14 matches found
EUVD-2020-3851
Malware in sbrugna...
CVE-2020-11498
Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tundarwin.go or tunwindows.go. A user can also use Nebula to execute arbitrary code in the user's own context, e.g., for user-level persisten...
Vite allows server.fs.deny to be bypassed with .svg or relative paths
Summary The contents of arbitrary files can be returned to the browser. Impact Only apps explicitly exposing the Vite dev server to the network using --host or server.host config option are affected. Details .svg Requests ending with .svg are loaded at this line...
The vulnerability of Websoft HCM’s automation software for HR processes lies in its ability to bypass a relative path, allowing attackers to perform arbitrary file operations outside of the directory.
The vulnerability of Websoft HCM’s automation software for HR processes involves exploiting a relative path. Exploiting this vulnerability allows an attacker to perform arbitrary file operations outside the directory...
CVE-2023-2270 Local privilege escalation
The Netskope client service running with NT\SYSTEM privileges accepts network connections from localhost to start various services and execute commands. The connection handling function of Netskope client before R100 in this service utilized a relative path to download and unzip configuration fil...
The vulnerability in the J-Web web interface of Juniper Networks’ Junos operating system, which allows a hacker to upload arbitrary files.
The vulnerability of the J-Web web interface of Juniper Networks’ Junos operating system relates to the exploitation of a relative path. Exploiting this vulnerability allows a malicious actor to upload arbitrary files remotely...
Path traversal
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances...
CVE-2020-11498
Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tundarwin.go or tunwindows.go. A user can also use Nebula to execute arbitrary code in the user's own context, e.g., for user-level persisten...
CVE-2020-11498
Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tundarwin.go or tunwindows.go. A user can also use Nebula to execute arbitrary code in the user's own context, e.g., for user-level persisten...
Design/Logic Flaw
Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tundarwin.go or tunwindows.go. A user can also use Nebula to execute arbitrary code in the user's own context, e.g., for user-level persisten...
CVE-2020-11498
CVE-2020-11498 affects Slack Nebula up to version 1.1.0. A relative-path vulnerability in the tunnel drivers tun_darwin.go and tun_windows.go allows a low-privileged attacker to execute code in the context of the root user, with potential user-context execution as well. The issue enables path tra...
Muhammad M. Saggaf Seyon 2.14 b Relative Path Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/780/info Seyon uses relative pathnames to spawn two other programs which it requires. It is possible to exploit this vulnerability to obtain the priviliges which seyon runs with. It is installed by default setgid dialer o...
HDWiki Xss+CSRF GetShell 0day
简要描述: 啊,这个不知道有没有奖金. Xss + CSRF = Getshell 详细说明: 主要两处问题: 一、前台创建词条时插入内容只是editor的js对敏感code做了客户端过滤,传入服务器后服务器端过滤不够严格,构成Xss。 二、后台对文件编辑时没有限制相对路径的使用,文件可以直接使用相对路径编辑在列表里可以看到默认是绝对路径的,并且在编辑文件位置没有进行验证,构成CSRF。 漏洞证明: 具体利用Getshell: 普通用户前台创建词条: 发布,截包修改: 这里插入的是一个写好的JS,编辑install/index.php内容为一句话木马。 内容如下: function aj...
RobTex Viking Server 1.0.7 - Relative Path Webroot Escaping
RobTex Viking Server 1.0.7 - Relative Path Webroot Escaping source: https://www.securityfocus.com/bid/2643/info The Viking Server is a freely available software package maintained and distributed by Robtex. The Viking Server provides multiple protocol service on Windows 95, 98, and NT systems. A...