5 matches found
Virtuozzo Automator 7.0 Update 2 Hotfix 16 (VA MN 7.0.2-718, VA Agent 7.0.2-430)
The Hotfix 16 for Virtuozzo Automator 7.0.2 provides new features and stability and usability fixes. Vulnerability id: PVA-37810 Fixed an issue when a scheduled backup task created additional unwanted backups. Vulnerability id: PVA-37803 Fixed an issue when, in some cases, a scheduled task was...
Database Backup for WordPress < 2.5.1 - Admin+ SQL Injection
The plugin does not properly sanitise and escape the fragment parameter before using it in a SQL statement in the admin dashboard, leading to a SQL injection issue https://example.com/wp-admin/?fragment=select%20updatexml1,concat0x7e,select%20user,0::2.txt&wpnonce=7347278aca The nonce can be...
Vesta Control Panel 0.9.8-26 - Authenticated Remote Code Execution (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Vesta Control Panel Authenticated Remote Code Execution", 'Description' = %q This module exploits command injection vulnerability in...
Product update: Virtuozzo Automator 7.0 Update 2 Hotfix 5 (VA MN: 7.0.2-597, VA Agent: 7.0.2-320)
This hotfix for Virtuozzo Automator 7.0.2 provides a new feature as well as stability and usability bug fixes. Vulnerability id: PVA-35645 Systemd reported the 'va-agent/va-mn' service as started before it had been initialized. Vulnerability id: PVA-37260 Scheduled backup of a large VM could fail...
Update Rollup 8 for System Center 2012 Data Protection Manager SP1
Update Rollup 8 for System Center 2012 Data Protection Manager SP1 This article describes the issues that are fixed in Update Rollup 8 for Microsoft System Center 2012 Data Protection Manager DPM Service Pack 1 SP1. Additionally, this article contains the installation instructions for Update Roll...