE-2022-46135

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...

Design/Logic Flaw

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...

CVE-2022-46135

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...

CVE-2022-46135

CVE-2022-46135 affects AeroCms v0.0.1. The vulnerability is an arbitrary file upload at /admin/posts.php?source=edit_post that enables uploading a webshell and taking control of the web server. Affected component is the upload endpoint in the admin/post editing flow; root cause details are consis...

CVE-2022-20737

A vulnerability in the handler for HTTP authentication for resources accessed through the Clientless SSL VPN portal of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker to cause a denial of service DoS condition on an affected device or to obtain portion...

Hestiacp Cross-Site Scripting Vulnerability

Hestiacp is an open source Linux web server control panel designed to provide administrators with an easy-to-use web and command line interface. Hestiacp suffers from a cross-site scripting vulnerability that originates from an unprocessed user-controlled GET domain parameter in index.php, which...

Command Execution Vulnerability in the Second Generation Firewall of Shenzhen Netcom Technology Co.

Ltd. was established in 2004, is a national high-tech enterprise specializing in the research and development, production, sales and service of products in the field of network information security. The second generation firewall of Shenzhen Netvantage Technology Co., Ltd. has a command execution...

Command Execution Vulnerability in CareyShop

CareyShop referred to as CS is an open source mall framework based on ThinkPHP framework development system. A command execution vulnerability exists in CareyShop. An attacker can exploit this vulnerability to gain control of the web server...

Command Execution Vulnerability in Rockwell Automation/Allen-Bradley 1756-EN2T/D PLCs

The Rockwell Automation/Allen-Bradley 1756-EN2T/D PLC is a programmable controller. A command execution vulnerability exists in the Rockwell Automation/Allen-Bradley 1756-EN2T/D PLC. An attacker could exploit this vulnerability to gain control of a web server...

Code execution vulnerability at hybbs 2.3.2 plugin

hybbs is a PHP web program that supports plugin extensions and template extensions. A code execution vulnerability exists in the hybbs 2.3.2 plugin, which can be exploited by an attacker to gain control of the web server...

File Upload Vulnerability in the Article Management System of FastPlace CMS

Fast Row CMS is open source and free PHP enterprise website production, construction, development and optimization of SEO management system. FMS article management system file upload vulnerability, an attacker can exploit the vulnerability to obtain control of the web server...

Command Execution Vulnerability in HYBBS

HYBBS is a PHP web program that supports plugin extensions and template extensions. HYBBS has a command execution vulnerability that can be exploited by an attacker to gain control of the web server...

File Upload Vulnerability in HYBBS

HYBBS is a PHP website program that supports plugin extensions and template extensions. HYBBS has a file upload vulnerability that can be exploited by attackers to gain control of the web server...

File upload vulnerability in EyouCms (CNVD-2021-26007)

EyouCms is a free and open source enterprise content management system based on the TP5.0 framework as the core development. EyouCms has a file upload vulnerability that can be exploited by attackers to gain control of the web server...

Command Execution Vulnerability in SongCMS PHP Version of Guangdong Kegel Technology Co. Ltd (CNVD-2021-24956)

SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. A command execution vulnerability exists in the PHP version of SongCMS by Guangdong Kege...

Command Execution Vulnerability in Ocean CMS (CNVD-2021-24764)

Ocean CMS is a video-on-demand system designed for webmasters with different needs. A command execution vulnerability exists in Ocean CMS, which can be exploited by attackers to gain control of the web server...

File Upload Vulnerability in Ke361

Ke361 is an open source Taobao system. Ke361 suffers from a file upload vulnerability that can be exploited by attackers to gain control of a web server...