38 matches found
NetAlertX File Read Vulnerability
This module exploits improper authentication in logs.php endpoint. An unathenticated attacker can request log file and read any file due path traversal vulnerability. Module Options msf use auxiliary/scanner/http/netalertxfileread msf auxiliarynetalertxfileread show actions ...actions... msf...
PT-2025-7491 · Grub2 +3 · Grub2 +3
Name of the Vulnerable Software and Affected Versions: Grub2 affected versions not specified Description: A flaw was found in Grub2, where the dump command is not blocked when Grub is in lockdown mode. This allows a user to read any memory information, and an attacker may leverage this to extract...
PT-2025-31750
Name of the Vulnerable Software and Affected Versions nvidia-graphics-drivers nvidia-graphics-drivers-legacy-390xx nvidia-graphics-drivers-tesla-418 nvidia-graphics-drivers-tesla-470 nvidia-graphics-drivers-tesla-535 nvidia-open-gpu-kernel-modules Description The NVIDIA GPU Display Driver for...
PT-2025-16250 · Libsoup +9 · Libsoup +9
Name of the Vulnerable Software and Affected Versions: libsoup affected versions not specified Description: A flaw was found in libsoup, where the soup multipart new from message function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server...
CVE-2024-8497
CVE-2024-8497 affects Franklin Fueling Systems TS-550 EVO prior to version 2.26.4.8967. The flaw is an absolute path traversal that allows reading a file containing administrator credentials, enabling an attacker to obtain admin access to the device. The vulnerability is exploitable remotely with...
Emissary Information Disclosure Vulnerability
Emissary is a software application. A P2P-based data-driven workflow engine that runs across heterogeneous and potentially widely distributed multi-tier P2P network computing resources. An information disclosure vulnerability exists in Emissary version 5.9.0, which can be exploited by an attacker...
Cisco StarOS Arbitrary File Read Vulnerability
Cisco StarOS is a router operating system that controls the entire system logic and can control processes and CLIs. An arbitrary file read vulnerability exists in Secure FTP SFTP in Cisco StarOS versions prior to 21.19.7 used in Cisco ASR 5000 series routers, which can be exploited by an attacker...
Exploit for CVE-2020-1938
It is an exploit module for CNVD-2020-10487 CVE-2020-1938, a file read vulnerability in Tomcat AJP. The vulnerability allows an attacker to read files on the server by sending a specially crafted AJP request. The exploit is implemented in Python 2.7 and uses the ajpy library to interact with the...
Exploit for CVE-2020-1938
CVE-2020-1938 Tomcat-fileinclude and filered Exploita...
Rockwell Automation Micrologix 1400 <= 21.2 Encoded Ladder Logic Read Exploit
Binary data 720226.prm...
Exploit for Path Traversal in Mikrotik Routeros
WinboxExploit This is a proof of concept of the critical WinBo...
libmsm memory corruption
A memory read exploit that uses a vulnerability in the camera driver...
Linux Kernel (<= 2.4.27 , 2.6.8) binfmt_elf Executable File Read Exploit
No description provided by source. / binfmtelf executable file read vulnerability gcc -O3 -fomit-frame-pointer elfdump.c -o elfdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED AS IS AND WITHOUT ANY WARRANTY. COPYING,...
Linux Kernel (<= 2.4.27 , 2.6.8) binfmt_elf Executable File Read Exploit
No description provided by source. / binfmtelf executable file read vulnerability gcc -O3 -fomit-frame-pointer elfdump.c -o elfdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...
reading from execve()ed setuid memory
Posted to bugzilla.redhat.com: Tue, 15 May 2001 06:43:27 -0400 This was then made unaccessable, and I've seen nothing that looks like a fix yet. A month and a half seems like long enough to work it out. Contents of https://bugzilla.redhat.com/bugzilla/showbug.cgi?id=40658 as posted before the pag...
WebSPIRS webspirs.cgi Traversal Arbitrary File Access
The remote host is running WebSPIRS, SilverPlatter's Information Retrieval System for the web. The installed version of WebSPIRS has a well-known security flaw that lets an attacker read arbitrary files with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 This script...
CVE-1999-0739
The codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files...
IBM AIX 4.2.1 - lquerypv File Read
IBM AIX 4.2.1 - lquerypv File Read source: https://www.securityfocus.com/bid/455/info There exists a vulnerability in the lquerypv command under AIX. By using the '-h' flaq, a user may read any file on the file system in hex format. /usr/sbin/lquerypv -h /pathtofilename...