4 matches found
Command Injection
Overview Affected versions of this package are vulnerable to Command Injection via the constructor when the binary path is sourced from user-influenced configuration, environment variables derived from request data, or concatenated with user-controlled fragments. An attacker can execute arbitrary...
PT-2019-1582 · Nginx · Nginx Unit
Name of the Vulnerable Software and Affected Versions: NGINX Unit versions prior to 1.7.1 Description: The issue is caused by a heap-based buffer overflow in the router process, potentially allowing an attacker to cause a denial of service router process crash or possibly have other unspecified...
Wordpress plugin BackWPup Remote and Local Code Execution Vulnerability
No description provided by source. Sense of Security - Security Advisory - SOS-11-003 Release Date. 28-Mar-2011 Last Update. - Vendor Notification Date. 25-Mar-2010 Product. Wordpress Plugin BackWPup Platform. Independent Affected versions. 1.6.1 verified, possibly others Severity Rating. High...
Wordpress plugin BackWPup Remote and Local Code Execution
Exploit for php platform in category web applications Release Date. 28-Mar-2011 Last Update. - Vendor Notification Date. 25-Mar-2010 Product. Wordpress Plugin BackWPup Platform. Independent Affected versions. 1.6.1 verified, possibly others Severity Rating. High Impact. System Access Attack Vecto...