CVE-2018-25320 ACL Analytics 11.x - 13.0.0.579 Arbitrary Code Execution

ACL Analytics versions 11.x through 13.0.0.579 contain an arbitrary code execution vulnerability that allows attackers to execute arbitrary commands by leveraging the EXECUTE function. Attackers can use bitsadmin to download malicious PowerShell scripts and execute them with system privileges to...

SAP BusinessObjects Business Intelligence Platform授权问题漏洞

SAP BusinessObjects Business Intelligence Platform is a complete business analytics platform from SAP Germany. The platform combines market-leading SAP data integration products, data management products, and business intelligence BI products to eliminate system integration challenges and quickly...

Unauthenticated SQL Injection in SonicWall GMS and Analytics

Improper Neutralization of Special Elements used in an SQL Command leading to Unauthenticated SQL Injection vulnerability, impacting SonicWall GMS and Analytics On-Prem. CVE: CVE-2022-22280 Last updated: Oct. 13, 2022, 7:30 p.m...

SAP BusinessObjects Business Intelligence Platform授权问题漏洞

SAP BusinessObjects Business Intelligence Platform is a complete business analytics platform from SAP Germany. The platform combines market-leading SAP data integration products, data management products, and business intelligence BI products to eliminate system integration challenges and quickly...

Default configuration

SICK Package Analytics software up to and including version V04.0.0 are vulnerable due to incorrect default permissions settings. An unauthorized attacker could read sensitive data from the system by querying for known files using the REST API directly...

Video Surveillance by Computer

The ACLU's Jay Stanley has just published a fantastic report: "The Dawn of Robot Surveillance" blog post here Basically, it lays out a future of ubiquitous video cameras watched by increasingly sophisticated video analytics software, and discusses the potential harms to society. I'm not going to...

F5 BIG-IP Denial of Service Vulnerability (CNVD-2018-07536)

F5 BIG-IP ASM and Analytics are both products of F5 Corporation of the U.S.A. F5 BIG-IP ASM is a Web Application Firewall WAF that provides secure remote access, protects email, and simplifies Web access control while enhancing network and application performance.Analytics is a suite of Web...

SAP Patches Seven Vulnerabilities in Three Products

SAP pushed out patches to address seven vulnerabilities in three different lines of software it produces. If exploited, the bugs – which weren’t disclosed until yesterday – could expose those running the systems to specialized attacks, information disclosure and in some cases, complete compromise...

Open Web Analytics 1.5.7 Cross Site Scripting / Remote File Inclusion

Exploit Title : Open Web Analytics - v: 1.5.7 multiple vulnerability Author : Govind Singh aka NullPort Vendor : http://www.openwebanalytics.com/ Download Link : http://downloads.openwebanalytics.com/ Google Dork : "powered by Open Web Analytics" Date : 14/07/2014 Discovered at : IHT Lab 1ND14N...

Piwik <= 1357 2009-08-02 file upload and code execution

No description provided by source. Piwik Build = 1357 2009-08-02 ofcuploadimage.php Remote File Upload Discovery: Braeden Thomas Versions Affected: All Piwik versions utilising open-flash-chart I. DESCRIPTION Piwik is an open source web analytics software. It gives interesting reports on your...