6348 matches found
OPENSUSE-SU-2020:1105-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: dracut-saltboot: - Print a list of available disk devices bsc1170824 - Install wipefs to initrd - Force install crypt modules golang-github-prometheus-prometheus: - Update change log and spec file + Modified spec file: default to golang 1.14 to avoid 'have...
BEESCMS suffers from SQL injection vulnerability (CNVD-2020-48932)
BEESCMS adopts PHP+MYSQL, featuring multi-language system and easy expansion of content modules. BEESCMS has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...
pwntools
This repository is an offensive tool for binary exploitation. It is a collection of common binary exploitation tools, including pwntools, a Python library for binary exploitation. The repository includes a variety of tools and scripts for exploiting vulnerabilities in binaries, including exploit...
The vulnerability of the Windows Modules Installer service in Windows operating systems allows attackers to exploit their privileges.
The vulnerability of the Windows Modules Installer service in Windows operating systems is related to file handling errors. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...
The vulnerability of SELinux’s mandatory access control system, combined with Linux Security Modules (LSM) in operating system kernels, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of SELinux’s mandatory access control system, along with the Linux Security Modules LSM modules in the operating system kernel, is related to insufficient verification of data authenticity. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...
Command Injection in 1000ch/install-package
Overview install-package is a package that installs node modules from JavaScript. This package is vulnerable to Command Injection, the argument options can be controlled by users without any sanitization giving attackers the ability to execute malicious code. POC var root =...
Microsoft Windows Modules Installer Elevation of Privilege Vulnerability
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in Microsoft Windows Modules Installer, whi...
Microweber Information Disclosure Vulnerability
Microweber is an online store management system that provides drag and drop functionality from the Microweber community in the United States. The system includes modules for adding products, images, and more. A security vulnerability exists in the userfiles/modules/users/controller/controller.php...
metasploit-framework
This is an offensive tool for Metasploit Framework. It is a collection of modules and tools for exploiting vulnerabilities in various systems and applications. The repository contains a wide range of modules, including exploits, payloads, and post-exploitation tools. The primary target of this to...
PowerSploit
This is a PowerShell post-exploitation framework called PowerSploit. It is a collection of PowerShell scripts that can be used to perform various malicious activities, such as code execution, DLL injection, and reflective PE injection. The framework is designed to be portable and can be used on...
Windows Modules Installer Elevation of Privilege Vulnerability (KB4565912)
This host is missing an important security update according to Microsoft KB4565912 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
Windows Modules Installer Elevation of Privilege Vulnerability (KB4565552)
This host is missing an important security update according to Microsoft KB4565552 Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
The vulnerabilities of Splunk and Sumologic modules in the configuration management system Ansible, which allow a hacker to gain unauthorized access to protected information.
The vulnerability of Splunk and Sumologic modules in the Ansible configuration management system is related to the absence of the “nolog” flag. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
CVE-2020-1346
An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations, aka 'Windows Modules Installer Elevation of Privilege Vulnerability'...
CVE-2020-1346
An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations, aka 'Windows Modules Installer Elevation of Privilege Vulnerability'...
Privilege escalation
An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations, aka 'Windows Modules Installer Elevation of Privilege Vulnerability'...
CVE-2020-1346
An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations, aka 'Windows Modules Installer Elevation of Privilege Vulnerability'...
CVE-2020-1346
Technical details about CVE-2020-1346 are not publicly provided in the connected documents. Monitor for updates from official advisories and third-party analyses.
CVE-2020-15721
RosarioSIS through 6.8-beta allows modules/Custom/NotifyParents.php XSS because of the href attributes for AddStudents.php and User.php...
Servicing stack update for Windows 10, version 2004: July 14, 2004
Servicing stack update for Windows 10, version 2004: July 14, 2004 Applies to Windows 10 Version 2004 for 32-bit Systems Windows 10 Version 2004 for ARM64-based Systems Windows 10 Version 2004 for x64-based Systems Windows Server, version 2004 Server Core installation Summary This update makes...