648 matches found
CVE-2019-16735
A stack-based buffer overflow in processCommandUploadLog in libcommon.so in Petwant PF-103 firmware 4.22.2.42 and Petalk AI 3.2.2.30 allows remote attackers to cause denial of service or run arbitrary code as the root user...
TitanHQ WebTitan has an unspecified vulnerability (CNVD-2019-44523)
TitanHQ WebTitan is a web content filter from TitanHQ Ireland. A security vulnerability exists in TitanHQ WebTitan versions prior to 5.18. An attacker can exploit the vulnerability to execute arbitrary code as root...
Linear eMerge E3 1.00-06 Arbitrary File Upload Remote Root Code Execution
!/usr/bin/env python Linear eMerge E3 Arbitrary File Upload Remote Root Code Execution Affected version: \n" sys.exit ipaddr = sys.argv1 vremetodeneska = datetime.datetime.now print "Starting exploit at "+vremetodeneska.strftime"%d.%m.%Y %H:%M:%S" print while True: try: target =...
IBM DB2 High Performance Unload Elevation of Privilege Vulnerability
IBM DB2, etc. are products of IBM Corporation in the U.S.A. DB2 is a relational database management system.Opera Software Opera, etc. are products of Norway's Opera Software.Opera is a Web browser and IBM DB2 is a relational database management system. An elevation of privilege vulnerability exis...
CVE-2019-4448
IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum and db2hpumdebug binaries are setuid root and have built-in options that allow an low privileged user the ability to load arbitrary db2 libraries from a privileged context. This...
PT-2019-17088 · Ibm · Ibm Db2 High Performance Unload
Name of the Vulnerable Software and Affected Versions: IBM DB2 High Performance Unload load for LUW versions 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 Description: The issue allows a low-privileged user to execute arbitrary code with root authority by loading arbitrary db2...
cPanel Authorization Issues Vulnerability (CNVD-2019-29606)
cPanel is a set of Web-based automated colocation platforms from the American company cPanel. The platform is primarily used to automate the management of websites and servers. The security vulnerability in cPanel versions prior to 68.0.15 stems from the program assigning weak privileges for...
cPanel Input Validation Error Vulnerability (CNVD-2019-33874)
cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An input validation error vulnerability exists in cPanel. An attacker can exploit this vulnerability to execute code in the conte...
CVE-2017-18434
cPanel before 64.0.21 allows code execution in the context of the root account via a SETVHOSTLANGPACKAGE multilang adminbin call SEC-237...
CVE-2017-18390
cPanel before 68.0.15 allows code execution in the context of the root account because of weak permissions on incremental backups SEC-322...
CVE-2019-7269
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution...
CVE-2019-7269
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution...
Command injection
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution...
CVE-2019-7269
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution...
CVE-2019-7274
Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root...
CVE-2019-7276
Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...
CVE-2019-7276
Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...
CVE-2019-7276
Optergy Proton/Enterprise BMS is affected by CVE-2019-7276: unauthenticated remote code execution via a backdoor console. Public details show an undocumented backdoor script (Console.jsp) in the tools directory that enables full root access on vulnerable versions (notably 2.0.3a and earlier). Exp...
Cisco Data Center Network Manager Arbitrary File Upload Vulnerability
Cisco Data Center Network Manager DCNM is a suite of data center network managers from Cisco that provides multiprotocol management of the network and troubleshooting of switch operating conditions and performance. An arbitrary file upload vulnerability exists in the web-based management interfac...
Exploit for Improper Input Validation in Apple Mac_Os_X
CVE-2019-8561 Proof of concept exploit for CVE-2019-8561 disc...