611 matches found
Laravel Media Library Pro 2.1.6 Shell Upload Vulnerability
Exploit Title: Laravel Media Library Pro Vendor Homepage: https://spatie.be/ Software Link: https://spatie.be/products/media-library-pro Version: =1.17.10 & =2.1.6 Tested on: Laradock PHP 8.0 inside Ubuntu 20.04 CVE : CVE-2021-45040 Description: The Spatie media-library-pro library through 1.17.1...
Laravel Media Library Pro 2.1.6 Shell Upload
Exploit Title: Laravel Media Library Pro Vendor Homepage: https://spatie.be/ Software Link: https://spatie.be/products/media-library-pro Version: =1.17.10 & =2.1.6 Tested on: Laradock PHP 8.0 inside Ubuntu 20.04 CVE : CVE-2021-45040 Description: The Spatie media-library-pro library through 1.17.1...
MODX Revolution code issue vulnerability
MODX Revolution is a PHP-based open source content management system CMS from the US company MODX. The system supports online collaboration, search engine optimization SEO, etc. MODX Revolution has a code issue vulnerability that can be exploited by attackers to execute arbitrary code by uploadin...
MODX Revolution 代码问题漏洞
MODX Revolution is a PHP-based open source content management system CMS from the US company MODX. The system supports online collaboration, search engine optimization SEO, etc. MODX Revolution has a code issue vulnerability that can be exploited by attackers to execute arbitrary code by uploadin...
PT-2022-17696 · Modx · Modx Revolution
Name of the Vulnerable Software and Affected Versions: MODX Revolution versions 2.8.3-pl and earlier Description: The issue allows remote authenticated administrators to execute arbitrary code by uploading an executable file. This is possible because the Uploadable File Types setting can be chang...
Design/Logic Flaw
Forms generated by JQueryForm.com before 2022-02-05 if file-upload capability is enabled allow remote unauthenticated attackers to upload executable files and achieve remote code execution. This occurs because file-extension checks occur on the client side, and because not all executable content...
SICK SOPAS ET path traversal vulnerability
Sick Sopas Et is an engineering tool from the German company Sick. versions prior to SICK SOPAS ET 4.8.0 contain a path traversal vulnerability that could be exploited to manipulate the pathname of the emulator and use path traversal to run arbitrary executable files located on the host system...
CVE-2021-38510
The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...
Mozilla Firefox Security Advisory (MFSA2013-83) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
Tenable Network Security Nessus 权限许可和访问控制问题漏洞
Nessus is a system vulnerability scanning and analysis software. 8.15.2 and earlier versions of Nessus contain a local elevation of privilege vulnerability. An attacker could exploit this vulnerability to run specific executable files on the Nessus Agent host...
CVE-2021-38346
The Brizy Page Builder plugin = 2.3.11 for WordPress allowed authenticated users to upload executable files to a location of their choice using the brizycreateblockscreenshot AJAX action. The file would be named using the id parameter, which could be prepended with "../" to perform directory...
Directory traversal
The Brizy Page Builder plugin = 2.3.11 for WordPress allowed authenticated users to upload executable files to a location of their choice using the brizycreateblockscreenshot AJAX action. The file would be named using the id parameter, which could be prepended with "../" to perform directory...
WordPress 插件代码问题漏洞
WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress Plugins is an open source application plugin for WordPress. A code issue vulnerability exists in WordPress Plugins that...
OpenMage Magento LTS Input Validation Error Vulnerability (CNVD-2021-101205)
OpenMage Magento Lts Magento, an e-commerce system from the OpenMage organization, is vulnerable to an input validation error in versions prior to OpenMage Magento LTS 19.4.15 and 20.0.13, which can be exploited by attackers to upload arbitrary executable files to the server...
GHSA-XM9F-VXMX-4M58 Data Flow Sanitation Issue Fix
Impact Due to missing sanitation in data flow it was possible for admin users to upload arbitrary executable files to the server...
Data Flow Sanitation Issue Fix
Impact Due to missing sanitation in data flow it was possible for admin users to upload arbitrary executable files to the server...
Remote Code Execution (RCE)
openmage/magento-lts is vulnerable to remote code execution. Lack of data flow sanitization allows admin users to upload malicious executable files to the server...
Design/Logic Flaw
OpenMage magento-lts is an alternative to the Magento CE official releases. Due to missing sanitation in data flow in versions prior to 19.4.15 and 20.0.13, it was possible for admin users to upload arbitrary executable files to the server. OpenMage versions 19.4.15 and 20.0.13 have a patch for...
CVE-2021-32759
OpenMage magento-lts before versions 19.4.15 and 20.0.13 are affected by a data-flow sanitation flaw that allowed admin users to upload arbitrary executable files to the server. The issue is mitigated by patches introduced in OpenMage 19.4.15 and 20.0.13. The connected sources consistently descri...
CVE-2021-32759 Data Flow Sanitation Issue Fix
OpenMage magento-lts is an alternative to the Magento CE official releases. Due to missing sanitation in data flow in versions prior to 19.4.15 and 20.0.13, it was possible for admin users to upload arbitrary executable files to the server. OpenMage versions 19.4.15 and 20.0.13 have a patch for...