Dell CloudLink 操作系统命令注入漏洞

Dell CloudLink is a data encryption and key management system from Dell USA. A command execution vulnerability exists in Dell CloudLink, which can be exploited by an attacker to gain shell access to the system...

EUVD-2025-36728

On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges...

EUVD-2021-10943

Malware in sbrugna...

EUVD-2025-9626

Malicious code in bioql PyPI...

CVE-2021-24023

An improper input validation in FortiAI v1.4.0 and earlier may allow an authenticated user to gain system shell access via a malicious payload in the "diagnose" command...

PT-2024-13032 · Pax · Pax Android

Name of the Vulnerable Software and Affected Versions: PAX Android based POS devices versions prior to PayDroid 8.1.0 Sagittarius V11.1.61 20240226 Description: The issue allows for escalation of privilege via improperly configured scripts. An attacker must have shell access with system account...

K16383: Linux RPM vulnerability CVE-2013-6435

Security Advisory Description Race condition in RPM 4.11.1 and earlier allows remote attackers to execute arbitrary code via a crafted RPM file whose installation extracts the contents to temporary files before validating the signature, as demonstrated by installing a file in the /etc/cron.d...

[SECURITY] Fedora 35 Update: ipython-7.26.0-3.fc35

IPython provides a replacement for the interactive Python interpreter with extra functionality. Main features: Comprehensive object introspection. Input history, persistent across sessions. Caching of output results during a session with automatically generated references. Readline based name...

[SECURITY] Fedora 34 Update: ipython-7.20.0-2.fc34

IPython provides a replacement for the interactive Python interpreter with extra functionality. Main features: Comprehensive object introspection. Input history, persistent across sessions. Caching of output results during a session with automatically generated references. Readline based name...

Input validation

An improper input validation in FortiAI v1.4.0 and earlier may allow an authenticated user to gain system shell access via a malicious payload in the "diagnose" command...

CVE-2021-24023

FortiAI (Fortinet) systems running v1.4.0 and earlier are affected by an improper input validation in the diagnose command, which may allow an authenticated user to obtain a system shell through a malicious payload. The vulnerability stems from input validation flaws and is listed with high sever...

CVE-2021-24023

An improper input validation in FortiAI v1.4.0 and earlier may allow an authenticated user to gain system shell access via a malicious payload in the "diagnose" command...

CVE-2021-24023

An improper input validation in FortiAI v1.4.0 and earlier may allow an authenticated user to gain system shell access via a malicious payload in the "diagnose" command...

FortiNDR - OS command injection due to improper input sanitization

An improper input validation in FortiNDR v1.4.0 may allow an authenticated user to gain system shell access via a malicious payload in the "diagnose" command...

Zoho ManageEngine ADSelfService Plus Authentication Bypass Vulnerability

ManageEngine ADSelfService Plus is a web-based self-service application that enables end-users to perform tasks such as password reset, account unlock, profile information update, etc. without relying on a help desk. An authentication bypass vulnerability exists in the password reset feature of...

[SECURITY] Fedora 23 Update: ipython-3.2.1-3.fc23

IPython provides a replacement for the interactive Python interpreter with extra functionality. Main features: Comprehensive object introspection. Input history, persistent across sessions. Caching of output results during a session with automatically generated references. Readline based name...

[SECURITY] Fedora 20 Update: ipython-0.13.2-4.fc20

IPython provides a replacement for the interactive Python interpreter with extra functionality. Main features: Comprehensive object introspection. Input history, persistent across sessions. Caching of output results during a session with automatically generated references. Readline based name...

Webshell is how to bypass the Firewall with elevated permissions? - Vulnerability warning-the black bar safety net

This article speaks of the focus is on webshell permissions of the upgrade and bypass the firewall, master do not laugh. Cut the crap, let's get into the chase. First, determine what goal: http://www.sun. com, a common virtual host. Use Upfile vulnerability I believe we get the webshell is not...

MS Windows 2000 Universal Language Utility Manager Exploit (MS04-019)

Exploit for unknown platform in category local exploits ===================================================================== MS Windows 2000 Universal Language Utility Manager Exploit MS04-019 ===================================================================== / COROMPUTER2004 Crpt Utility...

Microsoft Windows Utility Manager - Local Privilege Escalation (MS04-011)

Microsoft Windows Utility Manager - Local Privilege Escalation MS04-011 // By Cesar Cerrudo cesar appsecinc com // Local elevation of priviliges exploit for Windows Utility Manager // Gives you a shell with system privileges // If you have problems try changing Sleep values. include include inclu...