CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

CVE-2020-16094

In imapscantreerecursive in Claws Mail through 3.17.6, a malicious IMAP server can trigger stack consumption because of unlimited recursion into subdirectories during a rebuild of the folder tree...

[SECURITY] Fedora 32 Update: roundcubemail-1.4.7-1.fc32

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

The vulnerability of the Secdo security incident investigation software arises from incorrect default access settings, which allow attackers to elevate their privileges and re-write system files.

The vulnerability of the Secdo security incident investigation software is related to incorrect default access settings for the folder C:\Programdata\Secdo\Logs. Exploiting this vulnerability allows an attacker to increase their privileges and overwrite system files...

Online Shopping Portal 3.1 - Authentication Bypass Vulnerability

Exploit for php platform in category web applications Exploit Title: Online Shopping Portal 3.1 - Authentication Bypass Exploit Author: Ümit Yalçın Vendor Homepage: https://phpgurukul.com/shopping-portal-free-download/ Version: 3.1 Tested on: Windows 10 / WampServer 1- Authentication Bypass Go to...

CVE-2020-15351

IDrive before 6.7.3.19 on Windows installs by default to %PROGRAMFILESX86%\IDriveWindows with weak folder permissions granting any user modify permission i.e., NT AUTHORITY\Authenticated Users:OICIM to the contents of the directory and its sub-folders. In addition, the program installs a service...

CVE-2020-15351

IDrive before 6.7.3.19 on Windows installs by default to %PROGRAMFILESX86%\IDriveWindows with weak folder permissions granting any user modify permission i.e., NT AUTHORITY\Authenticated Users:OICIM to the contents of the directory and its sub-folders. In addition, the program installs a service...

Design/Logic Flaw

IDrive before 6.7.3.19 on Windows installs by default to %PROGRAMFILESX86%\IDriveWindows with weak folder permissions granting any user modify permission i.e., NT AUTHORITY\Authenticated Users:OICIM to the contents of the directory and its sub-folders. In addition, the program installs a service...

CVE-2020-15351

IDrive prior to 6.7.3.19 on Windows installs to %PROGRAMFILES(X86)%\IDriveWindows with weak folder permissions (Authenticated Users: modify) and runs a LocalSystem service (IDriveService). This enables a local user to escalate to SYSTEM by replacing the service binary with a malicious one. Affect...

Acronis: Acronis True Image Local Privilege Escalation via insecure folder permissions

Note: This has been submitted via service desk earlier, and I got a call from Acronis customer service that it's up on H1 and I should submit it there as well. All of the Acronis LaunchDaemons except the price helper which can be found here: /Library/LaunchDaemons/com.acronis. start an app / scri...

Directory Traversal

github.com/unknwon/cae is vulnerable to directory traversal. The vulnerability exists as the ExtractTo function does not sanitize file paths in zip archives, allowing ../ in file path to be resolved outside the intended extraction folder and potentially allowing arbitrary file write...

CVE-2020-13887

documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...

CVE-2020-13887

documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...

Microsoft IIS Tilde Character Short File/Folder Name Disclosure

Microsoft Internet Information Server IIS suffers from a vulnerability which allows the detection of short names of files and directories which have en equivalent in the 8.3 version of the file naming scheme. By crafting specific requests containing the tilde '' character, an attacker could...

CVE-2020-3961

VMware Horizon Client for Windows prior to 5.4.3 contains a privilege escalation vulnerability due to folder permission configuration and unsafe loading of libraries. A local user on the system where the software is installed may exploit this issue to run commands as any user...

CVE-2020-3961

VMware Horizon Client for Windows prior to 5.4.3 contains a privilege escalation vulnerability due to folder permission configuration and unsafe loading of libraries. A local user on the system where the software is installed may exploit this issue to run commands as any user...

Privilege escalation

VMware Horizon Client for Windows prior to 5.4.3 contains a privilege escalation vulnerability due to folder permission configuration and unsafe loading of libraries. A local user on the system where the software is installed may exploit this issue to run commands as any user...

CVE-2020-3961

CVE-2020-3961 affects VMware Horizon Client for Windows (before 5.4.3). The root cause is a privilege-escalation flaw caused by folder permission configuration and unsafe loading of libraries, enabling a local user to execute commands with higher privileges. Multiple sources confirm the vulnerabl...

Cross-Site Scripting(XSS)

WordPress is vulnerable to cross-site scripting XSS. The vulnerability exists due to the failure to sanitize the name of the theme folder in /wp-admin on the themes page when the admin uploads the theme...

May 29, 2019—KB4497935 (OS Build 18362.145)

May 29, 2019—KB4497935 OS Build 18362.145 Improvements and fixes This update includes quality improvements. Key changes include: Addresses an issue in which Device-S4 may be applied unexpectedly while the system is using AC power. For more information, see Device-S4 may be applied unexpectedly...