Lucene search
K

10 matches found

Check Point Advisories
Check Point Advisories
added 2020/09/05 12:0 a.m.157 views

OCS Inventory NG CommandLine.php Command Injection (CVE-2020-14947)

A command injection vulnerability exists in OCS Inventory NG. The vulnerability is due to insufficient input validation in the CommandLine.php...

6.5CVSS2.9AI score0.19481EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/07/03 12:0 a.m.208 views

OCS Inventory NG 2.7 Remote Code Execution

Exploit Title: OCS Inventory NG 2.7 - Remote Code Execution Date: 2020-06-05 Exploit Author: Askar @mohammadaskar2 CVE: CVE-2020-14947 Vendor Homepage: https://ocsinventory-ng.org/ Version: v2.7 Tested on: Ubuntu 18.04 / PHP 7.2.24 !/usr/bin/python3 import requests import sys import warnings impo...

0.3AI score0.19481EPSS
Exploits5
GithubExploit
GithubExploit
added 2020/07/02 4:40 p.m.218 views

Exploit for OS Command Injection in Factorfx Open_Computer_Software_Inventory_Next_Generation

CVE-2020-14947 The offici...

8.8CVSS8.9AI score0.19481EPSS
Exploits5
0day.today
0day.today
added 2020/07/02 12:0 a.m.177 views

OCS Inventory NG 2.7 - Remote Code Execution Exploit

Exploit for multiple platform in category web applications Exploit Title: OCS Inventory NG 2.7 - Remote Code Execution Exploit Author: Askar @mohammadaskar2 CVE: CVE-2020-14947 Vendor Homepage: https://ocsinventory-ng.org/ Version: v2.7 Tested on: Ubuntu 18.04 / PHP 7.2.24 !/usr/bin/python3 impor...

6.5CVSS8.7AI score0.19481EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/07/02 12:0 a.m.291 views

OCS Inventory NG 2.7 - Remote Code Execution

Exploit Title: OCS Inventory NG 2.7 - Remote Code Execution Date: 2020-06-05 Exploit Author: Askar @mohammadaskar2 CVE: CVE-2020-14947 Vendor Homepage: https://ocsinventory-ng.org/ Version: v2.7 Tested on: Ubuntu 18.04 / PHP 7.2.24 !/usr/bin/python3 import requests import sys import warnings impo...

8.8CVSS8.8AI score0.19481EPSS
Exploits5
OSV
OSV
added 2020/06/30 9:15 p.m.21 views

CVE-2020-14947

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in plugins/mainsections/msconfig/mssnmpconfig.php is mishandled in getmiboid...

8.8CVSS7AI score0.19481EPSS
Exploits5References5
UbuntuCve
UbuntuCve
added 2020/06/30 9:15 p.m.27 views

CVE-2020-14947

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in plugins/mainsections/msconfig/mssnmpconfig.php is mishandled in getmiboid...

8.8CVSS7.2AI score0.19481EPSS
Exploits5References1
Cvelist
Cvelist
added 2020/06/30 8:44 p.m.47 views

CVE-2020-14947

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in plugins/mainsections/msconfig/mssnmpconfig.php is mishandled in getmiboid...

8.9AI score0.19481EPSS
Exploits5References5
Debian CVE
Debian CVE
added 2020/06/30 8:44 p.m.61 views

CVE-2020-14947

OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mibfile in plugins/mainsections/msconfig/mssnmpconfig.php is mishandled in getmiboid...

8.8CVSS8.9AI score0.19481EPSS
Exploits5
CVE
CVE
added 2020/06/30 8:44 p.m.104 views

CVE-2020-14947

Summary: CVE-2020-14947 affects OCS Inventory NG 2.7, where a remote command execution is possible due to mishandling of mib_file in plugins/main_sections/ms_config/ms_snmp_config.php via get_mib_oid, enabling shell metacharacter abuse in require/commandLine/CommandLine.php. Public disclosure det...

8.8CVSS8.6AI score0.19481EPSS
Exploits5References5Affected Software1
Rows per page
Query Builder