Remote Code Execution (RCE)

mcollective-client is vulnerable to remote code execution. This is due to the use of eval to evaluate comparison expressions in discovery filters, which allows an attacker to execute arbitrary code via the mco ping command...

PrestaShop < 1.6.1.19 - BlowFish ECD Privilege Escalation Exploit

Exploit for php platform in category web applications !/usr/bin/env python3 PrestaShop = 1.6.1.19 Privilege Escalation Charles Fol 2018-07-10 See https://ambionics.io/blog/prestashop-privilege-escalation The condition for this exploit to work is for an employee to have the same password as a...

Vtiger CRM - Authenticated Logo Upload RCE

Vtiger 6.3.0 CRM's administration interface allows for the upload of a company logo. Instead of uploading an image, an attacker may choose to upload a file containing PHP code and run this code by accessing the resulting PHP file. This module was tested against vTiger CRM v6.3.0. This module...

CMS Made Simple Authenticated RCE via File Upload/Copy

CMS Made Simple allows an authenticated administrator to upload a file and rename it to have a .php extension. The file can then be executed by opening the URL of the file in the /uploads/ directory. This module has been successfully tested on CMS Made Simple versions 2.2.5 and 2.2.7. This module...

Nanopool Claymore Dual Miner APIs Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/powershell' class MetasploitModule 'Nanopool Claymore Dual Miner APIs RCE', 'Description' = %q This module takes advantage of miner remote...

Microsoft PowerShell Editor Services RCE Vulnerability

This host is missing a critical security update according to Microsoft advisory CVE-2018-8327. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

#ManageEngine Exchange Reporter Plus Unauthenticated Remote Code Execution Exploit

This Metasploit module exploits a remote code execution vulnerability that exists in Exchange Reporter Plus versions 5310 and below, caused by execution of bcp.exe file inside ADSHACluster servlet This module requires Metasploit: https://metasploit.com/download Current source:...

Manage Engine Exchange Reporter Plus - Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Manage Engine Exchange Reporter Plus Unauthenticated RCE', 'Description' = %q This module exploits a remote code execution vulnerability that...

A WordPress SPAMbot Wants You to Bet on the 2018 FIFA World Cup

Our researchers recently picked up on a spike in SPAM activity directed at sites powered by WordPress, which, naturally, led them to take a closer look. Turns out the attack was launched by a botnet and implemented in the form of comment SPAM - meaningless, generic text generated from a template...

Remote Code Execution (RCE)

qutebrowser is vulnerable to remote code execution RCE through cross-site request forgery CSRF attacks. The vulnerability exists due to a CSRF issue which allows a website with an tag to load the qute://settings/set URL which sets editor.command into a bash script, resulting in RCE attacks...

Manage Engine Exchange Reporter Plus Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Manage Engine Exchange Reporter Plus Unauthenticated RCE', 'Description' = %q This module exploits a remote code execution vulnerability that...

Adobe Illustrator Remote Code Execution Vulnerability (APSB14-11) - Mac OS X

Adobe Illustrator is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Adobe Illustrator 'DLL Hijacking' RCE Vulnerability (APSB10-29) - Windows

Adobe Illustrator is prone to a SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:illustrator"; ifdescription...

Remote Code Execution (RCE)

microsoft.chakracore is vulnerable to remote code execution RCE attacks. The vulnerability exists in IntlEngineInterfaceExtensionObject::EntryIntlFormatDateTime of lib/Runtime/Library/IntlEngineInterfaceExtensionObject.cpp where the ChakraCore scripting engine handles objects insecurely in memory...

KLA12552 RCE vulnerability in Microsoft Device

Remove code execution vulnerability was found in Microsoft Wireless Display Adapter. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2018-8306 CVE list CVE-2018-8306 high Solution Install necessary updates from the KB section, that are listed in...

Apache Struts2 high-risk vulnerabilities cause the Enterprise Server is the invasion mounted KoiMiner mining Trojan-vulnerability warning-the black bar safety net

0×1 Overview Many business websites use the Apache open source project to build a http server, which is most of the use of the Apache sub-project of Struts in. But since the Apache Struts2 Product code there are more risks, beginning in 2007, Struts2 will frequently broke multiple high-risk...

Design/Logic Flaw

A Remote Command Execution RCE vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the execution of arbitrary commands via an unspecified vector. It affects the 1000 and 2000 devices 6.0.x up to Build 446, 6.1.x up to Build 492, and 7.0.x up to Build 485. It...

CVE-2018-11542

A Remote Command Execution RCE vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the execution of arbitrary commands via an unspecified vector. It affects the 1000 and 2000 devices 6.0.x up to Build 446, 6.1.x up to Build 492, and 7.0.x up to Build 485. It...

CVE-2018-11542

CVE-2018-11542 describes a Remote Command Execution vulnerability in the Sonus SBC family web interfaces (SBC 1000/2000 and SBC SWe Lite). The issue allows execution of arbitrary commands via an unspecified vector. Affected are SBC 1000/2000 devices on firmware 6.0.x up to Build 446, 6.1.x up to ...

HID discoveryd - &#039;command_blink_on&#039; Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HID discoveryd commandblinkon Unauthenticated RCE', 'Description' = %q This module exploits an unauthenticated remote command execution...