56 matches found
CVE-2022-1287
A vulnerability classified as critical was found in School Club Application System 1.0. This vulnerability affects a request to the file /scas/classes/Users.php?f=saveuser. The manipulation with a POST request leads to privilege escalation. The attack can be initiated remotely and does not requir...
CVE-2021-22961
A code injection vulnerability exists within the firewall software of GlassWire v2.1.167 that could lead to arbitrary code execution from a file in the user path on first execution...
CVE-2021-22961
A code injection vulnerability exists within the firewall software of GlassWire v2.1.167 that could lead to arbitrary code execution from a file in the user path on first execution...
GlassWire 代码注入漏洞
GlassWire is a firewall software. A code injection vulnerability exists in GlassWire version 2.1.167, which arises from arbitrary code execution from a file in a user's path when the program is first executed...
CVE-2020-20586
A cross site request forgery CSRF vulnerability in the /xyhai.php?s=/Auth/editUser URI of XYHCMS V3.6 allows attackers to edit any information of the administrator such as the name, e-mail, and password...
VulnCheck KEV: CVE-2018-2380
SAP Customer Relationship Management CRM contains a path traversal vulnerability that allows an attacker to exploit insufficient validation of path information provided by users...
NETGEAR ProSAFE Network Management System 代码问题漏洞
Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. A code issue vulnerability exists in the NETGEAR ProSAFE Network Management System, which arises from a failure to properly validate a...
Acronis: DLL Hijacking when sending feedback and crash report leading to Privilege Escalation
Vulnerability description not provided...
Acronis: DLL Hijacking when performing operations in Acronis Secure Zone partition leading to Privilege Escalation
Vulnerability description not provided...
CVE-2020-13095
Little Snitch version 4.5.1 and older changed ownership of a directory path controlled by the user. This allowed the user to escalate to root by linking the path to a directory containing code executed by root...
CVE-2020-14149
In uftpd before 2.12, handleCWD in ftpcmd.c mishandled the path provided by the user, causing a NULL pointer dereference and denial of service, as demonstrated by a CWD /.. command...
Linux: Strictly define variable user PATH variable
The requirement aims to prevent system commands from being replaced by malicious commands, ensuring that system commands can be executed securely. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
CVE-2018-5955
An issue was discovered in GitStack through 2.3.10. User controlled input is not sufficiently filtered, allowing an unauthenticated attacker to add a user to the server via the username and password fields to the rest/user/ URI...
systemtap: insufficient security check when loading uprobes kernel module
runtime/staprun/staprunfuncs.c in the systemtap runtime tool staprun in SystemTap before 1.6 does not properly validate modules when a module path is specified by a user for user-space probing, which allows local users in the stapusr group to gain privileges via a crafted module in the search pat...
PDFs on IE8 Can Disclose User Path Info
Using Internet Explorer and a virtual PDF generator to print a PDF file from a HTML page causes the document’s entire storage path, for example file://C:UsersdabDownloadsdocument.pdf, to be stored in the document itself. Read the full article. The H Security...
CVE-2000-0231
The CVE-2000-0231 entry describes a vulnerability in Linux kreatecd where a user-supplied path is trusted to locate the cdrecord program. This allows local users to gain root privileges due to the underlying trust in an attacker-controlled path. Affected component: kreatecd (Linux). Root cause: t...