Apache Traffic Server Input Validation Error Vulnerability

Apache Traffic Server or ATS or TS for short , is a high-performance , modular HTTP proxy and caching server . An improper input validation vulnerability exists in HTTP/2 in Apache Traffic Server versions 7.0.0 - 7.1.12, 8.0.0 - 8.1.1, 9.0.0 - 9.0.1. An attacker could exploit this vulnerability t...

Hackers dropping DearCry ransomware using Exchange Server exploit

By Waqas Currently, there are over 80,000 servers exposed to DearCry ransomware - Microsoft has urged customers to install patches issued last week. This is a post from HackRead.com Read the original post: Hackers dropping DearCry ransomware using Exchange Server exploit...

Exploit for Server-Side Request Forgery in Microsoft

CVE-2021-26855 CVE-2021-26855, also known as Proxylogon, is a...

Microsoft Exchange Server 安全漏洞

Microsoft Exchange Server is a mail server and calendar server developed by Microsoft. A remote code execution vulnerability exists in Microsoft Exchange Server. An attacker could exploit this vulnerability to achieve remote code execution...

CVE-2020-15799

A vulnerability has been identified in SCALANCE X-200 switch family incl. SIPLUS NET variants All versions V5.2.5, SCALANCE X-200IRT switch family incl. SIPLUS NET variants All versions V5.5.0. The vulnerability could allow an unauthenticated attacker to reboot the device over the network by usin...

Command Execution Vulnerability in Tongda CMS Clothing Company Website System

Tongda CMS clothing company website system is developed by PHP+MYSQL. Support pseudo-static function, can generate google and baidu map, support custom url, keywords and description, in line with SEO standards. Command execution vulnerability exists in Tundra CMS Garment Company website system,...

CVE-2020-12062

The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to the server upon a utimes system call failure, which allows a malicious unprivileged user on the remote server to overwrite arbitrary files in the client's download directory by creating a crafted subdirectory anywhere on the...

CVE-2020-11047

In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetectrecvbandwidthmeasureresults. A malicious server can extract up to 8 bytes of client memory with a manipulated message by providing a short input and reading the measurement result data. This has been patched in 2.0...

MTN Group: Disclosure of internal information using hidden NTLM authentication leading to an exploit server

By using a request get on the url http://www.mtncongo.net/fr/Pages/ of the blog. we collect sensitive information from blogs step Typically, when visiting a website http://www.mtncongo.net/ or directory http://www.mtncongo.net/fr/Pages/ requiring privileged access, the server will initiate a logi...

CVE-2020-11811

In qdPM 9.1, an attacker can upload a malicious .php file to the server by exploiting the Add Profile Photo capability with a crafted content-type value. After that, the attacker can execute an arbitrary command on the server using this malicious file...

IBM Bigfix Platform 9.5.9.62 Arbitary File Upload / Code Execution

Exploit Title: IBM Bigfix Platform 9.5.9.62 - Arbitrary File Upload Date: 2018-12-11 Exploit Authors: Jakub Palaczynski Vendor Homepage: https://www.ibm.com/ Version: IBM Bigfix Platform Software Add Software" menu. Here user needs to choose upload via URL option as only this one is vulnerable. U...

TeamSpeak Systems TeamSpeak Client Input Validation Error Vulnerability

TeamSpeak Systems TeamSpeak Client is a client application from TeamSpeak Systems, Germany, specifically designed as a voice over IP communication system for online gamers. TeamSpeak Systems TeamSpeak Client suffers from an input validation error vulnerability. An attacker could exploit this...

CVE-2019-15717

Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP...

CyberPanel 1.8.4 - Cross-Site Request Forgery

Title: CyberPanel Administrator Account Takeover fetch'https://SERVERIP:8090/users/saveModifications', method: 'POST', credentials: 'include', headers: 'Content-Type': 'text/plain', body:...

ATutor file_manager Remote Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ATutor %q This module allows the user to run commands on the server with teacher user privilege. The 'Upload files' section in the 'File Manager'...

LocalServer 1.0.9 - Denial of Service Exploit

Exploit for windows platform in category dos / poc Exploit Title: Local Server 1.0.9 - Denial of Service PoC Exploit Author: Ihsan Sencan Vendor Homepage: http://www.ujang-rohidin.blogspot.com/ Software Link: https://sourceforge.net/projects/local-server/files/latest/download Version: 1.0.9...

Logicspice FAQ Script 2.9.7 - Remote Code Execution

Logicspice FAQ Script 2.9.7 - Remote Code Execution Exploit Title: Logicspice FAQ Script 2.9.7 - Remote Code Execution Dork: N/A Date: 2018-09-03 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor Homepage: https://www.logicspice.com/products/faq-script Software Link:...

CVE-2017-17200

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability due to the improper processing of malformed H323...

CVE-2018-1000028

Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server nfsd that can result in remote users reading or writing files they should not be able to via NFS. This attack appear to be exploitable via NFS...

MGASA-2017-0483 Updated openssh packages fix security vulnerability

The processopen function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files CVE-2017-15906...