CVE-2026-35050

text-generation-webui is an open-source web interface for running Large Language Models. Prior to 4.1.1, users can save extention settings in "py" format and in the app root directory. This allows to overwrite python files, for instance the "download-model.py" file could be overwritten. Then, thi...

MLSoft TCO!stream Security Vulnerability

MLSoft TCO!stream is a PC asset management solution from MLSoft. A security vulnerability exists in MLSoft TCO!stream version 8.0.22.1115 and earlier, which stems from insufficient privilege validation and allows an attacker to allow a victim to download and execute arbitrary files...

CVE-2023-29541

Firefox did not properly handle downloads of files ending in .desktop, which can be interpreted to run attacker-controlled commands. This bug only affects Firefox for Linux on certain Distributions. Other operating systems are unaffected, and Mozilla is unable to enumerate all affected Linux...

Handysoft 数据伪造问题漏洞

Handysoft is a collaboration solution for smart offices from the Korean company HANDYSOFT Handysoft. A security vulnerability exists in HShell.dll of Handysoft's ActiveX control, which stems from a lack of integrity checking of the download URL or download file hash. The vulnerability can be...

CVE-2020-7846

Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. It finally leads to a file download and execution via access to crafted web page...

Raonwiz K Upload Injection Vulnerability

Raonwiz K Upload is a file transfer component from the Korean company Raonwiz. A security vulnerability exists in Raonwiz K Upload 2018.0.2.50 and earlier versions that stems from a lack of validation of file extensions. An attacker can exploit the vulnerability to download and execute files...

CVE-2019-19168

Dext5.ocx ActiveX 5.0.0.116 and eariler versions contain a vulnerability, which could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex method. This can be leveraged for code execution...

Multiple vulnerabilities in VAIO Update

Overview VAIO Update provided by Sony Corporation contains multiple vulnerabilities listed below. Improper authorization process CWE-285 - CVE-2019-5981 Improper verification of download file CWE-669 - CVE-2019-5982 Device Security reported this vulnerability to IPA. JPCERT/CC coordinated with th...

Opera 12.01 Released With Fixes for Five Security Flaws

There are new versions of the Opera browser available, a small update to version 12.01, but they include a number of important security fixes, notably a patch for a vulnerability that could lead to remote code execution. The maintainers of Opera pushed out new versions for all of the major...

Firefox 3.6.x < 3.6.23 Multiple Vulnerabilities

The installed version of Firefox 3.6.x is earlier than 3.6.23 and is affected by the following vulnerabilities: - An integer underflow exists when handling a large JavaScript 'RegExp' expression that can allow a potentially exploitable crash. CVE-2011-2998 - If an attacker could trick a user into...

Unexpected changes in tab focus can be used to run programs from the Internet

Tabs may be used to obscure a download dialog that is visible in another tab. The dialog will allow the user to choose to run downloaded executables directly. If the tab is closed or hidden at the moment that a user was about to click, they can end up clicking on the buttons in the dialog, causin...

CVE-2008-1106

The management interface in Akamai Client formerly Red Swoosh 3322 and earlier allows remote attackers to bypass authentication via an HTTP request that contains 1 no Referer header, or 2 a spoofed Referer header that matches an approved domain, which allows remote attackers to conduct cross-site...

Thunder _0day_exp-vulnerability warning-the black bar safety net

exeurl = InputBox "please input the download execution exe of the address:", "input","" 'code by NetPatch if exeurl "" then...

Design/Logic Flaw

The Citrix EPA ActiveX control aka the "endpoint checking control" or CCAOControl Object before 4.5.0.0 in npCtxCAO.dll in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5 HF1 allows remote attackers to download and execute arbitrary programs onto a client syste...

Outlook Express Attach Execution Exploit &#40;img tag + innerHTML + TIF dos name&#41;

Using some informations posted on Bugtraq in this week, I found a very simple way to exploit "download&execution" of an .EXE file, directly from Outlook Express. This is my report: When an HTML page attached into a message, is started, it runs in the security zone of "Temporary Internet Files" TI...