User Registration < 3.0.2.1 - Subscriber+ Arbitrary File Upload Leading to RCE

The plugin does not validate the file types, and uses a hardcoded encryption key during the profile picture upload process. Authenticated users with minimal permissions, such as a subscriber, can thus upload arbitrary files, potentially leading to remote code execution...

CVE-2022-45855 Apache Ambari: Allows authenticated metrics consumers to perform RCE

SpringEL injection in the metrics source in Apache Ambari version 2.7.0 to 2.7.6 allows a malicious authenticated user to execute arbitrary code remotely. Users are recommended to upgrade to 2.7.7...

CVE-2022-45855 Apache Ambari: Allows authenticated metrics consumers to perform RCE

SpringEL injection in the metrics source in Apache Ambari version 2.7.0 to 2.7.6 allows a malicious authenticated user to execute arbitrary code remotely. Users are recommended to upgrade to 2.7.7...

Frappe Framework 13.4.0 Remote Code Execution

Exploit Title: Frappe Framework ERPNext 13.4.0 - Remote Code Execution Authenticated Exploit Author: Sander Ferdinand Date: 2023-06-07 Version: 13.4.0 Vendor Homepage: http://erpnext.org Software Link: https://github.com/frappe/frappe/ Tested on: Ubuntu 22.04 CVE : none Silly sandbox escape. Frap...

Spring Cloud 3.2.2 Remote Command Execution

Exploit Title: Spring Cloud 3.2.2 - Remote Command Execution RCE Date: 07/07/2023 Exploit Author: GatoGamer1155, 0bfxgh0st Vendor Homepage: https://spring.io/projects/spring-cloud-function/ Description: Exploit to execute commands exploiting CVE-2022-22963 Software Link:...

Patch Tuesday - July 2023

Microsoft is addressing 130 vulnerabilities this July Patch Tuesday, including five zero-day vulnerabilities, and eight further critical remote code execution RCE vulnerabilities. Overall, it’s safe to say that this is a busier Patch Tuesday than the past couple of months. Note that the total cou...

CVE-2023-35313

Windows Online Certificate Status Protocol OCSP SnapIn Remote Code Execution Vulnerability...

CVE-2023-33160

Microsoft SharePoint Server Remote Code Execution Vulnerability...

CVE-2023-35302

CVE-2023-35302 corresponds to a Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution vulnerability. The NVD entry specifies a CVSS v3.1 base score of 8.8 (Network attack vector, Low attack complexity, Privileges Required: Low, User Interaction: None, Scope: Unchanged) with hig...

CVE-2023-35344 Windows DNS Server Remote Code Execution Vulnerability

...

CVE-2023-35315

CVE-2023-35315 corresponds to the Windows Layer-2 Bridge Network Driver remote code execution vulnerability. According to the connected AVUL document, an unauthenticated attacker must be on a network segment with a Windows Server acting as a Layer-2 Bridge and send specially crafted file operatio...

CVE-2023-37656

WebsiteGuide v0.2 is vulnerable to Remote Command Execution RCE via image upload...

CVE-2023-37656

WebsiteGuide v0.2 is vulnerable to Remote Command Execution RCE via image upload...

Remote Code Execution (RCE)

orthanc is vulnerable to Remote Code Execution RCE. The vulnerability allows users with authenticated access to overwrite arbitrary files allowing malicious attackers to overwrite the configurations resulting in rce...

CVE-2023-37656

WebsiteGuide v0.2 is vulnerable to Remote Command Execution RCE via image upload...

Frappe Framework (ERPNext) 13.4.0 - Remote Code Execution (Authenticated) Vulnerability

Exploit Title: Frappe Framework ERPNext 13.4.0 - Remote Code Execution Authenticated Exploit Author: Sander Ferdinand Version: 13.4.0 Vendor Homepage: http://erpnext.org Software Link: https://github.com/frappe/frappe/ Tested on: Ubuntu 22.04 CVE : none Silly sandbox escape. Frappe Framework uses...

CVE-2023-37656

CVE-2023-37656 affects WebsiteGuide v0.2. The vulnerability is Remote Command Execution (RCE) via image upload, with a high-severity CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). The Connected documents provide no explicit remediation steps or patched versions. There is no de...

Siemens A8000 CP-8050 / CP-8031 Code Execution / Command Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities including Unauthenticated RCE product: Siemens A8000 CP-8050 MASTER MODULE 6MF2805-0AA00 Siemens A8000 CP-8031 MASTER MODULE 6MF2803-1AA00...

CVE-2023-37659

CVE-2023-37659 affects xalpha v0.11.4. A remote command execution vulnerability arises from insufficient input validation when user-supplied data is evaluated, enabling network-based exploitation with high impact (CVSS v3.1: 9.8, HIGH confidentiality/integrity/availability). Multiple sources (GHS...

Frappe Framework (ERPNext) 13.4.0 - Remote Code Execution (Authenticated)

Exploit Title: Frappe Framework ERPNext 13.4.0 - Remote Code Execution Authenticated Exploit Author: Sander Ferdinand Date: 2023-06-07 Version: 13.4.0 Vendor Homepage: http://erpnext.org Software Link: https://github.com/frappe/frappe/ Tested on: Ubuntu 22.04 CVE : none Silly sandbox escape. Frap...