1794 matches found
Exploit for Files or Directories Accessible to External Parties in Dompdf_Project Dompdf
CVE-2022-41343 🐍 Python Exploit for CVE-2022-41343 Staged Rev...
Exploit for OS Command Injection in Control-Webpanel Webpanel
Docs Paper : https://docs.google.com/document/d/1rQ7e9i2AFzHbASf...
Exploit for OS Command Injection in Exiftool_Project Exiftool
CVE-2022-23935 🐍 Python Exploit for CVE-2022-23935 Staged Rev...
Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware
Log4Shell CVE-2021-44228: Brief Description Apache L...
Hackers Exploit Vulnerabilities in Sunlogin to Deploy Sliver C2 Framework
Threat actors are leveraging known flaws in Sunlogin software to deploy the Sliver command-and-control C2 framework for carrying out post-exploitation activities. The findings come from AhnLab Security Emergency response Center ASEC, which discovered that security vulnerabilities in Sunlogin, a...
Remote Code Execution in "Import Settings" feature
Description Due to Improper data validation in "Import Settings" feature, an authenticated attacker can send crafted settings with malicious payload inside "system.croncmdline" value. Step to reproduce Requirement: PHP code must be executed on attacker machine - Step 1: Attacker run web server an...
Exploit for Argument Injection in Atlassian Bitbucket
Atlassian-Bitbucket-Server-CVE-2022-36804 A critical command...
Exploit for Argument Injection in Atlassian Bitbucket
CVE-2022-36804: Pre-Auth RCE in Atlassian Bitbucket Server A c...
Exploit for Incorrect Authorization in Cacti
Exploit For CV...
Exploit for Incorrect Authorization in Cacti
Cacti | Auth Bypass | RCE | CVE-2022-46169 Cacti: Unauthentica...
Exploit for Code Injection in Vmware Spring_Cloud_Function
CVE-2022-22963 Exploit Description In Spring Cloud Funct...
PT-2023-3269 · Western Digital · Western Digital My Cloud Os 5
Name of the Vulnerable Software and Affected Versions: Western Digital My Cloud OS 5 versions prior to 5.26.119 Description: The issue is caused by a command that reads files from a privileged location and creates a system command without sanitizing the read data, leading to an OS Command Injecti...
Exploit for Missing Authentication for Critical Function in F5 Big-Ip_Access_Policy_Manager
CVE-2022-1388 RCE, Reverse Shell, and Auto-Export PCAP --...
4images 1.9 Remote Command Execution Vulnerability
Exploit Title: 4images 1.9 - Remote Command Execution Exploit Author: Andrey Stoykov Software Link: https://www.4homepages.de/download-4images Version: 1.9 Tested on: Ubuntu 20.04 To reproduce do the following: 1. Login as administrator user 2. Browse to "General" - " Edit Templates" - "Select...
4images 1.9 Remote Command Execution
Exploit Title: 4images 1.9 - Remote Command Execution Exploit Author: Andrey Stoykov Software Link: https://www.4homepages.de/download-4images Version: 1.9 Tested on: Ubuntu 20.04 To reproduce do the following: 1. Login as administrator user 2. Browse to "General" - " Edit Templates" - "Select...
CVE-2022-41561
The JNDI Data Sources component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for AWS...
UBUNTU-CVE-2022-41561
The JNDI Data Sources component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for AWS...
CVE-2022-41561
The JNDI Data Sources component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for AWS...
Design/Logic Flaw
The JNDI Data Sources component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for AWS...
TIBCO Software Jaspersoft JasperReports Server 安全漏洞
TIBCO Software Jaspersoft JasperReports Server is a report generation tool from TIBCO Software, USA. The product supports PDF, HTML, XLS, CSV and XML file output formats. A security vulnerability exists in TIBCO Software Jaspersoft JasperReports Server, which stems from its JNDI Data Sources...