28 matches found
CVE-2020-21650
CVE-2020-21650 concerns Myucms v2.2.1 with a remote code execution vulnerability in the component \controller\Config.php , exploitable via the add() method. The connected sources consistently identify an RCE condition but do not provide specific root-cause details or official patch versions. Some...
PT-2021-10650 · Muyucms · Muyucms
Name of the Vulnerable Software and Affected Versions: Myucms version 2.2.1 Description: The issue is related to a remote code execution RCE vulnerability in the controllerConfig.php component. This vulnerability can be exploited via the add method. Recommendations: For Myucms version 2.2.1,...
PT-2021-10651 · Muyucms · Muyucms
Name of the Vulnerable Software and Affected Versions: Myucms version 2.2.1 Description: The issue is related to a remote code execution RCE vulnerability in the controllerpoint.php component. This vulnerability can be exploited via the add method. Recommendations: For Myucms version 2.2.1,...
The vulnerability of the jp2image.cpp component in the Exiv2 metadata management library allows a attacker to cause a service failure.
The vulnerability of the jp2image.cpp component in the Exiv2 metadata management library is related to incorrect error handling. Exploiting this vulnerability may allow a malicious actor to trigger a service failure SIGABRT by calling the Safe::add function remotely...
CVE-2019-5886
An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file, there is no validation lock file in the Add method, which allows an attacker to reinstall the database. The attacker can write arbitrary code to database.php during system reinstallation...
CVE-2017-12814
Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable...
CVE-2017-12814
Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24.3-RC1 and 5.26.x before 5.26.1-RC1 on Windows allows attackers to execute arbitrary code via a long environment variable...
Quest InTrust Annotation Objects ActiveX Control Add Method Vulnerability
Added: 04/27/2012 BID: 52765 OSVDB: 80662 Background InTrust collects, stores, reports and alerts on event log data from Windows, Unix and Linux systems. Problem Quest Intrust Annotation Objects ActiveX Control AnnotateX.dll is vulnerable to remote code execution due to an input validation error...