Microsoft Exchange Server 代码注入漏洞

Microsoft Exchange Server is a mail server and calendar server developed by Microsoft. A remote code execution vulnerability exists in Microsoft Exchange Server, which can be exploited by an attacker to achieve remote code execution...

Microsoft Visual Studio Code 代码注入漏洞

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A code execution vulnerability exists in Microsoft Visual Studio, which can be exploited by an attacker to execute arbitrary code on a system with the privileges of the victim...

Microsoft Visual Studio Code 代码注入漏洞

Microsoft Visual Studio Code is an open source code editor from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Visual Studio Code. A remote attacker can exploit this vulnerability to execute arbitrary code...

Microsoft Visual Studio Code Code Injection Vulnerability

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A code injection vulnerability in Microsoft Visual Studio Code unofficial C/C++ Advanced Lint extension prior to version 1.9.0 can be exploited by an attacker to execute arbitrary binaries when a user opens a carefully...

GitLab CE/EE Code Injection Vulnerability

GitLab is an open source application developed using Ruby on Rails that implements a self-hosted Git project repository that can be accessed through a web interface for public and private projects.GitLab EE is the GitLab Enterprise Edition and GitLab CE is the GitLab Community Edition. A code...

GE Reason DR60 Code Injection Vulnerability

The Reason DR60 is a centralized, all-in-one multi-function digital fault recorder DFR from GE. A code injection vulnerability exists in GE Reason DR60 firmware prior to version 02A04.1. The vulnerability stems from the software using externally influenced input from an upstream component to...

SAP MII 代码注入漏洞

SAP MII is a software application from SAP Germany. It provides manufacturing operations management functions. SAP MII has a security vulnerability. sapmii allows users to create dashboards via SSCE Self Service Combined Environment and save them as JSPs. an attacker can intercept requests to the...

Microsoft Windows OpenType Font Parsing 代码注入漏洞

Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. A code injection vulnerability exists in Microsoft Windows OpenType Font Parsing. The following products and editions are affected:Windows 10 Version 1803 for ARM64-based Systems,Windows 10...

Code Injection Vulnerability in GX Works2

GX Works2 is a PLC programming software. A code injection vulnerability exists in GX Works2. An attacker can exploit this vulnerability to gain server privileges...

Panasonic Video Insight VMS Code Injection Vulnerability

Panasonic Video Insight VMS is an enterprise surveillance video management system from Panasonic Corporation Japan. A security vulnerability exists in Panasonic Video Insight VMS that could allow a remote attacker to execute arbitrary code on the target system...

SAP Business Warehouse and SAP BW/4HANA Code Injection Vulnerability

SAP Business Warehouse BW is SAP's data warehouse solution.SAP BW provides a high-performance infrastructure that helps you evaluate and interpret data. Decision makers can make informed decisions based on the analyzed data and identify target-specific activities. A code injection vulnerability...

Microsoft Visual Studio Code Code Injection Vulnerability

Microsoft Visual Studio Code is an open source code editor from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Visual Studio Code. The following products and versions are affected:Visual Studio Code TS-Lint Extension...

Code Injection Vulnerability in ZDCC VisualField FFHATool.exe Component

VisualField VF for short system software is a software package for control system configuration and monitoring for the ECS-700 system. A code injection vulnerability exists in the VisualField FFHATool.exe component of ZDCC, which can be exploited by an attacker to cause a denial-of-service attack...

Code Injection Vulnerability in ZDCC VisualField VxDataAnalyzer.exe Component

VisualField VF for short system software is a software package for control system configuration and monitoring for the ECS-700 system. A code injection vulnerability exists in the VisualField VxDataAnalyzer.exe component of ZDCC, which can be exploited by an attacker to cause a denial-of-service...

Micro Focus Operation Bridge Manager Code Injection Vulnerability

Micro Focus Operation Bridge Manager is an enterprise level monitoring software from Micro Focus UK. The software uses HTML5 to visually summarize service operations. A code injection vulnerability exists in multiple versions of Micro Focus Operation Bridge Manager. The vulnerability could allow ...

Huawei EulerOS: Security Advisory for spamassassin (EulerOS-SA-2020-2118)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-8218

A code injection vulnerability exists in Pulse Connect Secure 9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface...

Mattermost Desktop App Code Injection Vulnerability

Mattermost Desktop App is a messaging desktop application from Mattermost USA. A code injection vulnerability exists in Mattermost Desktop App versions prior to 3.4.0. The vulnerability stems from a network system or product not properly filtering specific elements of externally entered data duri...

Mitsubishi Electric MC Works64 and MC Works32 Code Injection Vulnerability

The Mitsubishi Electric MC Works64 and MC Works32 are both data acquisition and monitoring systems SCADA from Mitsubishi Electric Japan. A code injection vulnerability exists in Mitsubishi Electric MC Works64 version 4.02C 10.95.208.31 and earlier versions, and MC Works32 version 3.00A 9.50.255.0...

Zenphoto Code Injection Vulnerability

Zenphoto is a content management system CMS. The Zenphoto code injection vulnerability can be exploited by an attacker to execute arbitrary PHP code...