7630 matches found
Nagios NRPE Command Argument Processing Enabled
The version of Nagios Remote Plugin Executor NRPE running on the remote host has command argument processing enabled and accepts the newline character. An unauthenticated, remote attacker can exploit this issue to execute arbitrary commands within the context of the vulnerable application by...
CVE-2014-2996
XCloner Standalone 3.5 and earlier are affected by CVE-2014-2996: when enable_db_backup and sql_mem are enabled, remote authenticated administrators can execute arbitrary commands via shell metacharacters in the dbbackup_comp parameter in a generate action to index2.php. The notes indicate uncert...
UBUNTU-CVE-2014-2328
lib/graphexport.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors...
CommonSpot < 7.0.2 / 8.0.3 / 9.0.0 Multiple Vulnerabilities
According to its version number, the CommonSpot install hosted on the remote web server is affected by multiple vulnerabilities : - An access restriction bypass via a direct request. CVE-2014-2859 - Multiple cross-site scripting XSS vulnerabilities. CVE-2014-2860, CVE-2014-2861 - Improper...
Fedora 19 : cacti-0.8.8b-5.fc19 (2014-4928)
Patches for four CVEs. This update fixes SQL injection, shell escaping issues, a stored XSS attack, and use of exec-like function calls without safety checks allowing arbitrary command execution. Note that Tenable Network Security has extracted the preceding description block directly from the...
Fedora 20 : cacti-0.8.8b-5.fc20 (2014-4892)
Patches for four CVEs. This update fixes SQL injection, shell escaping issues, a stored XSS attack, and use of exec-like function calls without safety checks allowing arbitrary command execution. Note that Tenable Network Security has extracted the preceding description block directly from the...
CVE-2011-4192
CVE-2011-4192 affects kiwi before 4.85.1, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1. The issue allows attackers to execute arbitrary commands, demonstrated by "double quotes in kiwi_oemtitle of .profile." The connected documents corrobo...
CVE-2011-4195
CVE-2011-4195 affects kiwi before 4.98.05, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1. An attacker can execute arbitrary commands via shell metacharacters in an image name. Impact: arbitrary command execution with network-accessible cont...
CVE-2011-3180
kiwi before 4.98.08, as used in SUSE Studio Onsite 1.2 before 1.2.1 and SUSE Studio Extension for System z 1.2 before 1.2.1, allows attackers to execute arbitrary commands via shell metacharacters in the path of an overlay file, related to chown...
eScan Web Management Console Command Injection Exploit
This Metasploit module exploits a command injection vulnerability found in the eScan Web Management Console. The vulnerability exists while processing CheckPass login requests. An attacker with a valid username can use a malformed password to execute arbitrary commands. With mwconf privileges, th...
Vtiger - 'Install' Remote Command Execution (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Vtiger Install Unauthenticated Remote Command Execution', 'Description' = %q This module exploits an arbitrary command execution...
Sophos Web Protection Appliance Command Execution
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Sophos Web Protection Appliance Interface Authenticated Arbitrary Command Execution', 'Description' = %q This module takes advantage ...
ASUS router drive-by code execution via XSS and authentication bypass
ASUS router drive-by code execution via XSS and authentication bypass ===================================================================== The latest version of this advisory is available at: https://sintonen.fi/advisories/asus-router-auth-bypass.txt Overview -------- Various ASUS routers contai...
CVE-2014-0466
The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or execute arbitrary commands via a crafted PostScript file...
MS-DOS: Arbitrary command execution in MS-DOS
Versions 1.1 and 2.0 of MS-DOS allow a malicious actor to execute arbitrary system commands via the main application interface. Prerequisites: MS-DOS 1.1 or MS-DOS 2.0 installation Input device e.g. keyboard Steps to reproduce: Enter the command mode Type VER to make sure that the system is on of...
CentOS Update for sudo CESA-2014:0266 centos5
Check for the Version of sudo OpenVAS Vulnerability Test CentOS Update for sudo CESA-2014:0266 centos5 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CVE-2013-6719
delivery.php in the Passive Capture Application PCA web console in IBM Tealeaf CX 7.x, 8.x through 8.6, 8.7 before FP2, and 8.8 before FP2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the testconnhost parameter...
CsSearch csSearch.cgi Arbitrary Command Execution - Ver2 (CVE-2002-0495)
A command execution vulnerability has been reported in Cgiscript.net Cssearch. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
phpmywind最新版本注入漏洞第二弹
简要描述: 继续之前的代码审计,发现其他地方还有类似的问题存在,都是没有对变量进行适当的过滤就直接拼接到sql语句里面执行,导致任意sql指令的执行。 详细说明: 漏洞位于member.php 689行处: $r = $dosql-GetOne"SELECT checkinfo FROM @goodsorder WHERE username='$cuname' AND id=$id"; id参数未做任何过滤直接放到sql语句里面执行。 利用分析:...
NetGear DGN2200 N300 Wireless Router Multiple Vulnerabilities (Feb 2014) - Active Check
NetGear DGN2200 N300 Wireless Routers are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...