The vulnerability of the distributed Git version control system, related to deficiencies in access control, allows a intruder to increase their privileges or execute arbitrary commands.

The vulnerability of the distributed Git version control system relates to the possibility of creating a folder named “C:.git”. Exploiting this vulnerability could allow an attacker to execute arbitrary commands...

CVE-2022-32114

An unrestricted file upload vulnerability in the Add New Assets function of Strapi 4.1.12 allows attackers to conduct XSS attacks via a crafted PDF file. NOTE: the project documentation suggests that a user with the Media Library "Create upload" permission is supposed to be able to upload PDF fil...

CVE-2022-32114

An unrestricted file upload vulnerability in the Add New Assets function of Strapi 4.1.12 allows attackers to conduct XSS attacks via a crafted PDF file. NOTE: the project documentation suggests that a user with the Media Library "Create upload" permission is supposed to be able to upload PDF fil...

PT-2022-21097 · Strapi · Strapi

Name of the Vulnerable Software and Affected Versions: Strapi version 4.1.12 Description: An unrestricted file upload vulnerability in the Add New Assets function allows attackers to conduct XSS attacks via a crafted PDF file. The project documentation suggests that a user with the Media Library...

CVE-2022-31012

Git for Windows is a fork of Git that contains Windows-specific patches. This vulnerability in versions prior to 2.37.1 lets Git for Windows' installer execute a binary into C:\mingw64\bin\git.exe by mistake. This only happens upon a fresh install, not when upgrading Git for Windows. A patch is...

Design/Logic Flaw

Git for Windows is a fork of Git that contains Windows-specific patches. This vulnerability in versions prior to 2.37.1 lets Git for Windows' installer execute a binary into C:\mingw64\bin\git.exe by mistake. This only happens upon a fresh install, not when upgrading Git for Windows. A patch is...

CVE-2022-31012 Git for Windows' installer can be tricked into executing an untrusted binary

Git for Windows is a fork of Git that contains Windows-specific patches. This vulnerability in versions prior to 2.37.1 lets Git for Windows' installer execute a binary into C:\mingw64\bin\git.exe by mistake. This only happens upon a fresh install, not when upgrading Git for Windows. A patch is...

WebView2-Cookie-Stealer - Attacking With WebView2 Applications

Please read this blog post to get more information. Source Code This code is a modified version of Microsoft's WebView2 Code. The current code can be cleaned up and made much better. Demo Launch Example Usage Example Usage Tested onWindows 10 & 11. When the binary is executed...

PT-2022-3601 · Git +10 · Git +10

Name of the Vulnerable Software and Affected Versions: Git versions prior to 2.37.1 Git versions prior to 2.36.2 Git versions prior to 2.35.4 Git versions prior to 2.34.4 Git versions prior to 2.33.4 Git versions prior to 2.32.3 Git versions prior to 2.31.4 Git versions prior to 2.30.5 Descriptio...

PT-2022-3619 · Unknown · Git For Windows

Name of the Vulnerable Software and Affected Versions: Git for Windows versions prior to 2.37.1 Description: The issue is related to the Git for Windows installer executing a binary into C:mingw64bingit.exe by mistake, which occurs only during a fresh install, not when upgrading. This is due to a...

CVE-2022-24138

IOBit Advanced System Care Asc.exe 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with ...

CVE-2022-24138

IOBit Advanced System Care Asc.exe 15 and Action Download Center both download components of IOBit suite into ProgramData folder, ProgramData folder has "rwx" permissions for unprivileged users. Low privilege users can use SetOpLock to wait for CreateProcess and switch the genuine component with ...

PT-2022-6291 · WordPress · Wicked Folders

Name of the Vulnerable Software and Affected Versions: Wicked Folders plugin for WordPress versions up to, and including, 2.18.16 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the ajax edit folder function. This allows...

CVE-2022-34043

Incorrect permissions for the folder C:\ProgramData\NoMachine\var\uninstall of Nomachine v7.9.2 allows attackers to perform a DLL hijacking attack and execute arbitrary code...

Code injection

Incorrect permissions for the folder C:\ProgramData\NoMachine\var\uninstall of Nomachine v7.9.2 allows attackers to perform a DLL hijacking attack and execute arbitrary code...

PT-2022-6521 · Nomachine · Nomachine

Name of the Vulnerable Software and Affected Versions: NoMachine version 7.9.2 Description: The issue is related to incorrect permissions for the folder C:ProgramDataNoMachinevaruninstall of NoMachine, which allows attackers to perform a DLL hijacking attack and execute arbitrary code. This is du...

CVE-2022-2145

Cloudflare WARP client for Windows up to v. 2022.5.309.0 allowed creation of mount points from its ProgramData folder. During installation of the WARP client, it was possible to escalate privileges and overwrite SYSTEM protected files...

PT-2022-6316 · Dell · Dell Command Configure

Name of the Vulnerable Software and Affected Versions: Dell Command Configure versions 4.8 and prior Description: The issue is related to improper folder permission handling when Dell Command Configure is installed to a non-default, non-secured path. This can lead to privilege escalation, allowin...

EulerOS 2.0 SP8 : git (EulerOS-SA-2022-1929)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on multi-user machines, where...

Privilege escalation

Comodo Antivirus 12.2.2.8012 has a quarantine flaw that allows privilege escalation. To escalate privilege, a low-privileged attacker can use an NTFS directory junction to restore a malicious DLL from quarantine into the System32 folder...