4202 matches found
Advantech WebAccess/SCADA Local Elevation of Privilege Vulnerability
Advantech WebAccess/SCADA is a suite of SCADA software from Advantech based on a browser architecture. The software supports dynamic graphical displays and real-time data control, and provides the ability to remotely control and manage automation equipment. A local elevation of privilege...
Advantech WebAccess/SCADA Local Elevation of Privilege Vulnerability (CNVD-2021-11307)
Advantech WebAccess/SCADA is a suite of SCADA software from Advantech based on a browser architecture. The software supports dynamic graphical displays and real-time data control, and provides the ability to remotely control and manage automation equipment. A local elevation of privilege...
Security fix for the ALT Linux 9 package dotnet-bootstrap-5.0 version 5.0.3-alt1
5.0.3-alt1 built Feb. 18, 2021 Vitaly Lipatov in task 266508 Feb. 17, 2021 Vitaly Lipatov - .NET 5.0.3 and .NET SDK 5.0.103 - CVE-2021-1721: .NET Core Denial of Service Vulnerability - CVE-2021-24112: .NET 5 and .NET Core Remote Code Execution Vulnerability...
Security fix for the ALT Linux 10 package dotnet-bootstrap-5.0 version 5.0.3-alt1
Feb. 17, 2021 Vitaly Lipatov 5.0.3-alt1 - .NET 5.0.3 and .NET SDK 5.0.103 - CVE-2021-1721: .NET Core Denial of Service Vulnerability - CVE-2021-24112: .NET 5 and .NET Core Remote Code Execution Vulnerability...
Security fix for the ALT Linux 10 package dotnet-runtime-7.0 version 5.0.3-alt1
Feb. 17, 2021 Vitaly Lipatov 5.0.3-alt1 - new version 5.0.3 with rpmgs script - .NET 5.0.3 - CVE-2021-1721: .NET Core Denial of Service Vulnerability - CVE-2021-24112: .NET 5 and .NET Core Remote Code Execution Vulnerability...
CVE-2020-13558
A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free...
Command Execution Vulnerability in Chengdu Zero Takeoff Network 07FLY-CRM V1
07FLY-CRM is zero take-off network development , based on the GPLv3 agreement issued for small and medium-sized management activities , to provide customer relationship management CRM, sales and marketing inventory JXC, human resources HRM, logistics office supplies, fixed assets, public...
Code Execution Vulnerability in JTopCMS Backend of Hefei Mingjing Information Technology Co.
JTopCMS is based on the JavaEE standard , used to manage site content of the open source web management system . Hefei Mingjing Information Technology Co., Ltd. JTopCMS backend code execution vulnerabilities, attackers can use the vulnerability to obtain control of the Web server...
Command Execution Vulnerability in JTopCMS Backend of Hefei Mingjing Information Technology Co.
JTopCMS is based on the JavaEE standard , used to manage site content of the open source web management system . Hefei Mingjing Information Technology Co., Ltd. JTopCMS back-end command execution vulnerability, attackers can use the vulnerability to obtain control of the web server...
Command Execution Vulnerability in GOCLOUD-ISP1000 and GOCLOUD-ISP2000
Shanghai Guoyun Information Technology Co., Ltd. is a provider of intelligent network products and services. A command execution vulnerability exists in GOCLOUD-ISP1000 and GOCLOUD-ISP2000, which can be exploited by an attacker to gain control of a web server...
Command Execution Vulnerability in Five Fingers CMS (CNVD-2021-16342)
Five Fingers CMS is an open source content management system that supports LNAMP architecture. Five Fingers CMS has a command execution vulnerability that can be exploited by attackers to gain control of the web server...
Command execution vulnerability in Five Fingers CMS backend (CNVD-2021-16339)
Five Fingers CMS is an open source content management system that supports LNAMP architecture. Five Fingers CMS backend has a command execution vulnerability that can be exploited by attackers to gain control of the web server...
SolarWinds Orion Platform Code Execution Vulnerability
Solarwinds Orion Platform is a network fault and network performance management platform from Solarwinds, Inc. The platform provides real-time monitoring and analysis of network devices and supports a customizable web interface, multiple user opinions, and a mapped view of the entire network. A...
Command Execution Vulnerability in SEACMS (CNVD-2021-15534)
SEACMS is a video-on-demand system designed for webmasters with different needs. SEACMS suffers from a command execution vulnerability, which can be exploited by attackers to inject malicious code, execute system commands, and gain system privileges...
Command execution vulnerability exists in SEACMS (CNVD-2021-15533)
SEACMS is a video-on-demand system designed for webmasters with different needs. A command execution vulnerability exists in SEACMS. An attacker can exploit this vulnerability to inject malicious code, execute system commands, and obtain system privileges...
MOXA AWK-1131A suffers from a command execution vulnerability (CNVD-2021-15569)
The Moxa AWK-1131A industrial-grade wireless AP/Client supports IEEE 802.11n technology with a data rate of up to 300Mbps. The MOXA AWK-1131A suffers from a command execution vulnerability that can be exploited by an attacker to cause malicious code to be executed...
Command Execution Vulnerability in Wireless AP of Shanghai Bell Co.
Shanghai Bell Co., Ltd. is a foreign-invested joint-stock company. The company provides end-to-end information and communication solutions and high-quality services to carriers, enterprises and industrial customers, and its products cover wired and wireless solutions, among others. A command...
Command Execution Vulnerability in TurboMail
TurboMail is a Guangzhou Topo Software Technology Co., Ltd. for enterprises and institutions to develop the communication needs of the e-mail server system. TurboMail has a command execution vulnerability. Attackers can use the vulnerability to remotely execute commands to obtain server privilege...
CMSWing Code Execution Vulnerability
CMSWing is a ThinkJS-based e-commerce platform and CMS builder. A code execution vulnerability exists in CMSWing 1.3.8. The vulnerability stems from the log function not checking the log parameter. An attacker can exploit this vulnerability to execute arbitrary commands via malicious parameters...
Command Execution Vulnerability in Tplay Backend
Tplay is a backend management framework based on ThinkPHP 5.0.13 + layui2.2.45 + Mysql development, PHP version required to upgrade to 5.5. A command execution vulnerability exists in Tplay backend. An attacker can exploit this vulnerability to gain server privileges...