17 matches found
PT-2026-27191
Name of the Vulnerable Software and Affected Versions AVideo versions up to and including 26.0 Description AVideo is an open source video platform. The downloadVideoFromDownloadURL function in objects/aVideoEncoder.json.php saves remote content to a web-accessible temporary directory using the...
CVE-2026-3189 feiyuchuixue sz-boot-parent download server-side request forgery
A weakness has been identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This vulnerability affects unknown code of the file /api/admin/common/files/download. Executing a manipulation of the argument url can lead to server-side request forgery. The attack can be executed remotely. Attacks ...
Sulu XSS Vulnerability (GHSA-6784-9c82-vr85)
Sulu is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sulu:sulu"; if...
EUVD-2024-52739
Malicious code in bioql PyPI...
SUSE CVE-2024-22033
The OBS service obs-service-downloadurl was vulnerable to a command injection vulnerability. The attacker could provide a configuration to the service that allowed to execute command in later steps...
SUSE CVE-2022-43758
A Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in SUSE Rancher allows code execution for user with the ability to add an untrusted Helm catalog or modifying the URL configuration used to download KDM only admin users by default This issue...
BenignCertain: a can remotely extract the Cisco VPN key hack tool free leak files download address-vulnerability warning-the black bar safety net
One, Foreword In a flash, we came to this familiar yet strange Friday. In this past week, the field of network security in the most“eye-catching”the event certainly not“the NSA is a black event”Mo belong to. The United States Time 2 0 1 6 years 8 on 1 5 December, a named“The Shadow Brokers”of the...
Weatimages <= 1.7.1 ini[langpack] Remote File Inclusion Vulnerability
No description provided by source. RFI Weatimages Hack Script name : Weatimages Script Download Adress:http://www.hotscripts.com/jump.php?listingid=52592&jumptype=1 Demo site:http://www.nazarkin.name/projects/weatimages/demo/index.php?inilangpack=shelladress Google Dork : inurl:...
Cherry enterprise cms V3. 1 SQL injection and arbitrary administrator account password change. Delete-bug warning-the black bar safety net
Cherry enterprise website management system V3. 1 SQL injectionand any administrator account password to modify. Delete vulnerability Program download address: http://down.chinaz.com/soft/31227.htm Vulnerability file: newscategory. asp Set rs = server. CreateObject"adodb. recordset" sql ="select...
Pragyan CMS v 3.0 remote file disclosure-vulnerability warning-the black bar safety net
Title: Pragyan CMS v 3.0 = Remote File Disclosure Author Or4nG. M4n Download address http://space.dl.sourceforge.net/project/pragyan/pragyan/3.0/PragyanCMS-v3.0-beta.tar.bz2 The location of the defect download.lib.php line 1 6 index.php line 2 3 4 $GET'fileget' Test http://www.xxx.com /Pragyan/?...
Plugin for WordPress CevherShare 2.0 SQL injection flaws and fixes-vulnerability warning-the black bar safety net
Affected versions: WordPress CevherShare 2.0 plugin Developer: http://phpkode.com/ Download address: http://phpkode.com/download/s/cevhershare.zip Test platform: Ubuntu-Linux Defect code page: cevhershare/cevhershare-admin.php Test: http://www.2cto.com...
EasySiteEdit the remote file containing the defect and repair-vulnerability warning-the black bar safety net
Exploit Title: EasySiteEdit remote file include Author:koskesh jakesh Download address: http://www.easysiteedit.com/licensesystem/esev2versions/esev2.zip Tested on: linux ------------------------------- vul:sublink.php line 2 0: include$REQUEST'langval'; ------------------------------- Test:...
Network odd CWMS enterprise website Management System 1. 0-2. 0 editor vulnerability-vulnerability warning-the black bar safety net
Network odd CWMS enterprise website management system Using Microsoft ASP.NET 2.0C design, strong function, high safety. The layered Design mode, the page cache, and run fast. Through xml configuration language, international encoding, supports multiple languages. Fully SEO optimized so that sear...
ecshop modify any user password vulnerability XSS exploit-vulnerability warning-the black bar safety net
Currently ecshop presence of the reflection typeXSS, you can use, if the secondary development existXSSor other CSRF problem, then use more. Once encountered this problem, slightly affected by its damage) ByXSSstructure post submission of personal information is modified, the modification is...
DEBIAN-CVE-2009-3617
Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in aria2 before 1.6.2, when logging is enabled, allows remote attackers to execute arbitrary code or cause a denial of service application crash via format string specifiers in a download URI. NOTE: som...
Hackers can invade Vientiane, the server of the method of analysis-vulnerability warning-the black bar safety net
Today, many Internet cafes have installed a Vientiane cafe management system, this system brings convenience is obvious. However, the more convenient the system The existence of security risks is greater, many hackers will come up with a hack of this management system approach, and some can even...
Simple Discussion Board 0.1.0 - Remote File Inclusion
Simple Discussion Board Multiple F.le Inclusion Vulnerability credit: CeNGiZ-HaN mail: [email protected] team: www.system-defacers.org Script: Simple Discussion Board sdb Download Adress:http://prdownloads.sourceforge.net/sdb/sdb-0.1.0.tar.gz class: Remote Risk: High Exploit:...