9780 matches found
Security feature bypass
GitLab versions 8.9.x and above contain a critical security flaw in the "import/export project" feature of GitLab. Added in GitLab 8.9, this feature allows a user to export and then re-import their projects as tape archive files tar. All GitLab versions prior to 8.13.0 restricted this feature to...
CVE-2016-9086
Removed by vendor...
CVE-2016-9086
GitLab versions 8.9.x and above contain a critical security flaw in the "import/export project" feature of GitLab. Added in GitLab 8.9, this feature allows a user to export and then re-import their projects as tape archive files tar. All GitLab versions prior to 8.13.0 restricted this feature to...
CVE-2016-9086
CVE-2016-9086 affects GitLab (CE/EE) versions 8.9.x to 8.13.x with the import/export project feature. The vulnerability arises from improper validation of symbolic links in user-supplied tar archives during export/import, enabling an authenticated user to access files reachable by the GitLab serv...
Arbitrary File Upload Vulnerability in SignName Parameter of Tibco Call Center System
The core of Tibco's call center system is a communication-based system for internal and external corporate communication. An arbitrary file upload vulnerability exists in the signName parameter of the Tibus Communication Call Center System. 1 File upload: /sysmaint/import/import.php, save...
gitlab -- Directory traversal via "import/export" feature
GitLab reports: The import/export feature did not properly check for symbolic links in user-provided archives and therefore it was possible for an authenticated user to retrieve the contents of any file accessible to the GitLab service account. This included sensitive files such as those that...
Unspecified Vulnerability in Oracle Fusion Middleware NetBeans Component
Oracle Fusion Middleware Oracle Fusion Middleware is a set of Oracle's business innovation platform for enterprise and cloud environments, which provides middleware, software collections, etc. NetBeans is one of the components that includes an open source development environment and application...
From the patch compare to the PoC to reproduce it MS16-0 3 0-vulnerability warning-the black bar safety net
MS16-0 3 0 vulnerability MS16-0 3 0 vulnerabilities Windows OLE remote code execution vulnerability, since OLE does not have the correct validation of user input, causing by the special structure of the file or the program can trigger the vulnerability, causing the user to click on after the remo...
RSA Enterprise Compromise Assessment Tool (ECAT) 4.1.0.1 XXE Injection
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: XML External Entity Injection XXE product: RSA Enterprise Compromise Assessment Tool ECAT vulnerable version: 4.1.0.1 fixed version: 4.1.2.0 CVE Number: - impact: Medium...
Error: "xenopsd internal error: Unix.Unix_error(Unix.ENODEV, "write", "") importing VM on XenServer
After exporting a VM into an xva format and trying to import the VM, VM import is successful, but when trying to start the VM, it fails with the following error in the /var/log/xensource.log xenopsd internal error: Unix.UnixerrorUnix.ENODEV, "write", ""...
TP-Link Archer CR-700 Cross-Site Scripting Vulnerability
The TP-Link Archer CR-700 is a router. A cross-site scripting vulnerability exists in the TP-Link Archer CR-700. A remote attacker can exploit this vulnerability by importing a configuration file to change the router's configuration...
W3 Total Cache <= 0.9.4.1 – Authenticated Arbitrary PHP Code Execution
This one is so mush easy to exploit using the import settings feature, this is what W3TC will do one your file is uploaded: / Imports config content @param string $filename @return boolean / function import$filename if fileexists$filename && isreadable$filename $data = filegetcontents$filename; i...
WordPress Plugin Order Export Import for WooCommerce - Order Information Disclosure Vulnerability
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Software Foundation. WordPress plugin Order Export Import for WooCommerce - Order has an information disclosure vulnerability. An attacker can exploit the vulnerability to download all orders...
WordPress Plugin Order Export Import for WooCommerce - Order Information Disclosure
WordPress Plugin Order Export Import for WooCommerce - Order Information Disclosure Exploit Title: WordPress Plugin Order Export Import for WooCommerce Link: https://wordpress.org/plugins/order-import-export-for-woocommerce/ Version: 1.0.8 Date: 19th 2016 Exploit Author: contact a david-peltier d...
WordPress Plugin Order Export Import for WooCommerce - Order Information Disclosure
Exploit Title: WordPress Plugin Order Export Import for WooCommerce Link: https://wordpress.org/plugins/order-import-export-for-woocommerce/ Version: 1.0.8 Date: 19th 2016 Exploit Author: contact a david-peltier d fr Vendor Homepage: xadapter.com Version: 1.0.8 Timeline: Vuln found: 17-09-2016,...
Order Export Import for WooCommerce 1.0.8 - Order Information Disclosure
The Order Export & Order Import for WooCommerce WordPress plugin was affected by an Order Information Disclosure security vulnerability...
WordPress Order Export Import Plugin <= 1.0.8 - Order Information Disclosure
This plugin is prone to an order information disclosure vulnerability. It allows attackers to export all order without being authenticated. Solution Update the plugin...
[SECURITY] Fedora 23 Update: phpMyAdmin-4.6.4-2.fc23
phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...
WordPress Members Import Plugin <= 1.3 - Cross-Site Request Forgery (CSRF)/User Import Vulnerability
The function memberimportpage in the file /members-import.php is missing a nonce so a CSRF vulnerability exists. Solution Update the plugin...
The vulnerability of the SAP HANA database management system allows a attacker to trigger a service failure (process termination) or execute arbitrary code.
The vulnerability of the SAP HANA database management system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code by manipulating the IMPORT object...