46 matches found
EUVD-2016-10869
Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...
CVE-2016-20060
Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...
CVE-2016-20060 Hotspot Shield 6.0.3 Unquoted Service Path Privilege Escalation
Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...
CVE-2016-20060
Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...
CVE-2016-20060 Hotspot Shield 6.0.3 Unquoted Service Path Privilege Escalation
Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...
CVE-2016-20060
Affected software: Hotspot Shield 6.0.3. Vulnerability: unquoted service path in the hshld service binary enables local privilege escalation by placing malicious executables in the service path; on service restart or system reboot, code executes with LocalSystem privileges. Root cause: unquoted s...
Pango Hotspot Shield 代码问题漏洞
Pango Hotspot Shield is a VPN Virtual Private Network proxy software developed by the American company Pango. Version 6.0.3 of Pango Hotspot Shield has a code vulnerability. This vulnerability stems from an issue with the hshld service binary, where a service path without quotes exists. This coul...
EUVD-2020-9319
Malware in sbrugna...
EUVD-2025-19527
Malicious code in bioql PyPI...
EUVD-2024-51299
Malicious code in bioql PyPI...
CVE-2025-40710
Host Header Injection HHI vulnerability in the Hotspot Shield VPN client, which can induce unexpected behaviour when accessing third-party web applications through the VPN tunnel. Although such applications do not present this vulnerability per se, the use of the tunnel, together with a forged Ho...
CVE-2025-40710
Host Header Injection HHI vulnerability in the Hotspot Shield VPN client, which can induce unexpected behaviour when accessing third-party web applications through the VPN tunnel. Although such applications do not present this vulnerability per se, the use of the tunnel, together with a forged Ho...
CVE-2025-40710 Host Header Injection (HHI) in the Hotspot Shield VPN client
Host Header Injection HHI vulnerability in the Hotspot Shield VPN client, which can induce unexpected behaviour when accessing third-party web applications through the VPN tunnel. Although such applications do not present this vulnerability per se, the use of the tunnel, together with a forged Ho...
CVE-2025-40710 Host Header Injection (HHI) in the Hotspot Shield VPN client
Host Header Injection HHI vulnerability in the Hotspot Shield VPN client, which can induce unexpected behaviour when accessing third-party web applications through the VPN tunnel. Although such applications do not present this vulnerability per se, the use of the tunnel, together with a forged Ho...
CVE-2025-40710
CVE-2025-40710 pertains to a Host Header Injection (HHI) in the Hotspot Shield VPN client. The vulnerability arises from how the VPN client internally handles outgoing headers and requests, allowing a forged Host header to influence traffic routing through the VPN tunnel. Reported impacts include...
Intersections Hotspot Shield VPN 注入漏洞
Intersections Hotspot Shield VPN is a virtual private network VPN service product from Intersections, Inc. Intersections Hotspot Shield VPN suffers from an injection vulnerability that stems from an injection issue in the processing of the Host header, which could result in request redirection or...
PT-2025-27434 · Unknown · Hotspot Shield Vpn
Name of the Vulnerable Software and Affected Versions: Hotspot Shield VPN client affected versions not specified Description: The issue concerns a Host Header Injection HHI vulnerability, which can cause unexpected behavior when accessing third-party web applications through the VPN tunnel. This...
CVE-2024-13043
Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...
CVE-2024-13043
Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to...
CVE-2024-13043
This CVE concerns Panda Security Dome, specifically a local privilege escalation in the Hotspot Shield component. The flaw: by creating a junction, an attacker can abuse the application to delete arbitrary files and escalate privileges to SYSTEM, enabling arbitrary code execution. Exploitation re...