Command Execution Vulnerability in H3C SecPath Operations Audit System

Xinhua San Technology Co., Ltd. is a new IT solution provider, committed to become the most trusted partner for customers' business innovation and digital transformation. The main products are routers, big data, switches, IoT, cloud computing, servers and so on. A command execution vulnerability...

Synology DiskStation Manager Path Traversal Vulnerability

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A path traversal vulnerability exists in Synology DiskStation Manager version...

CAJViewer has a binary vulnerability (CNVD-2021-41045)

CAJviewer is a specialized full-text format reader for China Journal Network CJN, which supports TEB, NH, CAJ, KDH and PDF files of CJN. A binary vulnerability exists in CAJViewer, which can be exploited by attackers to execute malicious code on a user's system...

IBM Cognos Analytics Information Disclosure Vulnerability (CNVD-2021-38674)

IBM Cognos Analytics is a suite of business intelligence software from IBM in the United States. The software includes reports, dashboards, and scorecards, and can assist companies in adjusting their decisions by analyzing such things as key factors and key people. An information disclosure...

QEMU Null Pointer Dereference Vulnerability (CNVD-2021-41094)

QEMU Quick Emulator is a set of simulation processor software by French software developer Fabrice Bellard. The software is fast, cross-platform and other characteristics. A null pointer dereference vulnerability exists in am53c974 SCSI host bus adapter emulation in versions of QEMU prior to 6.0....

SQL Injection Vulnerability in Ricochet Cloud Group Code Management System

RikerCloud live code management system is an open source, free, live code system that can be operated online to improve efficiency, get more resources and so on. A SQL injection vulnerability exists in the Ricochet Cloud Live Code Management System. An attacker can exploit this vulnerability to...

Checkbox Survey Code Issue Vulnerability

Checkbox Survey is an ASP.NET application from Checkbox Survey. A code issue vulnerability exists in Untrusted Data in CheckboxWeb.dll in versions prior to Checkbox Survey 7. The vulnerability allows an unauthenticated, remote attacker to execute arbitrary code...

CVE-2021-30465

runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition...

Arbitrary File Read Vulnerability in PublicCMS

Public CMS is the use of 2020 mainstream technology development of open-source JAVA CMS products , support for full-site static , SSI, dynamic pages partially static , multi-site , auto-installation and other features of the content management system . PublicCMS has an arbitrary file read...

Plone cross-site scripting vulnerability (CNVD-2021-37195)

Plone is an open source content management system CMS built on the Zope application server. A cross-site scripting vulnerability exists in Plone versions prior to 5.2.4. The vulnerability can be exploited to cause cross-site scripting with the help of "fullname"...

Denial of Service Vulnerability in OP20 Series Screen Setup Tool

OP20 is a screen editing software developed by Wuxi Xinjie Electric Co. A denial-of-service vulnerability exists in the OP20 Series Screen Setting Tool, which can be exploited by attackers to cause a denial of service...

WordPress WP Statistics 13.0.7 SQL Injection

Exploit Title: WordPress Plugin WP Statistics 13.0.7 - Time-Based Blind SQL Injection Unauthenticated Date: 20/05/2021 Exploit Author: Mansoor R @time4ster CVSS Score: 7.5 High CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Version Affected: 13.0 to 13.0.7 Vendor URL:...

Weak Password Vulnerability in Riptide Networks MCP Marketing Cloud Platform

MCP Cloud Marketing Platform is a wireless advertisement push platform system developed by Ruijie Networks for commercial places such as trade chains, hotels, shopping centers, wireless cities, transportation stations, tourist attractions and other commercial places with advertisement marketing...

SQL Injection Vulnerability in SEMCMS SCSHOP (CNVD-2021-38037)

SCSHOP is a self-developed open source online store btc system. SEMCMS SCSHOP suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

Google TensorFlow Integer Overflow Vulnerability

Google TensorFlow is an end-to-end open source machine learning platform. An integer overflow vulnerability exists in the code used to allocate TFLiteIntArray in Google TensorFlow. An attacker can exploit the vulnerability via a specially crafted model to cause dereferencing of invalid pointers...

Memory Corruption Vulnerability in NTS-340 Post-Processing Software of Guangzhou Nanfang Surveying and Mapping Technology Co.

Guangzhou South Surveying and Mapping Technology Co., Ltd. is a surveying and mapping geographic information industry group integrating R&D, manufacturing, sales and technical services. A memory corruption vulnerability exists in the NTS-340 post-processing software of Guangzhou Southern Surveyin...

Arbitrary File Read Vulnerability in Education Cloud Portal of Tianwen Digital Media Technology (Beijing) Co.

Tianwen Digital Media Technology Beijing Co., Ltd. is a subsidiary of Zhongnan Media, a state-controlled national high-tech enterprise and Zhongguancun high-tech enterprise. There is an arbitrary file read vulnerability in Tianwen Digital Media Technology Beijing Co., Ltd.'s Education Cloud Porta...

Foxit Reader Information Disclosure Vulnerability (CNVD-2021-36656)

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

Cisco SD-WAN vEdge Buffer Overflow Vulnerability (CNVD-2021-37680)

Cisco SD-WAN vEdge is a router from Cisco. The device provides basic WAN, security, and multi-cloud capabilities for Cisco SD-WAN solutions. A buffer overflow vulnerability exists in the forwarding error correction of the Cisco SD-WAN vEdge, which can be exploited by an attacker to cause the...

GitLab Community Edition (CE) 13.10.3 - User Enumeration Exploit

Exploit Title: GitLab Community Edition CE 13.10.3 - User Enumeration Exploit Author: @4D0niiS https://github.com/4D0niiS Vendor Homepage: https://gitlab.com/ Version: 13.10.3 Tested on: Kali Linux 2021.1 !/bin/bash Colors RED='\03338;5;196m' GREEN='\e38;5;47m' NC='\0330m' BOLD='\e1m'...