5020 matches found
CVE-2018-15963
Adobe ColdFusion versions July 12 release 2018.0.0.310739, Update 6 and earlier, and Update 14 and earlier have a security bypass vulnerability. Successful exploitation could lead to arbitrary folder creation...
CVE-2018-15963
Adobe ColdFusion versions July 12 release 2018.0.0.310739, Update 6 and earlier, and Update 14 and earlier have a security bypass vulnerability. Successful exploitation could lead to arbitrary folder creation...
EE 4GEE Mini Local Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Title: EE 4GEE Mini Local Privilege Escalation Vulnerability Software Version: EE400002.0044 Tested on: Windows 10 64-bit and Windows 7 64-bit Exploit Author: Osanda Malith Jayathissa @OsandaMalith Original Advisory:...
EE 4GEE Mini Local Privilege Escalation
Title: EE 4GEE Mini Local Privilege Escalation Vulnerability Date: 22-09-2018 Software Version: EE400002.0044 Tested on: Windows 10 64-bit and Windows 7 64-bit Exploit Author: Osanda Malith Jayathissa @OsandaMalith Original Advisory:...
Flaw in 4GEE WiFi Modem Could Leave Your Computer Vulnerable
A high-severity vulnerability has been discovered in 4G-based wireless 4GEE Mini modem sold by mobile operator EE that could allow an attacker to run a malicious program on a targeted computer with the highest level of privileges in the system. The vulnerability—discovered by 20-year-old Osanda...
Gantry package 5.4.26 ,Other
Gantry package containing "Twig" library creates folders with improper folder permissions. On some servers this may lead to world writeable folders. see https://github.com/gantry/gantry5/issues/2363 https://github.com/twigphp/Twig/issues/2353 developer states not a security issue within their...
Fail to add second storefront to server group due to users right assignment
The second storefront cannot be added to server group. Reinstallation and Reset Storefront cannot solve the issue. StoreFront verbose log has the error below: 00000953 11:29:50 AM 5444 SetFolderOwnerStep Setting: NT Service\CitrixSubscriptionsStore as owner of folder:...
Cisco Webex Meetings Client for Windows Elevation of Privilege Vulnerability
Cisco WebEx Meetings are web conferencing solutions. An elevation of privilege vulnerability exists in Cisco Webex Meetings Client for Windows due to folder permissions that grant a user permission to read, write, and execute files in the Webex folder. An attacker could use this vulnerability to...
Cisco Webex Meetings Client for Windows Privilege Escalation Vulnerability
A vulnerability in the folder permissions of Cisco Webex Meetings client for Windows could allow an authenticated, local attacker to modify locally stored files and execute code on a targeted device with the privilege level of the user. The vulnerability is due to folder permissions that grant a...
CVE-2018-16518
A directory traversal vulnerability with remote code execution in Prim'X Zed! FREE through 1.0 build 186 and Zed! Limited Edition through 6.1 build 2208 allows creation of arbitrary files on a user's workstation using crafted ZED! containers because the watermark loading function can place an...
Directory traversal
A directory traversal vulnerability with remote code execution in Prim'X Zed! FREE through 1.0 build 186 and Zed! Limited Edition through 6.1 build 2208 allows creation of arbitrary files on a user's workstation using crafted ZED! containers because the watermark loading function can place an...
CVE-2018-16518
Affected software: Prim'X Zed! FREE (up to 1.0 build 186) and Zed! Limited Edition (up to 6.1 build 2208). Vulnerability type: directory traversal with remote code execution. Root cause / vector: watermark loading function can place an executable file into a Startup folder via crafted ZED! contai...
Philips IntelliSpace Cardiovascular and Xcelera Privilege Mismanagement Vulnerability
Philips IntelliSpace Cardiovascular ISCV and Xcelera are both products of the Dutch company Philips.Philips ISCV is a cardiac imaging information management system.Xcelera is its predecessor. A security vulnerability exists in Philips ISCV version 2.x and earlier and Xcelera version 4.1 and...
CVE-2018-14927
Matera Banco 1.0.0 is vulnerable to path traversal allowing access to system files outside the default application folder via the /contingency/servlet/ServletFileDownload file parameter, related to /contingency/web/receiptQuery/receiptDisplay.jsp...
Magiczoomplus for Virtuemart, 4.9.4, Insecure Folder Permissions
Virtuemart plugin magiczoomplus v4.9.4 and previous, Sensitive information disclosure, Insecure folder permissions, Remote call information disclosure. Resolution: Update to 4.9.6 Update notice: https://www.magictoolbox.com/jv-release-update/ Note that the VEL do not agree with the developer's...
WordPress Plugin Responsive Thumbnail Slider - Arbitrary File Upload (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "WordPress Responsive Thumbnail Slider Arbitrary File Upload", 'Description' = %q This module exploits an arbitrary file upload vulnerability in...
October CMS Cross-Site Scripting Vulnerability (CNVD-2018-14215)
October CMS is an open source, self-hosted content management system CMS built on the Laravel PHP framework, developed by Canadian software developer Alexey Bobkov and Australian software developer Samuel Georges. The Media module is one of the media content management modules. A cross-site...
Plone allows remote attackers to read hidden folder contents
ftp.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read hidden folder contents via unspecified vectors...
GHSA-PRR5-PFR8-Q9F3 Plone allows remote attackers to read hidden folder contents
ftp.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read hidden folder contents via unspecified vectors...
CVE-2018-1999008
October CMS version prior to build 437 contains a Cross Site Scripting XSS vulnerability in the Media module and create folder functionality that can result in an Authenticated user with media module permission creating arbitrary folder name with XSS content. This attack appear to be exploitable...