Lucene search
K

4 matches found

Prion
Prion
added 2022/05/17 9:15 p.m.15 views

Command injection

The affected On-Premise cnMaestro allows an unauthenticated attacker to access the cnMaestro server and execute arbitrary code in the privileges of the web server. This lack of validation could allow an attacker to append arbitrary data to the logger command...

7.5CVSS9.7AI score0.01583EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2022/03/24 3:15 p.m.24 views

CVE-2022-0551

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian...

8.6CVSS0.00868EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/05/25 12:0 a.m.27 views

Coppermine Photo Gallery GLOBALS[USER[lang] Parameter Local File Inclusion

The version of Coppermine Photo Gallery installed on the remote host fails to filter user-supplied input to the 'GLOBALSUSERlang' parameter of the 'index.php' script before using it to include PHP code in 'includes/init.inc.php'. Provided PHP's 'registerglobals' setting is enabled, an...

6.3AI score
Exploits0References1
exploitpack
exploitpack
added 2000/12/20 12:0 a.m.16 views

Brian Stanback bslist.cgi 1.0 - Remote Command Execution

Brian Stanback bslist.cgi 1.0 - Remote Command Execution source: https://www.securityfocus.com/bid/2160/info An input validation vulnerability exists in Brian Stanback's bslist.cgi, a script designed to coordinate mailing lists. The script fails to properly filter ';' characters from the...

0.5AI score
Exploits0
Rows per page
Query Builder