CVE-2024-48236

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\FileUtils.java file...

CVE-2024-48236

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\FileUtils.java file...

CVE-2024-48236

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\FileUtils.java file...

CVE-2024-48236

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\FileUtils.java file...

CVE-2024-48236

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\FileUtils.java file...

OFSoft OFCMS 安全漏洞

OFSoft OFCMS is a content management system CMS developed in Java language by China Zhongtian Network OFSoft. A security vulnerability exists in OFSoft OFCMS version 1.1.2. An attacker can exploit the vulnerability to execute arbitrary code via the FileOutputStream function...

PT-2024-33047 · Ofcms · Ofcms

Name of the Vulnerable Software and Affected Versions: ofcms version 1.1.2 Description: The issue allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the FileUtils.java file. This is located in the...

CVE-2024-48236

CVE-2024-48236 concerns OFCMS 1.1.2. The issue exists in the admin-side FileUtils.java, specifically the FileOutputStream usage inside the write String method, which enables a remote attacker to execute arbitrary code. The descriptions across sources consistently identify this as a remote-code-ex...

Hyperledger: Fix : (Security) Mitigate Path Traversal Bug

Unsanitized input from arg0 argument flows into java.io.FileOutputStream, where it is used as a path. This may result in a Path Traversal vulnerability and allow an attacker to write to arbitrary files. Impact Being able to access and manipulate an arbitrary path leads to vulnerabilities when a...

ReadyTalk Avian JVM FileOutputStream.write() Integer Overflow Exploit

ReadyTalk Avian JVM versions 1.2.0 before 27th October 2020 suffer from a FileOutputStream.write integer overflow vulnerability. Vulnerability title: Avian JVM FileOutputStream.write Integer Overflow Author: Pietro Oliva Vendor: ReadyTalk Product: Avian JVM Affected version: 1.2.0 before 27th...

CVE-2020-28371

An issue was discovered in ReadyTalk Avian 1.2.0 before 2020-10-27. The FileOutputStream.write method in FileOutputStream.java has a boundary check to prevent out-of-bounds memory read/write operations. However, an integer overflow leads to bypassing this check and achieving the out-of-bounds...

CVE-2020-28371

An issue was discovered in ReadyTalk Avian 1.2.0 before 2020-10-27. The FileOutputStream.write method in FileOutputStream.java has a boundary check to prevent out-of-bounds memory read/write operations. However, an integer overflow leads to bypassing this check and achieving the out-of-bounds...

PT-2020-17001 · Readytalk · Readytalk Avian

Name of the Vulnerable Software and Affected Versions: ReadyTalk Avian versions 1.2.0 through 1.2.0 before 2020-10-27 Description: An issue was discovered in the FileOutputStream.write method in FileOutputStream.java, where an integer overflow leads to bypassing the boundary check and achieving...

JBoss Application Server Remote Exploit

No description provided by source. JBoss AS Remote Exploit by Kingcope use IO::Socket; use LWP::UserAgent; use URI::Escape; use MIME::Base64; sub usage print JBoss AS Remote Exploit\nby Kingcope\n\nusage: perl jboss.pl target targetport yourip yourport win/lnx\n; print example: perl daytona.pl...

FTPShell Client 4.1 RC2 Name Session Stack Overflow Exploit

No description provided by source. / FTPShell Client, Name Session Stack Overflow Exploit Tested on Version 4.1 RC2 on Windows XP SP3 Vulnerable program download page : http://www.ftpshell.com/downloadclient.htm Coded by zec Feel yourself freely to get into touch : [email protected] / package ftpbo...

FTPShell Client 4.1 RC2 Name Session Stack Overflow Exploit

Exploit for unknown platform in category local exploits =========================================================== FTPShell Client 4.1 RC2 Name Session Stack Overflow Exploit =========================================================== / FTPShell Client, Name Session Stack Overflow Exploit Tested...

FTPShell Client 4.1 RC2 - Name Session Stack Overflow

FTPShell Client 4.1 RC2 - Name Session Stack Overflow / FTPShell Client, Name Session Stack Overflow Exploit Tested on Version 4.1 RC2 on Windows XP SP3 Vulnerable program download page : http://www.ftpshell.com/downloadclient.htm Coded by zec Feel yourself freely to get into touch :...

FTPShell Client 4.1 RC2 - Name Session Stack Overflow

/ FTPShell Client, Name Session Stack Overflow Exploit Tested on Version 4.1 RC2 on Windows XP SP3 Vulnerable program download page : http://www.ftpshell.com/downloadclient.htm Coded by zec Feel yourself freely to get into touch : [email protected] / package ftpbof; import java.io.DataOutputStream;...