2097 matches found
Node.js third-party modules: [stattic] Inproper path validation leads to Path Traversal and allows to read arbitrary files with any extension(s)
I would like to report Path Traversal in stattic module. It allows to read content of some arbitrary files from the server where stattic is installed and run. Module module name: stattic version: 0.2.3 npm page: https://www.npmjs.com/package/stattic Module Description Ridiculous simple script for...
Arbitrary Code Execution
github.com/golang/go is vulnerable to arbitrary code execution attacks. The library does not properly validate the import path when the -insecure flag is used for the go get command. This allows a malicious user to execute arbitrary commands through the use of a malicious website...
UBUNTU-CVE-2018-7187
The "go get" implementation in Go 1.9.4, when the -insecure command-line option is used, does not validate the import path get/vcs.go only checks for "://" anywhere in the string, which allows remote attackers to execute arbitrary OS commands via a crafted web site...
CVE-2018-1162
This vulnerability allows remote attackers to create a denial-of-service condition on vulnerable installations of Quest NetVault Backup 11.2.0.13. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be easily bypassed. The specific flaw...
HPE Intelligent Management Center PLAT Remote Code Execution Vulnerability (CNVD-2018-03951)
HPE Intelligent Management Center iMC PLAT is a suite of network intelligent management center solutions from Hewlett Packard Enterprise HPE. The solution provides network-wide visibility and enables comprehensive management of resources, services and users. A remote code execution vulnerability...
cpio security bypass vulnerability
cpio is a set of file backup tools developed by the GNU Project for use in the UNIX operating system and as a file format. The tool supports depositing and reading files from cpio or tar-formatted archive packages. A security vulnerability exists in cpio 2.7 and later versions, which stems from t...
CVE-2017-16610
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within uploadsavedo.jsp. The issue results from the lack of proper validation of a...
CVE-2017-16610
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within uploadsavedo.jsp. The issue results from the lack of proper validation of a...
CVE-2017-16597
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of WRQ requests. When parsing the...
NetGain Enterprise Manager Arbitrary File Overwrite Vulnerability
Netgain Enterprise Manager is a suite of IT asset monitoring and management software from NetGain Systems, Singapore. A directory traversal vulnerability exists in the org.apache.jsp.u.jsp.cnnic.asset.deviceReport.deviceReport005fexport005fdojsp servlet in NetGain Enterprise Manager, which stems...
NetGain Systems Enterprise Manager Information Disclosure Vulnerability (CNVD-2018-03264)
Netgain Enterprise Manager is a suite of IT asset monitoring and management software from NetGain Systems, Singapore. An information disclosure vulnerability in the org.apache.jsp.u.jsp.designer.script005fsamplesjsp servlet in NetGain Enterprise Manager version 7.2.730 build 1034 arises from a...
Arbitrary File Download Vulnerability in the Pelco Sarix Pro Webcam ssldownload.cgi Program
pelco Sarix Professional is a video camera. An arbitrary file download vulnerability exists in the pelco Sarix Pro network camera ssldownload.cgi program. The vulnerability is caused due to the program failing to properly check the path and name of the downloaded file, allowing an attacker to...
CVE-2017-8189
FusionSphere OpenStack V100R006C00SPC102NFVhas a path traversal vulnerability. Due to insufficient path validation, an attacker with high privilege may exploit this vulnerability to cover some files, causing services abnormal...
Path traversal
FusionSphere OpenStack V100R006C00SPC102NFVhas a path traversal vulnerability. Due to insufficient path validation, an attacker with high privilege may exploit this vulnerability to cover some files, causing services abnormal...
CVE-2017-8189
FusionSphere OpenStack V100R006C00SPC102NFVhas a path traversal vulnerability. Due to insufficient path validation, an attacker with high privilege may exploit this vulnerability to cover some files, causing services abnormal...
Skybox Manager Client Application File Upload Vulnerability
Skybox Manager Client Application is a client-side management application of a network security risk analysis tool from Skybox Security, USA. An arbitrary file upload vulnerability exists in Skybox Manager Client Application versions prior to 8.5.501, where the program fails to adequately validat...
PYSEC-2017-144
Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission...
PT-2017-11022 · Red Hat · Koji
Name of the Vulnerable Software and Affected Versions: Koji version 1.13.0 Description: The issue arises from improper validation of SCM paths, enabling an attacker to bypass blacklisted paths for build submission. Recommendations: For version 1.13.0, update to a newer version that properly...
Path validation vulnerability, September 2017
Path validation vulnerability, September 2017 Path Validation Vulnerability Updated 29-September-2017 - CVE assigned The Node.js project released a new version of 8.x this week which incorporates a security fix. Impact Version 8.5.0 of Node.js is vulnerable. 4.x and 6.x versions are NOT vulnerabl...
CVE-2017-14105
HiveManager Classic through 8.1r1 allows arbitrary JSP code execution by modifying a backup archive before a restore, because the restore feature does not validate pathnames within the archive. An authenticated, local attacker - even restricted as a tenant - can add a jsp at...