ciguard: Container image runs as root (no USER directive)

Summary The published ghcr.io/jo-jo98/ciguard container image inherits the default root user because the Dockerfile lacks a USER directive. ciguard is a static analyser with no need for root privileges; running as root inside a container makes any future container-runtime escape CVE more impactfu...

GHSA-W7J5-J98M-W679 OpenClaw has multiple E2E/test Dockerfiles that run all processes as root

Three Dockerfiles in scripts/docker/ and scripts/e2e/ lack a USER directive, meaning all processes run as uid 0 root. If any process is compromised, the attacker has root inside the container, making container breakout significantly easier. Partial fix 2026-02-08: Commit 28e1a65e added USER sandb...

CVE-2019-1656

A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, local attacker to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to improper input validation in the affected software. An...

CVE-2019-1656 Cisco Enterprise NFV Infrastructure Software Linux Shell Access Vulnerability

A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, local attacker to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to improper input validation in the affected software. An...

Openfiler 2.3 Password Change

Exploit code PoC for OpenFiler 2.3 current by just a nonroot user http://nonroot.blogspot.com/ import urllib,sys,re host example: https://192.168.20.5:446/ host=rawinput"OpenFiler system include http and /: " Super admin user user='openfiler' What pass do you want? password='nonroot' use it pleas...

Openfiler 2.3 (Auth Bypass) Remote Password Change Exploit

No description provided by source. Exploit code PoC for OpenFiler 2.3 current by just a nonroot user http://nonroot.blogspot.com/ import urllib,sys,re host example: https://192.168.20.5:446/ host=rawinput"OpenFiler system include http and /: " Super admin user user='openfiler' What pass do you...

OpenFiler 2.3 - (Authentication Bypass) Remote Password Change

OpenFiler 2.3 - Authentication Bypass Remote Password Change Exploit code PoC for OpenFiler 2.3 current by just a nonroot user http://nonroot.blogspot.com/ import urllib,sys,re host example: https://192.168.20.5:446/ host=rawinput"OpenFiler system include http and /: " Super admin user...

MoinMoin 1.5.x - 'MOIND_ID' Cookie Login Bypass

!/usr/bin/python Exploit for the MOINDID cookie Bug MoinMoin 1.5.x Find your patch in : http://hg.moinmo.in/moin/1.5/rev/e69a16b6e630 Bug and exploit coded by just a nonroot and colombian user Enero 21 de 2008 Greets: el directorio and all the SL community import urllib2,sys print "MoinMoin host:...