FasterXML jackson-databind suffers from a command execution vulnerability (CNVD-2020-75243)

FasterXML Jackson is a U.S. FasterXML company for Java data processing tools . jackson-databind is one of the components with data binding capabilities . A command execution vulnerability exists in FasterXML jackson-databind, which can be exploited by an attacker to execute arbitrary commands...

Command Execution Vulnerability in the ad***_ip***.php File in SeaCMS-v10.9 (SeaCMS)

Ocean CMS, also known as SeaCMS, using php + mysql development, completely open source and free of charge, adaptive to computers, cell phones, tablets, APP multi-terminal, no encryption, more secure, is a very good tool to build the station! Ocean CMS-v10.9 SeaCMS adip.php file has a command...

Command Execution Vulnerability in Zendo Open Source Edition (CNVD-2020-71672)

Zendo Open Source Edition is a research and development project management software. Zendo Open Source Edition suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

Command execution vulnerability exists in UCMS (CNVD-2020-71677)

UCMS is a simple open source content management system. UCMS suffers from a command execution vulnerability that can be exploited by attackers to gain server privileges...

Schneider Electric Unity Pro 安全漏洞

Schneider Electric EcoStruxure Control Expert is the universal programming, commissioning and operating software for the Modicon M340, M580, M580S, Premium, Momentum and Quantum series. A command execution vulnerability exists in Schneider Electric EcoStruxure Control Expert. The vulnerability...

Synology SRM lbd service Command Execution Vulnerability

Summary An exploitable command execution vulnerability exists in the lbd service functionality of Qualcomm lbd 1.1, as present in Synology SRM 1.2.3 RT2600ac 8017-5. A specially crafted debug command can overwrite arbitrary files with controllable content, resulting in remote code execution. An...

Command Execution Vulnerability in Swift Text-to-Speech Software

Swift Text to Speech Software is a speech synthesis software that converts text to speech. It is suitable for a variety of scenarios such as shopping mall store advertisements, audio production, audible reading and so on. A command execution vulnerability exists in Swift Text to Speech Software,...

Command injection

An arbitrary command execution vulnerability exists in the fopen function of file writes of UCMS v1.4.8, where an attacker can gain access to the server...

Command Execution Vulnerability in BIMe Data Collaboration Platform UE***.Net Component

Dongchen Gongyuan ProBIM was founded in 2014 as a software provider specializing in BIM cloud services. A command execution vulnerability exists in the UE.Net component of the BIMe data collaboration platform, which can be exploited by an attacker to gain control of the server...

Command Execution Vulnerability in Lightspeed PDF Converter pc Client Software

Lightspeed PDF Converter is a PDF document reading tool. Lightspeed PDF Converter pc client software has a command execution vulnerability that can be exploited by attackers to gain control of the server...

Command Execution Vulnerability in the Center Management Server System of Guangzhou Paulan Electronics Co.

Guangzhou Paulun Electronic Co., Ltd. is a company mainly engaged in public broadcasting, campus broadcasting, conference system, paperless system, recording and broadcasting system, intelligent campus, stage lighting, LED big screen, landscape lighting and other projects. A command execution...

Command Execution Vulnerability in CAJViewer of China Academic Journals (CD-ROM Version) Electronic Magazine Company Limited (CNVD-2020-61898)

caj reader CAJViewer is a specialized browser for reading and editing literature in the CNKI series of databases. A command execution vulnerability exists in CAJViewer of China Academic Journals CD-ROM Version Electronic Magazine Company Limited, which can be exploited by an attacker to obtain...

Command Execution Vulnerability in D-Shield_Firewall of Shenzhen DiYuan Technology Co.

D ShieldFirewall is an active defense protection software designed for IIS. D ShieldFirewall has a command execution vulnerability that can be exploited by attackers to gain server control privileges...

Command Execution Vulnerability in Spin Master OCR at Xiamen Printed Information Technology Co.

Turn Master OCR Software is an OCR text recognition software. Xiamen PrintMaster OCR has a command execution vulnerability that can be exploited by an attacker to inject an executable DLL file into a client process to gain control of the server...

Command Execution Vulnerability in the Interpretation of Guangdong Tianchen Network Technology Company Limited (CNVD-2020-59423)

HootSuite PC is a software for data backup and recovery, computer screen casting, game key mapping, and file transfer between cell phones and computers. Guangdong Tianchen Network Technology Co., Ltd Hootsuite suffers from a command execution vulnerability, which can be exploited by an attacker t...

Command Execution Vulnerability in Genexis Platinum-4410 and FHTC-201709142001

Genexis is Europe's leading provider of products and technologies that enable and improve the delivery of fiber optic broadband connectivity for communications operators and service providers. A command execution vulnerability exists in Genexis Platinum-4410 and FHTC-201709142001, which can be...

Command Execution Vulnerability in D-Link ShareCenter DNS-320 and ShareCenter DNS-325

D-Link ShareCenter DNS-320 is a Gigabit network storage device from Taiwan AUO Group.D-Link ShareCenter DNS-325 is a network storage device from Taiwan AUO Group. A command execution vulnerability exists in the D-Link ShareCenter DNS-320 and ShareCenter DNS-325. An attacker can exploit the...

Command Execution Vulnerability in Tenda G3 Router of Shenzhen Jixiang Tenda Technology Co.

Tenda G3 Road is an enterprise-class AP management router with 200 users, providing efficient, secure and easily scalable networks for small and medium-sized businesses, restaurants and hotel chains. Shenzhen Jixiang Tenda Technology Co., Ltd Tenda G3 router has a command execution vulnerability...

Advantech WebAccess/SCADA suffers from a command execution vulnerability (CNVD-2020-48618)

Advantech WebAccess/SCADA is a suite of SCADA software based on a browser architecture. A command execution vulnerability exists in Advantech WebAccess/SCADA. An attacker could exploit the vulnerability to execute console commands...

Apple CMS suffers from a command execution vulnerability (CNVD-2020-47331)

Apple CMS is a complete and powerful rapid site building system running on PHP+MYSQL environment. Apple CMS suffers from a command execution vulnerability that can be exploited by attackers to gain control of the web server...