Lucene search
K

61 matches found

CNNVD
CNNVD
added 2023/09/01 12:0 a.m.6 views

DWSurvey Code Issue Vulnerability

DWSurvey is a questionnaire system written in Java. A security vulnerability exists in DWSurvey v.3.2.0 and earlier versions, which stems from a file upload vulnerability that allows remote attackers to execute arbitrary code via the saveimage and savveFile methods in the action/UploadAction.java...

9.8CVSS7.9AI score0.01061EPSS
Exploits1References2
OSV
OSV
added 2023/09/01 12:0 a.m.20 views

CVE-2023-40980

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file...

9.8CVSS8.1AI score0.01061EPSS
Exploits1References3
Veracode
Veracode
added 2023/03/01 11:32 a.m.17 views

XML External Entity (XXE)

urule is vulnerable to XML External Entities XXE. A remote attacker is able to execute arbitrary code by uploading a crafted XML file to /urule/common/saveFile...

9.8CVSS9.4AI score0.01192EPSS
Exploits1References3Affected Software2
Positive Technologies
Positive Technologies
added 2023/02/24 12:0 a.m.6 views

PT-2023-19465 · Urule · Urule

Name of the Vulnerable Software and Affected Versions: urule version 2.1.7 Description: An XML External Entity XXE issue allows attackers to execute arbitrary code by uploading a crafted XML file to the "/urule/common/saveFile" API endpoint. This is achieved by exploiting the saveFile...

9.8CVSS9.7AI score0.01192EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.4 views

SUSE CVE-2011-1145

The SQLDriverConnect function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the connection string...

7.8CVSS7.4AI score0.0045EPSS
Exploits0References4
CNVD
CNVD
added 2020/02/24 12:0 a.m.2 views

SmartClient File Overwrite Vulnerability

smartclient is an enterprise ajax framework , including very good UI library , tool library and client-server data binding and other features . The console functionality of SmartClient 12.0 suffers from a file overwrite vulnerability in the remote procedure call RPC saveFile provided at the...

7.5CVSS7.1AI score0.01176EPSS
Exploits1References1
NVD
NVD
added 2020/02/23 2:15 a.m.21 views

CVE-2020-9354

An issue was discovered in SmartClient 12.0. The Remote Procedure Call RPC saveFile provided by the console functionality on the /tools/developerConsoleOperations.jsp or /isomorphic/IDACall URL allows an unauthenticated attacker to overwrite files via vectors involving an XML comment and /.. path...

7.5CVSS7.5AI score0.01176EPSS
Exploits1References1
OSV
OSV
added 2020/02/23 2:15 a.m.4 views

CVE-2020-9354

An issue was discovered in SmartClient 12.0. The Remote Procedure Call RPC saveFile provided by the console functionality on the /tools/developerConsoleOperations.jsp or /isomorphic/IDACall URL allows an unauthenticated attacker to overwrite files via vectors involving an XML comment and /.. path...

7.5CVSS7.2AI score0.01176EPSS
Exploits1References1
Prion
Prion
added 2020/02/23 2:15 a.m.18 views

Path traversal

An issue was discovered in SmartClient 12.0. The Remote Procedure Call RPC saveFile provided by the console functionality on the /tools/developerConsoleOperations.jsp or /isomorphic/IDACall URL allows an unauthenticated attacker to overwrite files via vectors involving an XML comment and /.. path...

6.4CVSS7.5AI score0.01176EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/02/23 1:32 a.m.27 views

CVE-2020-9354

An issue was discovered in SmartClient 12.0. The Remote Procedure Call RPC saveFile provided by the console functionality on the /tools/developerConsoleOperations.jsp or /isomorphic/IDACall URL allows an unauthenticated attacker to overwrite files via vectors involving an XML comment and /.. path...

7.5AI score0.01176EPSS
Exploits1References1
CVE
CVE
added 2020/02/23 1:32 a.m.103 views

CVE-2020-9354

SmartClient 12.0 RPC console feature (saveFile) exposes an unauthenticated path-traversal vulnerability in the /tools/developerConsoleOperations.jsp or /isomorphic/IDACall endpoint. An XML comment and /.. traversal can be exploited to overwrite files, as described across multiple sources (e.g., C...

7.5CVSS7.5AI score0.01176EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/11/14 2:15 a.m.2 views

DEBIAN-CVE-2011-1145

The SQLDriverConnect function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the connection string...

7.8CVSS7.8AI score0.0045EPSS
Exploits0References1
Prion
Prion
added 2019/11/14 2:15 a.m.26 views

Buffer overflow

The SQLDriverConnect function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the connection string...

4.6CVSS7.6AI score0.0045EPSS
Exploits0References4Affected Software4
CNVD
CNVD
added 2017/12/18 12:0 a.m.2 views

Telegram Messenger Directory Traversal Vulnerability

Telegram Messenger is a cross-platform instant messaging program whose client is free and open source software, but whose server is proprietary software. A directory traversal vulnerability exists in the saveFile method in MediaController.java in the Telegram Messenger Android application. An...

8.8CVSS7.1AI score0.01741EPSS
Exploits0References1
0day.today
0day.today
added 2017/11/03 12:0 a.m.202 views

tnftp (savefile) Arbitrary Command Execution Exploit

This Metasploit module exploits an arbitrary command execution vulnerability in tnftp's handling of the resolved output filename - called "savefile" in the source - from a requested resource. If tnftp is executed without the -o command-line option, it will resolve the output filename from the las...

7.5CVSS5AI score0.69115EPSS
Exploits8
Packet Storm
Packet Storm
added 2017/11/03 12:0 a.m.54 views

tnftp "savefile" Arbitrary Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'tnftp "savefile" Arbitrary Command Execution', 'Description' = %q This module exploits an arbitrary command execution vulnerability in tnftp's...

7.5CVSS4.8AI score0.69115EPSS
Exploits8
Exploit DB
Exploit DB
added 2017/11/03 12:0 a.m.801 views

tnftp - 'savefile' Arbitrary Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'tnftp "savefile" Arbitrary Command Execution', 'Description' = %q This module exploits an arbitrary command execution vulnerability in tnftp's...

7.5CVSS7.4AI score0.69115EPSS
Exploits8
Metasploit
Metasploit
added 2017/11/01 10:37 p.m.50 views

tnftp "savefile" Arbitrary Command Execution

This module exploits an arbitrary command execution vulnerability in tnftp's handling of the resolved output filename - called "savefile" in the source - from a requested resource. If tnftp is executed without the -o command-line option, it will resolve the output filename from the last component...

7.5CVSS7.2AI score0.69115EPSS
Exploits8
NVD
NVD
added 2014/11/25 3:59 p.m.27 views

CVE-2014-8678

The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile."...

7.8CVSS6.5AI score0.0231EPSS
Exploits0References1
Prion
Prion
added 2014/11/25 3:59 p.m.16 views

Design/Logic Flaw

The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile."...

7.8CVSS7.1AI score0.0231EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder