11232 matches found
CVE-2024-27773
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trusted Source may allow RCE...
CVE-2024-27772
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...
CVE-2024-27771
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...
CVE-2024-27768
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...
CVE-2024-2599 Unrestricted Upload of File with Dangerous Type vulnerability in AMSS++
File upload restriction evasion vulnerability in AMSS++ version 4.31. This vulnerability could allow an authenticated user to potentially obtain RCE through webshell, compromising the entire infrastructure...
CVE-2024-2599 Unrestricted Upload of File with Dangerous Type vulnerability in AMSS++
File upload restriction evasion vulnerability in AMSS++ version 4.31. This vulnerability could allow an authenticated user to potentially obtain RCE through webshell, compromising the entire infrastructure...
CVE-2024-2599
CVE-2024-2599 concerns AMSS++ 4.31 with a file upload restriction evasion vulnerability. Affected component: AMSS++ web upload handling; root cause described as bypassing upload restrictions, enabling an authenticated user to potentially obtain remote code execution via a webshell, compromising t...
CVE-2024-27773 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-348: Use of Less Trusted Source
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trusted Source may allow RCE...
CVE-2024-27773 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-348: Use of Less Trusted Source
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trusted Source may allow RCE...
CVE-2024-27773
CVE-2024-27773 affects Unitronics Unistream Unilogic (Unitronics PLC software). Affects Unilogic versions prior to 1.35.227. Root cause per sources: use of less trusted sources, which may allow remote code execution (RCE). Impact is high (network access, local privileges, unauthenticated/low-priv...
CVE-2024-27772 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-78: 'OS Command Injection'
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...
CVE-2024-27772
CVE-2024-27772 affects Unitronics Unistream Unilogic prior to version 1.35.227. The vulnerability is an OS Command Injection that can lead to Remote Code Execution (RCE). The CVSSv3.1 vector indicates network attack with low complexity and requires low privileges, no user interaction, and results...
CVE-2024-27772 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-78: 'OS Command Injection'
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...
CVE-2024-27771
CVE-2024-27771 affects Unitronics Unistream Unilogic; versions prior to 1.35.227 are vulnerable due to a path traversal flaw (CWE-22) that may allow remote code execution. Impact described as high severity with network access and privileges required low; potential full compromise of affected PLCs...
CVE-2024-27771 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-22: 'Path Traversal'
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...
CVE-2024-27768 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-22: 'Path Traversal'
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...
CVE-2024-27768 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-22: 'Path Traversal'
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...
CVE-2024-27768
CVE-2024-27768 affects Unitronics Unistream Unilogic before version 1.35.227. The issue is a Path Traversal vulnerability that may allow remote code execution (RCE) by accessing files outside the web root. Affected component appears to be the Unilogic software on Unitronics Unistream controllers....
Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool
Fortra has released details of a now-patched critical security flaw impacting its FileCatalyst file transfer solution that could allow unauthenticated attackers to gain remote code execution on susceptible servers. Tracked as CVE-2024-25153, the shortcoming carries a CVSS score of 9.8 out of a...
Gasmark Pro 1.0 Shell Upload
Title: GASMARK PRO-1.0 File Upload RCE Author: nu11secur1ty Date: 03/17/2024 Vendor: https://www.mayurik.com/ Software: https://www.sourcecodester.com/php/15586/gas-agency-management-system-project-php-free-download-source-code.html Reference: https://portswigger.net/web-security/file-upload...