The vulnerability of the software for centralized device management in Fortinet FortiManager, as well as security event monitoring and analysis tools FortiAnalyzer, arises due to errors in processing the relative path to the directory. This allows a malicious actor to execute arbitrary code.

The vulnerability of the software for centralized device management of Fortinet FortiManager, as well as security event monitoring and analysis tools FortiAnalyzer, is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows a malicious actor to...

The vulnerability of the microprogramming software for UniLogic Studio series UniStream, related to errors in processing the relative path to the directory, allows attackers to bypass security restrictions and execute arbitrary code.

The vulnerability of the microprogramming software for UniLogic Studio series UniStream is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows an attacker to bypass security restrictions and execute arbitrary code...

OPENSUSE-SU-2020:1446-1 Security update for python-Flask-Cors

This update for python-Flask-Cors fixes the following issues: - CVE-2020-25032: fix a relative directory traversal vulnerability bsc1175986. This update was imported from the openSUSE:Leap:15.2:Update update project...

OPENSUSE-SU-2020:1423-1 Security update for python-Flask-Cors

This update for python-Flask-Cors fixes the following issues: - CVE-2020-25032: fix a relative directory traversal vulnerability bsc1175986. This update was imported from the openSUSE:Leap:15.2:Update update project...

SUSE-RU-2020:0603-1 Recommended update for permissions

This update for permissions fixes the following issues: - CVE-2020-8013: Fixed an improper check which could have allowed the setting of unintented setuid bits bsc1163922. - Fixed handling of relative directory symlinks in chkstat. - Whitelisted postgres sticky directories bsc1123886. - Fixed...

Claymore's Dual Miner 10.1 Stack Buffer Overflow

Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-16929 Version: 0.2 Date: Nov 30th, 2017 Tag: claymore dual ethereum decred crypto currency miner Overview Name: Claymore's Dual ETH + DCR/SC/LBC/PASC GPU Miner Vendor: nanopool/claymore References:...

McAfee Asset Manager 6.6 - Multiple Vulnerabilities

No description provided by source. Cloud SSO is vuln to unauthed XSS in the authentication audit form: https://twitter.com/BrandonPrry/status/445969380656943104 McAfee Asset Manager v6.6 multiple vulnerabilities http://www.mcafee.com/us/products/asset-manager.aspx Authenticated arbitrary file rea...

conn. asp storm library law principles and applications-vulnerability warning-the black bar safety net

Today learn conn. asp storm database,this method is a very old method,it is through direct access to the database connection file conn. asp enables the server to produce the error,by returning the error information to storm out of the database the absolute path,here in conn. asp is the database...