5300 matches found
CVE-2018-7526
In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, by accessing a specific uniform resource locator URL on the webserver, a malicious user may be able to access information in the application without authenticating...
CVE-2018-11322
An issue was discovered in Joomla! Core before 3.8.8. Depending on the server configuration, PHAR files might be handled as executable PHP scripts by the webserver...
CVE-2018-11322
An issue was discovered in Joomla! Core before 3.8.8. Depending on the server configuration, PHAR files might be handled as executable PHP scripts by the webserver...
Code injection
An issue was discovered in Joomla! Core before 3.8.8. Depending on the server configuration, PHAR files might be handled as executable PHP scripts by the webserver...
CVE-2018-11322
CVE-2018-11322 relates to Joomla! Core up to version 3.8.7 where PHAR files can be treated by the webserver as executable PHP scripts depending on server configuration. Connected sources confirm Joomla! 3.x line variants (up to 3.8.7) are affected by multiple vulnerabilities, including issues aro...
CVE-2018-11322
An issue was discovered in Joomla! Core before 3.8.8. Depending on the server configuration, PHAR files might be handled as executable PHP scripts by the webserver...
CVE-2018-11091
An issue was discovered in MyBiz MyProcureNet 5.0.0. A malicious file can be uploaded to the webserver by an attacker. It is possible for an attacker to upload a script to issue operating system commands. This vulnerability occurs because an attacker is able to adjust the...
Microsoft Word Document Upload to Stored XSS: A Case Study
Anytime I see a file upload form during an application test, my attention is piqued. In a best-case scenario, I can upload a reverse shell in a scripting language available on the webserver. If the application is running in PHP or ASP for example, it becomes quite easy. If I cant get a backdoor...
Microsoft Windows Device Guard CVE-2018-0958 Local Security Bypass Vulnerability
Description Microsoft Windows is prone to a local security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...
Trend Micro Smart Protection Server BWListMgmt SQL Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Smart Protection Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of parameters provided to wcs\bwlists\handler.php. The...
Huawei E5771h-937 Denial of Service Vulnerability
The Huawei E5771h-937 is a portable wireless router from Huawei China. A denial of service vulnerability exists in Huawei E5771h-937 E5771h-937TCPU-V200R001B328D62SP00C1133 prior and E5771h-937TCPU-V200R001B329D05SP00C1308 prior. An attacker can exploit this vulnerability to cause a denial of...
Security Advisory - DoS Vulnerability in Some Huawei MBB Products
Some Huawei MBB Mobile Broadband products have a Denial of Service DoS vulnerability. When an attacker accessing device sends special http request to device, the webserver process will try to apply too much memory which can cause the device to become unable to respond. An attacker can launch a Do...
Adobe Flash - Info Leak in Image Inflation
Adobe Flash - Info Leak in Image Inflation The attached image causes an info leak in image inflation. It occasionally crashes when rendered, otherwise it displays uninitialized memory as pixels. To reproduce, put the attached images on a webserver and vist: http://127.0.0.1?img=inflate.png. Proof...
Adobe Flash - Info Leak in Image Inflation Exploit
Exploit for multiple platform in category dos / poc The attached image causes an info leak in image inflation. It occasionally crashes when rendered, otherwise it displays uninitialized memory as pixels. To reproduce, put the attached images on a webserver and vist:...
Adobe Flash - Info Leak in Image Inflation
The attached image causes an info leak in image inflation. It occasionally crashes when rendered, otherwise it displays uninitialized memory as pixels. To reproduce, put the attached images on a webserver and vist: http://127.0.0.1?img=inflate.png. Proof of Concept:...
Energetic Bear/Crouching Yeti: attacks on servers
Energetic Bear/Crouching Yeti is a widely known APT group active since at least 2010. The group tends to attack different companies with a strong focus on the energy and industrial sectors. Companies attacked by Energetic Bear/Crouching Yeti are geographically distributed worldwide with a more...
CVE-2014-10073
The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...
DEBIAN-CVE-2014-10073
The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...
UBUNTU-CVE-2014-10073
The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...
CVE-2014-10073
The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...