526 matches found
Command Execution Vulnerability in PHP7CMS
PHP7 content management system referred to as PHP7CMS by Chunjie studio using PHP7 technology newly developed content management program. PHP7CMS has a command execution vulnerability that can be exploited by attackers to gain server privileges...
SUSE: Security Advisory (SUSE-SU-2020:2997-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:0584-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:0622-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for php7 (openSUSE-SU-2021:0101-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for php7 (openSUSE-SU-2021:0106-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for php7 (openSUSE-SU-2021:0305-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Development Kamel KCFinder 1.7 Shell Upload
Exploit Title : Development Kamel - KCFinder Shell Upload Vulnerability + Date : 25/03/2021 + Exploit Author : RAYAN ALi + Home : http://kamel.tech/ + Discovered By : RAYAN + Vendor Homepage : http://kamel.tech/ + Exploit: + http://localhost/resources/admin/Editor/kcfinder/browse.php?type=files +...
Command Execution Vulnerability in DiYunCMS
Diyun CMS content management system is based on PHP7 language using the latest CodeIgniter4 as a development framework for the production of web content management framework, providing "computer website, cell phone website, APP interface" integrated web technology solutions. DiYunCMS has a comman...
Online Ordering System 1.0 - Arbitrary File Upload
Exploit Title: Online Ordering System 1.0 - Arbitrary File Upload to Remote Code Execution Date: 04/03/2021 Exploit Author: Suraj Bhosale Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/5125/online-ordering-system-using-phpmysql.html Version: 1.0...
SUSE SLES15 Security Update : php7 (SUSE-SU-2021:0584-1)
This update for php7 fixes the following issues : CVE-2021-21702 bsc1182049: NULL pointer dereference in SoapClient Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it...
SUSE-SU-2021:0584-1 Security update for php7
This update for php7 fixes the following issues: - CVE-2021-21702 bsc1182049: NULL pointer dereference in SoapClient...
openSUSE Security Update : php7 (openSUSE-2021-305)
This update for php7 fixes the following issues : - CVE-2021-21702 bsc1182049: NULL pointer dereference in SoapClient This update was imported from the SUSE:SLE-15-SP2:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fro...
OPENSUSE-SU-2021:0305-1 Security update for php7
This update for php7 fixes the following issues: - CVE-2021-21702 bsc1182049: NULL pointer dereference in SoapClient This update was imported from the SUSE:SLE-15-SP2:Update update project...
SUSE SLED15 / SLES15 Security Update : php7 (SUSE-SU-2021:0494-1)
This update for php7 fixes the following issues : CVE-2021-21702 bsc1182049: NULL pointer dereference in SoapClient Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it...
Amazon Linux AMI : php7-pear (ALAS-2021-1481)
The version of php7-pear installed on the remote host is prior to 1.10.12-5.32. It is, therefore, affected by a vulnerability as referenced in the ALAS-2021-1481 advisory. Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic...
Security update for php7 (important)
openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2021:0305-1 Rating: important References: 1182049 Cross-References: CVE-2021-21702 CVSS scores: CVE-2021-21702 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 An update tha...
SUSE-SU-2021:0494-1 Security update for php7
This update for php7 fixes the following issues: - CVE-2021-21702 bsc1182049: NULL pointer dereference in SoapClient...
Medium: php7-pear
Issue Overview: Tar.php in ArchiveTar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links. cve-2020-36193 Affected Packages: php7-pear Issue Correction: Run yum update php7-pear or yum update --advisory ALAS-2021-1481 to update your system...
Security fix for the ALT Linux 9 package php7 version 7.3.27-alt1
7.3.27-alt1 built Feb. 12, 2021 Anton Farygin in task 266020 Feb. 9, 2021 Anton Farygin - 7.3.27 Fixes: CVE-2021-21702...