15 matches found
CVE-2026-40503
OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gateway users with chat access to read arbitrary files by supplying path traversal sequences to the /memory show slash command. Attackers can manipulate the path input parameter to escape the project...
EUVD-2026-23143
OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gateway users with chat access to read arbitrary files by supplying path traversal sequences to the /memory show slash command. Attackers can manipulate the path input parameter to escape the project...
PT-2026-33196
OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gateway users with chat access to read arbitrary files by supplying path traversal sequences to the /memory show slash command. Attackers can manipulate the path input parameter to escape the project...
EUVD-2000-0344
Malware in sbrugna...
CVE-2025-52986 Junos OS and Junos OS Evolved: When RIB sharding is configured each time a show command is executed RPD memory leaks
A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a local, low privileged user to cause an impact to the availability of the device. When RIB sharding is enabled and a user executes one of...
CVE-2024-20324
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, low-privileged, local attacker to access WLAN configuration details including passwords. This vulnerability is due to improper privilege checks. An attacker could exploit this vulnerability by using the show and sho...
CVE-2023-1625 Information leak in api
An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal parameters which are supposed to remain hidden. This has a low impact to the confidentiality, integrity, and availability of the system...
CVE-2023-1625
An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal parameters which are supposed to remain hidden. This has a low impact to the confidentiality, integrity, and availability of the system...
ctf_repo
This is a Python script for a CTF Capture The Flag challenge called "FunPwn". The script is designed to automate the game by interacting with the game's console. Here's a breakdown of the script: 1. The script starts by importing the pwn module, which is a Python library for exploitation. 2. The...
UAC-A-Mola - Tool That Allows Security Researchers To Investigate New UAC Bypasses, In Addition To Detecting And Exploiting Known Bypasses
UAC-A-Mola is a tool that allows security researchers to investigate new UAC bypasses, in addition to detecting and exploiting known bypasses. UAC-A-mola has modules to carry out the protection and mitigation of UAC bypasses. The strong point of uac-a-mola is that it was created so that other...
Cisco IOS Software, IOS XE Software, and IOS XR Software Link Layer Discovery Protocol Subsystem Elevation of Privilege Vulnerability
Cisco IOS Software, IOS XE Software, and IOS XR Software are operating systems developed by Cisco for its network devices.The Link Layer Discovery Protocol LLDP subsystem is one of these link layer discovery protocol subsystems. . A security vulnerability exists in the LLDP subsystem in Cisco IOS...
How to use CLI Route Commands in NetScaler SD-WAN 10.0
NetScaler SD-WAN 10.0 is continuing to build on it's routing capabilities to enable the appliance to act as a router replacement. A number of commands are now available for viewing routing information through the CLI, mainly focused around the 'show' command...
CVE-2004-2253
Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and earlier allows remote attackers to read arbitrary files via a .. in the page parameter of the show command...
CVE-2000-0345
The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command...
CVE-2000-0345
The CVE-2000-0345 entry concerns Cisco routers’ on-line help system options. The vulnerability allows non-privileged users, without enabled access, to obtain sensitive information via the show command. The provided data (NVD) notes partial confidentiality impact with local attack vector and low b...