Huawei HarmonyOS 访问控制错误漏洞

Huawei HarmonyOS is a distributed operating system designed for various scenarios, primarily providing seamless experiences across devices and memory management capabilities. There is an access control vulnerability in the package management module of Huawei HarmonyOS. The cause of this...

SUSE CVE-2020-1738

A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branch...

GHSA-F85H-23MF-2FWH Argument Injection in Ansible

A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branch...

DEBIAN-CVE-2020-1738

A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branch...

CVE-2020-1738

A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x, 2.8.x and 2.9.x branch...

Remote Code Execution (RCE)

ansible is vulnerable to remote code execution. The vulnerability exists as the package and service modules allows the ansiblefacts'pkgmgr' and ansiblefacts'servicemgr' facts to be set to a module name such as ansiblecollections.namespace.name./tmp/reverse-shell, allowing remote code execution on...

PT-2019-18679 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel versions through 0.9.8.763 Description: The issue concerns a Stored/Persistent XSS vulnerability. It affects the add package module, specifically the Package Name field. This allows for potential exploitation via the module...

CentOS Web Panel 0.9.8.763 - Persistent Cross-Site Scripting

CentOS Web Panel 0.9.8.763 - Persistent Cross-Site Scripting Exploit Title: CentOS Web Panel 0.9.8.763 - Stored Cross-Site Scripting Vulnerability Google Dork: N/A Date: 10 - January - 2019 Exploit Author: DKM Vendor Homepage: http://centos-webpanel.com Software Link: http://centos-webpanel.com...