PT-2021-7413 · Bluez +8 · Bluez +8

Name of the Vulnerable Software and Affected Versions: BlueZ affected versions not specified Description: A memory leak issue exists in the sdp cstate alloc buf function of the BlueZ Bluetooth protocol stack for Linux. This function allocates memory that remains in the singly linked list of cstat...

Kmaleon 1.1.0.205 SQL Injection

Exploit Title: Kmaleon 1.1.0.205 - 'tipocomb' SQL Injection Authenticated Google Dork: intitle: "Inicio de Sesión - Kmaleon" Date: 2021-11-05 Exploit Author: Amel BOUZIANE-LEBLOND Vendor Homepage: https://www.levelprograms.com Software Link: https://www.levelprograms.com/kmaleon-abogados/ Version...

Movable Type 7 r.5002 XMLRPC API Remote Command Injection

class MetasploitModule "Movable Type XMLRPC API Remote Command Injection", 'Description' = %q This module exploit Movable Type XMLRPC API Remote Command Injection. , 'License' = MSFLICENSE, 'Author' = 'Etienne Gervais', author & msf module, 'Charl-Alexandre Le Brun' author & msf module ,...

NewStart CGSL CORE 5.04 / MAIN 5.04 : initscripts Vulnerability (NS-SA-2021-0110)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has initscripts packages installed that are affected by a vulnerability: - rc.sysinit in initscripts before 8.76.3-1 on Fedora 9 and other Linux platforms allows local users to delete arbitrary files via a symlink attack on a...

Cypress Solutions CTM-200 2.7.1 Root Remote OS Command Injection

Cypress Solutions CTM-200 2.7.1 Root Remote OS Command Injection Vendor: Cypress Solutions Inc. Product web page: https://www.cypress.bc.ca Affected version: 2.7.1.5659 2.0.5.3356-184 Summary: CTM-200 is the industrial cellular wireless gateway for fixed and mobile applications. The CTM-200 is a...

VoIPmonitor 代码注入漏洞

VoIPmonitor is an open source network packet sniffer with a commercial front-end for SIP RTP and RTCP VoIP protocols running on Linux. VoIPmonitor suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

CommScope Ruckus IoT Controller Hard-coded System Passwords

Vulnerability Details Affected Vendor: CommScope Affected Product: Ruckus IoT Controller Affected Version: 1.7.1.0 and earlier Platform: Linux CWE Classification: CWE-259: Use of Hard-coded Password CVE ID: CVE-2021-33218 2. Vulnerability Description Hard coded, system-level credentials exist on...

ZeroShell kerbynet remote command execution

Added: 05/24/2021 Background Zeroshell is a Linux distribution designed for router and firewall appliances which can be administered from a web interface. Zeroshell is no longer supported. Problem A command injection vulnerability allows unauthenticated attackers to execute arbitrary commands by...

Tibco Software TIBCO Administrator 注入漏洞

Tibco Software TIBCO Administrator is an application from the American company Tibco Software. It is used to manage users, monitor computers and deploy applications that use TIBCO products. An injection vulnerability exists in TIBCO Software, which can be exploited by an attacker to perform a...

OESA-2021-1142 libupnp security update

The Universal Plug and Play UPnP SDK for Linux provides support for building UPnP-compliant control points, devices, and bridges on Linux. Security Fixes: Portable UPnP SDK aka libupnp 1.12.1 and earlier allows remote attackers to cause a denial of service crash via a crafted SSDP message due to ...

DEBIAN-CVE-2021-21152

Heap buffer overflow in Media in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

QEMU Out-of-Bounds Read Access Vulnerability

QEMU is a set of simulation processors written by Fabrice Bellard and distributed with source code under the GPL license, widely used on the GNU/Linux platform. An out-of-bounds read access vulnerability exists in ideatapicmdreplyend in hw/ide/atapi.c in QEMU 5.1.0. The vulnerability stems from a...

inoERP form personalization module command execution

Added: 10/28/2020 Background inoERP is an open source web based enterprise management system. Problem A vulnerability in the formpersonalization module allows remote, unauthenticated attackers to execute arbitrary PHP code injected in the templatecode parameter. Resolution No fix is available at...

Artica Proxy 4.30.000000 Authentication Bypass / Command Injection Exploit

This Metasploit module exploits an authenticated command injection vulnerability in Artica Proxy, combined with an authentication bypass discovered on the same version, it is possible to trigger the vulnerability without knowing the credentials. The application runs in a virtual appliance and...

skia:sksl2spirv: Null-dereference READ with empty stacktrace

Detailed Report: https://oss-fuzz.com/testcase?key=5806581326020608 Project: skia Fuzzing Engine: libFuzzer Fuzz Target: sksl2spirv Job Type: libfuzzerubsanskia Platform Id: linux Crash Type: Null-dereference READ Crash Address: 0x000000000000 Crash State: NULL Sanitizer: undefined UBSAN Crash...

ghostscript:gstoraster_fuzzer: Use-of-uninitialized-value in s_A85D_process

Detailed Report: https://oss-fuzz.com/testcase?key=5917456288448512 Project: ghostscript Fuzzing Engine: libFuzzer Fuzz Target: gstorasterfuzzer Job Type: libfuzzermsanghostscript Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: sA85Dprocess gsscantoken interp...

Unspecified Vulnerability in IBM DB2

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A security vulnerability exists in IBM DB2. An attacker can exploit the vulnerability to cause a denia...

fwupd Data Forgery Issue Vulnerability

fwupd is a plugin that supports firmware updates for session software on Linux platforms. A data forgery issue vulnerability exists in fwupd. The vulnerability stems from a network system or product that does not adequately validate the origin or authenticity of data. An attacker could exploit th...

stb:stbi_read_fuzzer: Heap-buffer-overflow in load_jpeg_image

Detailed Report: https://oss-fuzz.com/testcase?key=5726154781884416 Project: stb Fuzzing Engine: afl Fuzz Target: stbireadfuzzer Job Type: aflasanstb Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x62b000006e0f Crash State: loadjpegimage stbijpegload stbiloadmain...

PT-2020-13280

Name of the Vulnerable Software and Affected Versions WordPress Plugin Simple File List versions prior to 4.2.8 Description The issue arises from the application's failure to properly verify user-supplied input, allowing attackers to delete arbitrary files. This is particularly problematic in cas...