CMSimple has a code execution vulnerability

CMSimple is a small PHP-based web content management tool. A code execution vulnerability exists in CMSimple that can be exploited by an attacker to execute arbitrary code...

Android-Gif-Drawable Open Source Stock in Code Execution Vulnerability

Android-Gif-Drawable is an open source library for Android Gif view and drawing . Android-Gif-Drawable through the JNI bundled Giflib way to render the number of frames , based on this way of rendering will be more efficient than the use of WebView class or Movie class . Android-Gif-Drawable open...

CVE-2019-5094

An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1.45.3. A specially crafted ext4 partition can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...

Code execution vulnerability in rgcms

RuiGu information management system RGCMS is a set of open source station management system , using PHP language , the system features free , extended , extremely fast security , free and open source. rgcms there are code execution vulnerabilities , attackers can exploit vulnerabilities to obtain...

McAfee Total Protection MTP Free Antivirus Trial Code Issue Vulnerability

McAfee Total Protection MTP is a suite of antivirus software from McAfee, Inc.MTP Free Antivirus Trial is its free trial version. A code issue vulnerability exists in the Microsoft Windows client in McAfee Total Protection MTP Free Antivirus Trial 16.0.R18 and prior versions. An attacker could...

Google Chrome V8 Code Execution Vulnerability (CNVD-2019-42757)

Google Chrome is a web browser. A security vulnerability exists in the Google Chrome V8 engine handling, which allows remote attackers to exploit the vulnerability to build malicious WEB pages that can be tricked into parsing by users, which can crash applications or execute arbitrary code...

OPENSUSE-SU-2019:2108-1 Security update for SDL2_image

This update for SDL2image fixes the following issues: Update to new upstream release 2.0.5. Security issues fixed: TALOS-2019-0820 CVE-2019-5051: exploitable heap-based buffer overflow vulnerability when loading a PCX file boo1140419 TALOS-2019-0821 CVE-2019-5052: exploitable integer overflow...

Description of the security update for SharePoint Server 2019: September 10, 2019

Description of the security update for SharePoint Server 2019: September 10, 2019 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft SharePoint if the software does not check the source markup of an application package. To learn more about this...

OPENSUSE-SU-2019:2071-1 Security update for SDL_image

This update for SDLimage fixes the following issues: Update SDLImage to new snapshot 1.2.12+hg695. Security issues fixed: TALOS-2019-0821 CVE-2019-5052: exploitable integer overflow vulnerability when loading a PCX file boo1140421 TALOS-2019-0841 CVE-2019-5057: code execution vulnerability in the...

Epignosis eFront LMS Code Issue Vulnerability

Epignosis eFront LMS is a suite of online e-learning platforms from Epignosis, Inc. in the United States. The platform provides test building, assignment management, internal messaging, forums and online chat. A code issue vulnerability exists in Epignosis eFront LMS version 5.2.12, which can be...

Google Android Media Framework Code Execution Vulnerability (CNVD-2019-40853)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. Media Framework is one of the multimedia development frameworks. A code execution vulnerability exists in Media Framework in Android. An attacker can exploit this vulnerability to execu...

Google Android Code Execution Vulnerability (CNVD-2019-40998)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A code execution vulnerability exists in System in Android. The vulnerability stems from errors such as configuration during operation of a networked system or product. An attacker could exploit...

Microsoft Word 2013 Service Pack 1 Remote Code Execution Vulnerability (KB4475547)

This host is missing an important security update according to Microsoft KB4475547 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Security Updates for Microsoft Word Products (August 2019)

A Microsoft Word product is missing security updates. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability...

Code Execution Vulnerability in DouPHP_1.5

DouPHP1.5 is a lightweight enterprise website management system, based on PHP+Mysql architecture, running on Linux, Windows, MacOSX, Solaris and other platforms. DouPHP1.5 suffers from a code execution vulnerability that can be exploited by attackers to execute arbitrary code...

cPanel Code Execution Vulnerability (CNVD-2019-26340)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A code execution vulnerability exists in versions of cPanel prior to 64.0.21. An attacker can exploit the vulnerability to execut...

CVE-2016-10837

cPanel before 11.54.0.4 allows arbitrary code execution because of an unsafe @INC path SEC-46...

Code execution vulnerability in 74cms backend Co***.cl***.php file

Knight Talent System 74cms is based on PHP + MYSQL as the core development of a set of free + open source professional recruitment system. By Taiyuan Xunyi Technology Co., Ltd. was officially launched in 2009. 74cms background Co.cl.php file there is a code execution vulnerability. Allow attacker...

Design/Logic Flaw

An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability...

Ahsay Backup 7.x - 8.1.1.50 - Authenticated Arbitrary File Upload / Remote Code Execution Exploit (2

Exploit for jsp platform in category web applications Exploit Title: Authenticated insecure file upload and code execution flaw in Ahsay Backup v7.x - v8.1.1.50. Metasploit Date: 26-6-2019 Exploit Author: Wietse Boonstra Vendor Homepage: https://ahsay.com Software Link:...