27 matches found
CVE-2018-9468
In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a permissions bypass. This could lead to local information disclosure and file rewriting with no additional execution privileges needed. User interaction is not needed for exploitation...
EUVD-2020-30465
Malware in sbrugna...
CVE-2024-32020
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository's object database when source and target repository reside on the same disk. If the source repository is owned by a...
The vulnerability of the command-line interface (CLI) of Zyxell USG FLEX, ATP, and VPN network interfaces allows a hacker to execute arbitrary commands with root privileges.
The vulnerability of the command-line interface CLI of Zyxell USG FLEX, ATP, and VPN network interfaces relates to the possibility of rewriting files with arbitrary content. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges...
The vulnerability of ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security, ESET Smart Security Premium, ESET Endpoint Antivirus, ESET Endpoint Security, ESET NOD32 Antivirus Business Edition, ESET Smart Security Business Edition, ESET File Security for Microsoft Windows Server, ESET Mail Security for Microsoft Exchange Server, ESET Mail Security for IBM Domino, ESET Security for Kerio, and ESET Security for Microsoft SharePoint Server lies in a lack of standard permission mechanisms, allowing attackers to re-record arbitrary files.
The vulnerability of ESET NOD32 Antivirus, ESET Internet Security, ESET Smart Security, ESET Smart Security Premium, ESET Endpoint Antivirus, ESET Endpoint Security, ESET NOD32 Antivirus Business Edition, ESET Smart Security Business Edition, ESET File Security for Microsoft Windows Server, ESET...
The vulnerability of the Cisco Firepower Management Center’s software management web interface allows a perpetrator to rerecord files in the file system of the vulnerable device.
The vulnerability of the Cisco Firepower Management Center software’s web interface exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to re-write files in the file system of the vulnerable device using a specially created file...
The vulnerability of the gettext library, which allows a hacker to re-write certain files
The vulnerability of the Autopoint and gettextize scripts in the gettext library related to errors in the code. Exploiting this vulnerability allows an attacker to re-write certain files by manipulating symbolic references to temporary files...
Gratipay: PHP 5.4.45 is Outdated and Full of Preformance Interupting Arbitrary Code Execution Bugs
Your PHP version is affected by quite a few remote arbitrary code execution, remote file renaming, and remote file rewriting bugs that require no authentication and can cause big problems, from performance interruptions and messing with server files to DoS attacks. These are not related to any...
PHP Event Calendar <= 1.5 - Multiple Vulnerabilities
No description provided by source. Title: PHP Event Calendar = v1.5 Multiple Vulnerabilities Author: cp77fk4r | Empty0pagESHIFT+2gmail.com | www.DigitalWhisper.co.il Software Link: http://www.softcomplex.com/download.html Version: = v1.5 Tested on: Apache2+PHP5 on Win32 Cross Site Scripting...
PBLang <= 4.99.17.q Remote File Rewriting / Command Execution
No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...
PHP Event Calendar 1.5 - Multiple Vulnerabilities
PHP Event Calendar 1.5 - Multiple Vulnerabilities Title: PHP Event Calendar = v1.5 Multiple Vulnerabilities Author: cp77fk4r | Empty0pagESHIFT+2gmail.com | www.DigitalWhisper.co.il Software Link: http://www.softcomplex.com/download.html Version: = v1.5 Tested on: Apache2+PHP5 on Win32 Cross Site...
PHP Event Calendar 1.5 - Multiple Vulnerabilities
Title: PHP Event Calendar = v1.5 Multiple Vulnerabilities Author: cp77fk4r | Empty0pagESHIFT+2gmail.com | www.DigitalWhisper.co.il Software Link: http://www.softcomplex.com/download.html Version: = v1.5 Tested on: Apache2+PHP5 on Win32 Cross Site Scripting Cross-Site Scripting attacks are a type ...
Globsy <= 1.0 Remote File Rewriting Exploit
No description provided by source. !/usr/bin/php -q ?php / ---------------------------------------------------------------------- Globsy = 1.0 Remote File Rewriting Exploit Discovered By StAkeR aka athos - StAkeRathotmaildotit Discovered On 12/10/2008...
Globsy <= 1.0 Remote File Rewriting Exploit
Exploit for unknown platform in category web applications =========================================== Globsy '".$filename."' could not be opened."; 39. fwrite$handle, $data or die"Write: The file '".$filename."' could not be writen."; $mode is $POST'mode' and $data = $POST'data' so you can rewrit...
Globsy 1.0 - Remote File Rewriting
Globsy 1.0 - Remote File Rewriting !/usr/bin/php -q '".$filename."' could not be opened."; 39. fwrite$handle, $data or die"Write: The file '".$filename."' could not be writen."; $mode is $POST'mode' and $data = $POST'data' so you can rewrite or create any file / errorreporting0;...
Globsy 1.0 - Remote File Rewriting
!/usr/bin/php -q '".$filename."' could not be opened."; 39. fwrite$handle, $data or die"Write: The file '".$filename."' could not be writen."; $mode is $POST'mode' and $data = $POST'data' so you can rewrite or create any file / errorreporting0; iniset"defaultsockettimeout",5; $host =...
itcms-exec.txt
=========================================================================================================================== | | / | | | | | | | / / / || \ '| / | ' / - | / \ V V / - ' \ / - || | \/,|/| /| |||||///|./ |,|...
ItCMS 1.9 (boxpop.php) Remote Code Execution Vulnerability
Exploit for unknown platform in category web applications ========================================================== ItCMS 1.9 boxpop.php Remote Code Execution Vulnerability ==========================================================...
ItCMS 1.9 (boxpop.php) Remote Code Execution Vulnerability
No description provided by source. =========================================================================================================================== | | / | | | | | | | / / / || \ '| / | ' / - | / \ V V / - ' \ / - || | \/,|/| /| |||||///|./ |,|...
ItCMS 1.9 - boxpop.php Remote Code Execution
ItCMS 1.9 - boxpop.php Remote Code Execution =========================================================================================================================== | | / | | | | | | | / / / || \ '| / | ' / - | / \ V V / - ' \ / - || | \/,|/| /| |||||///|./ |,|...