Remote Code Execution (RCE)

org.glassfish.main.orb: orb-connector is vulnerable to Remote Code Execution RCE. An attacker could exploit this vulnerability by sending a specially crafted RMI request to a vulnerable Glassfish server via access to insecure ORB listeners. The server would then execute the code contained in the...

Exploit for Unrestricted Upload of File with Dangerous Type in Royal-Elementor-Addons Royal_Elementor_Addons

CVE-2023-5360 An Open-source EXPLOIT for The Royal Elementor...

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604-RCE-Reverse-Shell-Apache-ActiveMQ This exploit...

Metasploit Weekly Wrap-Up

PTT for DCSync This week, community member smashery made an improvement to the windowssecretsdump module to enable it to dump domain hashes using the DCSync method after having authenticated with a Kerberos ticket. Now, if a user has a valid Kerberos ticket for a privileged account, they can run...

Prototype Pollution(PP) vulnerability in setByPath

Summary There is a Prototype PollutionPP vulnerability in dot-diver. It can leads to RCE. Details javascript //https://github.com/clickbar/dot-diver/tree/main/src/index.ts:277 // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access objectToSetlastKey = value In this code, there is ...

GHSA-9W5F-MW3P-PJ47 Prototype Pollution(PP) vulnerability in setByPath

Summary There is a Prototype PollutionPP vulnerability in dot-diver. It can leads to RCE. Details javascript //https://github.com/clickbar/dot-diver/tree/main/src/index.ts:277 // eslint-disable-next-line @typescript-eslint/no-unsafe-member-access objectToSetlastKey = value In this code, there is ...

CVE-2023-46404

PCRS = 3.11 d0de1e “Questions” page and “Code editor” page are vulnerable to remote code execution RCE by escaping Python sandboxing...

CVE-2023-36022

CVE-2023-36022 : Microsoft Edge (Chromium-based) contains a remote code execution vulnerability. Reported as CVSSv3.1: Local attack, User interaction required, with Confidentiality Impact High, Integrity/Availability Low. No exploit details in provided docs. Remediation: apply the vendor update (...

CVE-2023-46404

PCRS (PHP-based web app for online programming exercises) versions prior to 3.11 (d0de1e) are vulnerable to remote code execution via the "Questions" page and the "Code editor" page. The root cause is escaping Python sandboxing, enabling attacker-controlled code execution. Public advisories consi...

CVE-2023-46404

PCRS = 3.11 d0de1e “Questions” page and “Code editor” page are vulnerable to remote code execution RCE by escaping Python sandboxing...

F5 BIG-IP TMUI AJP Smuggling RCE

This module exploits a flaw in F5's BIG-IP Traffic Management User Interface TMUI that enables an external, unauthenticated attacker to create an administrative user. Once the user is created, the module uses the new account to execute a command payload. Both the exploit and check methods...

Update ActiveMQ to fix CVE-2023-46604

h3. Issue Summary Bamboo relies on ActiveMQ libraries version /atlassian-bamboo/WEB-INF/lib: noformat $ ls -al /opt/atlassian/bamboo/atlassian-bamboo/WEB-INF/lib ls | grep activemq- activemq-broker-5.18.2.jar activemq-client-5.18.2.jar activemq-http-5.18.2.jar activemq-jms-pool-5.18.2.jar...

HelloKitty Ransomware Group Exploiting Apache ActiveMQ Vulnerability

Cybersecurity researchers are warning of suspected exploitation of a recently disclosed critical security flaw in the Apache ActiveMQ open-source message broker service that could result in remote code execution. "In both instances, the adversary attempted to deploy ransomware binaries on target...

PT-2023-30107 · Undefined · Undefined

Более 3000 доступных в Интернете серверов Apache ActiveMQ уязвимы к недавно обнаруженной критической RCE-уязвимости. Apache ActiveMQ — это масштабируемый брокер сообщений с открытым исходным кодом, поддерживает Java и различные межъязыковые клиенты, а также множество протоколов, включая AMQP, MQT...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Axis vulnerability (USN-6470-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has a package installed that is affected by a vulnerability as referenced in the USN-6470-1 advisory. It was discovered that Axis incorrectly handled certain inputs. If a user or an automated system were tricked...

CVE-2023-5766

A remote code execution vulnerability in Remote Desktop Manager 2023.2.33 and earlier on Windows allows an attacker to remotely execute code from another windows user session on the same host via a specially crafted TCP packet...

CVE-2023-5766

CVE-2023-5766 affects Devolutions Remote Desktop Manager, with vulnerable versions 2023.2.33 and earlier on Windows. The issue allows remote code execution from another Windows user session on the same host via a specially crafted TCP packet. This is a network-based vulnerability, with the descri...

CVE-2023-5766

A remote code execution vulnerability in Remote Desktop Manager 2023.2.33 and earlier on Windows allows an attacker to remotely execute code from another windows user session on the same host via a specially crafted TCP packet...

CVE-2023-40062

SolarWinds Platform Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability. If executed, this vulnerability would allow a low-privileged user to execute commands with SYSTEM privileges...

CVE-2023-33227

Summary (CVE-2023-33227): The Network Configuration Manager (SolarWinds) is affected by a Directory Traversal Remote Code Execution vulnerability. A low-level user can execute actions with SYSTEM privileges. Multiple connected sources (NVD/Red Hat/Nessus/NCSC) confirm the issue and note that reme...