2841 matches found
Exploit for CVE-2023-6553
CVE-2023-6553 Due to a incorrect include statement in the "...
Js2Py Code Execution Vulnerability
Js2Py is a library from the Python Foundation. It is used to convert JavaScript to Python code. A code execution vulnerability exists in Js2Py version 0.74 and earlier, which can be exploited by an attacker to execute arbitrary code via a crafted API call...
TOTOLINK A6000R 安全漏洞
TOTOLINK A6000R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A6000R suffers from a code execution vulnerability that originates from allowing a remote attacker to execute arbitrary code via the iface parameter in the vifenable function. No details of the vulnerability...
CVE-2024-37821
An arbitrary file upload vulnerability in the Upload Template function of Dolibarr ERP CRM up to v19.0.1 allows attackers to execute arbitrary code via uploading a crafted .SQL file...
CVE-2024-37079
creationtimestamp| type| source ---|---|--- 2024-06-18 10:35:10+00:00| seen| Telegram/obSPr9PV0DaqSLTggJciA2CpsnkCDUqehnwTxKSd-hA48 2024-06-18 10:56:22+00:00| seen| https://t.me/thehackernews/5132 2024-06-18 11:00:18+00:00| seen| https://t.me/KomunitiSiber/2122 2024-06-18 11:45:57+00:00| seen|...
GNU Global 安全漏洞
GNU Global is a free code tagging system for the US GNU community. A code execution vulnerability exists in GNU Global that stems from the use of shell metacharacters, no details of the vulnerability are provided at this time...
Autodesk AutoCAD 3DM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of 3...
CVE-2024-35249 Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability
...
CVE-2024-30072
CVE-2024-30072 is a Windows Event Logging Service vulnerability described as a Windows Event Trace Log File Parsing Remote Code Execution vulnerability. Affected product is Microsoft Windows (Event Logging Service); the underlying issue relates to parsing Event Trace Log files that can lead to ar...
Security Updates for Microsoft SharePoint Server 2019 (June 2024)
The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by a local code execution vulnerability. An attacker can exploit this with a specially crafted file to bypass authentication and execute unauthorized arbitrary commands...
CVE-2024-5301 Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...
CVE-2024-37273
An arbitrary file upload vulnerability in the /v1/app/appendFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via uploading a crafted file...
Google Chrome Code Execution Vulnerability (CNVD-2024-26519)
Google Chrome is a web browser from Google, an American company. A code execution vulnerability exists in versions prior to Google Chrome 125.0.6422.141, which can be exploited by a remote attacker to execute arbitrary code via a crafted HTML page inside a sandbox...
D-Link D-View Code Execution Vulnerability
D-Link D-View is a network management system from D-Link, which is mainly used to centrally manage the performance, security and reliability of network devices. A code execution vulnerability exists in D-Link D-View, which can be exploited by an attacker to execute arbitrary code...
Adobe Acrobat Reader Resource Management Error Vulnerability (CNVD-2024-24747)
Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Acrobat Reader version 20.005.30539, 23.008.20470 and earlier versions are vulnerable to a resource management error vulnerability that stems from the presence of...
TOTOLINK X5000R mru parameter code execution vulnerability
The TOTOLINK X5000R is a router from China's Gion Electronics TOTOLINK. The TOTOLINK X5000R suffers from a code execution vulnerability that stems from the parameter mru of cstecgi.cgi failing to properly filter special elements of constructed snippets. An attacker could exploit this vulnerabilit...
Siemens Simcenter Femap IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
CVE-2024-1417 Local Code Injection Vulnerability in AuthPoint Password Manager App for macOS Safari
Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in WatchGuard AuthPoint Password Manager on MacOS allows an a adversary with local access to execute code under the context of the AuthPoint Password Manager application. This issue affects AuthPoint...
Siemens Solid Edge Out-of-Bounds Read Vulnerability (CNVD-2024-23519)
Siemens Solid Edge is a 3D CAD software from Siemens Germany. The software can be used for part design, assembly design, sheet metal design, welding design and other industries. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute cod...
Siemens Teamcenter Visualization and JT2Go Out-of-Bounds Write Vulnerability (CNVD-2024-23524)
Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios.Siemens JT2Go is a JT file viewer. An out-of-bounds write vulnerability exists in Siemens Teamcenter Visualization and JT2Go, which can be exploited by an attacker to execute code ...