Lucene search
K

116 matches found

FreeBSD
FreeBSD
added 2023/09/29 12:0 a.m.26 views

Remote Code Execution via web-accessible composer

Composer project reports: Description: Users publishing a composer.phar to a public web-accessible server where the composer.phar can be executed as a php file may be impacted if PHP also has registerargcargv enabled in php.ini. Workaround: Make sure registerargcargv is disabled in php.ini, and...

8.8CVSS7AI score0.0139EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/22 12:0 a.m.5 views

Dataprobe iBoot-PDU 安全漏洞

The Dataprobe iBoot-PDU is a web-accessible managed PDU independently controlled outlet from Dataprobe USA. A security vulnerability exists in Dataprobe iBoot-PDU FW prior to version 1.42.06162022, which stems from the iBoot device's proprietary protocol for control and hold active commands, wher...

8.8CVSS7.9AI score0.00517EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/05/22 12:0 a.m.7 views

Dataprobe iBoot-PDU 安全漏洞

The Dataprobe iBoot-PDU is a web-accessible managed PDU independently controlled outlet from Dataprobe USA. A security vulnerability exists in versions prior to Dataprobe iBoot-PDU FW 1.42.06162022. A security vulnerability exists, which stems from a cloud username and password being stored in...

6.5CVSS6.5AI score0.00174EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.4 views

SUSE CVE-2016-5162

The AllowCrossRendererResourceLoad function in extensions/browser/urlrequestutil.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use an extension's manifest.json webaccessibleresources field for restrictions on IFRAME elements, which...

6.5CVSS8.8AI score0.01389EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.6 views

SUSE CVE-2016-5160

The AllowCrossRendererResourceLoad function in extensions/browser/urlrequestutil.cc in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux does not properly use an extension's manifest.json webaccessibleresources field for restrictions on IFRAME elements, which...

6.5CVSS8.8AI score0.01472EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.23 views

CVE-2022-22761

Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

8.7AI score0.00743EPSS
Exploits0References4
CVE
CVE
added 2022/12/22 12:0 a.m.502 views

CVE-2022-22761

CVE-2022-22761 fixes a vulnerability where the frame-ancestors CSP directive was not enforced for moz-extension:// pages, affecting Firefox < 97, Thunderbird < 91.6, and Firefox ESR

8.8CVSS8.4AI score0.00743EPSS
Exploits0References4Affected Software3
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.36 views

CVE-2022-22761

Web-accessible extension pages pages with a moz-extension:// scheme were not correctly enforcing the frame-ancestors directive when it was used in the Web Extension's Content Security Policy. This vulnerability affects Firefox 97, Thunderbird 91.6, and Firefox ESR 91.6...

8.8CVSS7.6AI score0.00743EPSS
Exploits0
CNNVD
CNNVD
added 2022/09/20 12:0 a.m.5 views

Dataprobe iBoot-PDU 信息泄露漏洞

The Dataprobe iBoot-PDU is a web-accessible managed PDU independently controlled outlet from Dataprobe USA. An information disclosure vulnerability exists in the Dataprobe iBoot-PDU FW, which stems from the possibility that an attacker could gain access to sensitive data of the exposed device...

5.3CVSS6AI score0.00477EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/06/06 12:0 a.m.6 views

The vulnerability of the conf_id parameter in the TrueConf Server software lies in the possibility of bypassing the path in the script /client/upsld/v1. This allows a perpetrator to execute arbitrary code by writing a specially crafted php file into a folder accessible through the web interface.

The vulnerability of the confid parameter in the TrueConf Server software relates to the possibility of bypassing the path in the script /client/upsld/v1. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by writing a specially crafted php file to a folder accessibl...

10CVSS6AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/02/08 12:0 a.m.37 views

Mozilla Firefox < 97.0

The version of Firefox installed on the remote Windows host is prior to 97.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-04 advisory. - Mozilla developers Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firef...

9.6CVSS7.9AI score0.00926EPSS
Exploits2References13
CNVD
CNVD
added 2021/11/10 12:0 a.m.27 views

WordPress Plugin Code Injection Vulnerability (CNVD-2021-101468)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The WordPress plugin is a WordPress open source application plugin. can be renamed to a PHP-terminated extension, allowing an authenticated "translator" user to inject PHP code into a PHP-terminated...

6.5CVSS1.7AI score0.0091EPSS
Exploits2References1
OSV
OSV
added 2021/11/08 6:15 p.m.5 views

CVE-2021-24721

The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject PHP code into files ending with .php in web accessible locations...

6.5CVSS5.8AI score0.0091EPSS
Exploits2References1
NVD
NVD
added 2021/11/08 6:15 p.m.26 views

CVE-2021-24721

The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file, which can be renamed to an extension ending in .php, resulting in authenticated "translator" users being able to inject PHP code into files ending with .php in web accessible locations...

6.5CVSS0.0091EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/11/08 12:0 a.m.3 views

WordPress 代码注入漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language. The WordPress plugin is a WordPress open source application plugin. can be renamed to a PHP-terminated extension, allowing an authenticated "translator" user to inject PHP code into a PHP-terminated...

6.5CVSS5.8AI score0.0091EPSS
Exploits2References2
Metasploit
Metasploit
added 2021/03/08 5:42 p.m.108 views

VMware vCenter Server Unauthenticated OVA File Upload RCE

This module exploits an unauthenticated OVA file upload and path traversal in VMware vCenter Server to write a JSP payload to a web-accessible directory. Fixed versions are 6.5 Update 3n, 6.7 Update 3l, and 7.0 Update 1c. Note that later vulnerable versions of the Linux appliance aren't exploitab...

10CVSS9.8AI score0.9957EPSS
Exploits47
0day.today
0day.today
added 2021/03/08 12:0 a.m.86 views

VMware vCenter Server File Upload / Remote Code Execution Exploit

This Metasploit module exploits an unauthenticated OVA file upload and path traversal in VMware vCenter Server to write a JSP payload to a web-accessible directory. Fixed versions are 6.5 Update 3n, 6.7 Update 3l, and 7.0 Update 1c. Note that later vulnerable versions of the Linux appliance aren'...

9.8CVSS9.9AI score0.9957EPSS
Exploits47
Packet Storm
Packet Storm
added 2021/03/08 12:0 a.m.1120 views

VMware vCenter Server File Upload / Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMware vCenter Server Unauthenticated OVA File Upload RCE', 'Description' = %q This module exploits an unauthenticated OVA file upload and path...

10CVSS0.3AI score0.9957EPSS
Exploits47
OSV
OSV
added 2019/06/24 7:15 p.m.3 views

CVE-2019-12880

BCN Quark Quarking Password Manager 3.1.84 suffers from a clickjacking vulnerability caused by allowing within webaccessibleresources. An attacker can take advantage of this vulnerability and cause significant harm...

4.3CVSS5.8AI score0.0142EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2019/03/01 8:22 p.m.340 views

Adobe Patches Critical ColdFusion Vulnerability With Active Exploit

Adobe has issued an emergency patch for a critical vulnerability in its ColdFusion service that is being exploited in the wild. The vulnerability, CVE-2019-7816, exists in Adobe’s commercial rapid web application development platform, ColdFusion. The ColdFusion vulnerability is a file upload...

10CVSS1.2AI score0.99999EPSS
Exploits48References4
Rows per page
Query Builder