Lucene search
K

9 matches found

RedHat Linux
RedHat Linux
added 2023/10/20 6:45 p.m.5 views

Foreman: Arbitrary code execution through templates

An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system...

9.1CVSS6.3AI score0.01382EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/09/20 2:15 p.m.2 views

CVE-2023-0118

An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system...

9.1CVSS7.8AI score0.01382EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/09/20 12:0 a.m.2 views

PT-2023-16025 · Foreman +1 · Foreman +1

Name of the Vulnerable Software and Affected Versions: Foreman affected versions not specified Description: An arbitrary code execution flaw was found in Foreman, allowing an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system. Recommendations...

9.1CVSS9.5AI score0.01382EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2023/08/03 1:33 p.m.4 views

Foreman: Arbitrary code execution through templates

An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system...

9.1CVSS6.3AI score0.01382EPSS
Exploits0References4
NVD
NVD
added 2020/11/23 8:15 p.m.50 views

CVE-2020-15247

October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework. In October CMS from version 1.0.319 and before version 1.0.469, an authenticated backend user with the cms.managepages, cms.managelayouts, or cms.managepartials permissions who would normally not be...

5.2CVSS5.8AI score0.0029EPSS
Exploits0References2
CNVD
CNVD
added 2016/07/05 12:0 a.m.1 views

Lenovo ThinkPad BIOS System Management Mode Arbitrary Code Execution Vulnerability

BIOS Basic Input/Output System i.e. Basic Output Input System is the most basic software code loaded on the computer hardware system. The Lenovo ThinkPad BIOS has a security vulnerability that can be exploited by an attacker with local administrative access to execute arbitrary code, disable flas...

7.4AI score
Exploits0References1
NVD
NVD
added 2002/09/24 4:0 a.m.23 views

CVE-2002-0985

Argument injection vulnerability in the mail function for PHP 4.x to 4.2.2 may allow attackers to bypass safe mode restrictions and modify command line arguments to the MTA e.g. sendmail in the 5th argument to mail, altering MTA behavior and possibly executing commands...

7.5CVSS7AI score0.02951EPSS
Exploits0References15
securityvulns
securityvulns
added 2002/03/20 12:0 a.m.45 views

Bypassing safe mode in PHP

It's possible to bypass safe mode limitation by using moveuploadedfile call and MySQL library functions to access files of different users...

3.6AI score
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.41 views

foolproof-PC.txt

Date: Wed, 4 Nov 1998 15:55:09 -0500 From: Krish Jagannathan To: [email protected] Subject: FoolProof for PC Exploit I figured this much out -- if you are running on FoolProof for the PC Win9x and you boot up in safe mode with or without network support it will bypass the FoolProof TSR and...

7.4AI score
Exploits0
Rows per page
Query Builder