10 matches found
PT-2021-11083 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 1.6.0p17 Description: The issue allows local users to obtain SYSTEM privileges via a Trojan horse shell script in the %PROGRAMDATA%checkmkagentlocal directory. Recommendations: For versions prior to 1.6.0p17, update ...
Ukcms File Upload Vulnerability
UKcms is a content management system CMS written in the PHP language. A file upload vulnerability exists in UKcms 1.1.7 and earlier versions. The vulnerability stems from the program not strictly filtering the type of file uploads. An attacker can exploit this vulnerability by changing the...
CVE-2018-14911
A file upload vulnerability exists in ukcms v1.1.7 and earlier. The vulnerability is due to the system not strictly filtering the file upload type. An attacker can exploit the vulnerability to upload a script Trojan to admin.php/admin/configset/index/group/upload.html to gain server control by...
YIXUNCMS v2.0.4.91 has an arbitrary file write vulnerability
YIXUNCMS is a convenient CMS management system developed by Yixun BS Software Studio specializing in website construction for small and medium-sized enterprises. YIXUNCMS v2.0.4.91 suffers from an arbitrary file write vulnerability, which is caused by the system failing to strictly filter...
Code Execution Vulnerability in Ecmos v0.014
Ecmos is a deeply customized system based on ecmall, which is a mall shopping system developed by php+mysql. A code execution vulnerability exists in Ecmos v0.014, when the pendant management for script editing, the system fails to effectively filter the input file content and path parameters. An...
File Renaming Vulnerability in CMS Made Simple v2.2.5
CMS Made Simple is a simple, easy-to-use content management system developed using PHP, MySQL and Smarty template engines. A file renaming vulnerability exists in CMS Made Simple v2.2.5 due to the system failing to effectively filter input parameters. An attacker can exploit this vulnerability to...
File upload vulnerability in BootCMS manage.php page
BootCMS is an open source content management system that runs under PHP + MySQL and is protected by a GPL license. A file upload vulnerability exists in the BootCMS manage.php page. An attacker can exploit the vulnerability to control server privileges by uploading a script Trojan...
CVE-2017-16659
The Gentoo mail-filter/assp package 1.9.8.13030 and earlier allows local users to gain privileges by leveraging access to the assp user account to install a Trojan horse /usr/share/assp/assp.pl script...
Thunder 5 and explosion vulnerability-vulnerability warning-the black bar safety net
According to a reliable tip-off, the thunder 5 and this time how much a word appears serious 0-Day vulnerability, virus authors can exploit the vulnerability to write malicious web pages, when used to browse these pages, you will be infected with the virus, then the virus can theft of user accoun...
Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! [CRITICAL]
Systems Affected : Internet Explorer 6.0.2800 6.x? Remotely exploitable: Yes Author: Marek Bialoglowy System Integra - [email protected] Attached files: dmz2.rar archive password:zones Note: This is part of my research and the purpose of this post is to consult results and potential...