Microsoft SQL Server 安全漏洞

Microsoft SQL Server is a large commercial database system from Microsoft that is used on Microsoft Windows systems. A security vulnerability exists in SQL Server. The following products and versions are affected:Microsoft SQL Server 2014 Service Pack 3 for 32-bit Systems CU 4,Microsoft SQL Serve...

fledrCMS Cross-Site Request Forgery Vulnerability

fledrCMS is a lightweight, responsive PHP-based content management system CMS. A cross-site request forgery vulnerability exists in fledrCMS 2014-02-03 and earlier versions. A remote attacker can exploit this vulnerability to change the administrator password with the help of the...

Wonder CMS Path Traversal Vulnerability

Wonder CMS is an open source content management system CMS. A directory traversal vulnerability exists in the index.php file in Wonder CMS version 2014. A remote attacker can exploit this vulnerability to read arbitrary files with the help of a specially crafted theme...

Wonder CMS Cross-Site Scripting Vulnerability

Wonder CMS is an open source content management system CMS. A cross-site scripting vulnerability exists in Wonder CMS version 2014. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

Wonder CMS Information Disclosure Vulnerability (CNVD-2017-03503)

Wonder CMS is an open source content management system CMS. A security vulnerability exists in Wonder CMS version 2014. A remote attacker could exploit the vulnerability by logging into the application using an array as a password to obtain the installation path in an error message...

elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2016-3176 via salt (=2014.1.10)

salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2016-3176 Source advisory: OSV:PYSEC-2017-33...

Microsoft SQL Server 2014 12.0.2254.0 through 12.0.2546.0 Multiple Vulnerabilities (3045324)

Binary data 9828.prm...

Microsoft SQL Server 2014 12.0.x.x < 12.0.2381.0 Multiple Vulnerabilities (2977316)

Binary data 9705.prm...

Microsoft SQL Server Multiple Vulnerabilities (MS14-044)

Microsoft SQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2014-8292 · Openstack · Openstack Neutron

Name of the Vulnerable Software and Affected Versions: OpenStack Neutron versions prior to 2014.1.4 OpenStack Neutron versions 2014.2.x prior to 2014.2.1 Description: The issue allows remote authenticated users to cause a denial of service, resulting in a crash. This can be achieved by providing ...

JVN#36028879: Meridian vulnerable to cross-site scripting

Meridian provided by Nexa Technologies is a software for market trading. Meridian contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version according to the information provided by...

cmseasy 最新版任意权限getshell

简要描述： 这是一个很长的故事，还请客官慢慢看来。（看在我这么晚还在挖洞写文章的份上，求闪电呀！） 版本：2014-06-05 详细说明： 0x01 首先，从一个后台未授权访问开始讲起。 看到文件/lib/admin/admin.php if !defined'ROOT' exit'Can't Access !'; abstract class admin extends act function construct if ADMINDIR!=config::get'admindir' config::modifyarray'admindir'=ADMINDIR;...

AutoCAD vulnerable to arbitrary VBScript execution

Overview AutoCAD provided by Autodesk, Inc. is an application for comuputer-aided design CAD. AutoCAD loads specific FAS files when opening files. AutoCAD contains an issue with the FAS file search path, which may lead to arbitrary VBScript code execution. kaito834 reported this vulnerability to...

JVN#33382534: AutoCAD vulnerable to arbitrary VBScript execution

AutoCAD provided by Autodesk, Inc. is an application for comuputer-aided design CAD. AutoCAD loads specific FAS files when opening files. AutoCAD contains an issue with the FAS file search path, which may lead to arbitrary VBScript code execution. Impact Arbitrary VBScript code may be executed wi...