CVE-2022-31591

SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service...

CVE-2022-31591

SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service...

CyberLink Power Director 安全漏洞

CyberLink Power Director is a video editing software from China-based CyberLink. A security vulnerability exists in CyberLink Power Director version v14, which can be exploited by an attacker to elevate privileges via a crafted exe file...

Nigerian Tesla: 419 scammer gone malware distributor unmasked

Agent Tesla is a well-known data stealer written in .NET that has been active since 2014 and is perhaps one of the most popular payloads observed in malspam campaigns. While looking for threats targeting Ukraine, we identified a group we call "Nigerian Tesla" that has been dabbling into phishing...

Fortinet FortiClient for Windows权限提升漏洞

Fortinet FortiClient is a mobile endpoint security solution from Fortinet, Inc. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to a FortiGate firewall appliance. executable file in the FortiClient installer...

CVE-2022-27963

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

GNU GCC 资源管理错误漏洞

Gcc is a collection of Gnu compilers. It is mainly used to compile the C and C++ languages. A security vulnerability exists in GNU GCC 11.2, which stems from a stack overflow in nm-new that can be triggered by an attacker via a crafted elf file...

CVE-2021-45040

The Spatie media-library-pro library through 1.17.10 and 2.x through 2.1.6 for Laravel allows remote attackers to upload executable files via the uploads route...

GHSA-J8JP-9X42-4PJ5 Unrestricted Upload of File with Dangerous Type in MODX Revolution

MODX Revolution through 2.8.3-pl allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Uploadable File Types setting can be changed by an administrator...

Unrestricted Upload of File with Dangerous Type in MODX Revolution

MODX Revolution through 2.8.3-pl allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Uploadable File Types setting can be changed by an administrator...

CVE-2022-26149

MODX Revolution through 2.8.3-pl allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Uploadable File Types setting can be changed by an administrator...

CVE-2022-26149

MODX Revolution through 2.8.3-pl allows remote authenticated administrators to execute arbitrary code by uploading an executable file, because the Uploadable File Types setting can be changed by an administrator...

CVE-2022-26149

MODX Revolution up to version 2.8.3-pl is affected by an authenticated RCE: an admin can upload an executable file by abusing the Uploadable File Types setting, then execute code via the Media Browser. Exploitation details and proof-of-concept scripts are present in public advisories (e.g., Explo...

Siemens SICAM PQ Analyzer Search Path Vulnerability

SICAM PQ Analyzer is a power quality system software that provides options for evaluating archived PQ measurement data and fault records. A search path vulnerability exists in Siemens SICAM PQ Analyzer, which can be exploited by an attacker with write privileges to plant an executable that will r...

CVE-2021-46165

Zoho ManageEngine Desktop Central before 10.0.662, during startup, launches an executable file from the batch files, but this file's path might not be properly defined...

Design/Logic Flaw

Zoho ManageEngine Desktop Central before 10.0.662, during startup, launches an executable file from the batch files, but this file's path might not be properly defined...

SICK SOPAS ET has an unspecified vulnerability

Sick Sopas Et is an engineering tool from the German company Sick.A security vulnerability exists in versions prior to SICK SOPAS ET 4.8.0, which could be exploited by an attacker to package any executable file into an SDD and make it available to SOPAS ET users...

OpenCATS file upload vulnerability

OpenCats is an open source recruitment process management system. OpenCATS prior to 0.9.6 was vulnerable to file uploads, which stemmed from a lack of valid validation of uploaded files in the application's lib/FileUtility.php. A remote attacker could exploit this vulnerability to execute arbitra...

Design/Logic Flaw

SICK SOPAS ET before version 4.8.0 allows attackers to wrap any executable file into an SDD and provide this to a SOPAS ET user. When a user starts the emulator the executable is run without further checks...

CVE-2021-32497

Summary of CVE-2021-32497 (SICK SOPAS ET) : Prior to version 4.8.0, SOPAS ET allows an attacker to wrap an arbitrary executable into an SDD and hand it to a user. When the SOPAS ET emulator is started, the embedded executable may run without further checks, enabling code execution under the local...