13538 matches found
Cisco Firepower Management Center Arbitrary File Read (CVE-2016-6435)
A vulnerability exists in Cisco Firepower Management Center. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Libbpg Project Out of Bounds Write (CVE-2016-8710)
A remote code execution vulnerability exists in Libbpg project Libbpg. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Kaspersky Internet Security KLIF driver Denial of service (CVE-2016-4305)
A denial-of-service vulnerability exists in Kaspersky Internet Security. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...
Microsoft Windows Privilege Escalation (CVE-2016-0006)
A privilege escalation vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Adobe Acrobat Data Exfiltration (CVE-2020-29075)
A data exfiltration vulnerability has been reported in Adobe Acrobat. The vulnerability is due to the existence of two JavaScript functions that perform DNS lookups without requiring any specific user action. A remote attacker can exploit this vulnerability by enticing a target user into opening ...
HTTP Authenticated OS Command Injection (CVE-2020-17408; CVE-2020-24916; CVE-2020-25079; CVE-2020-3117; CVE-2020-7049)
A command injection vulnerability exists in web and application servers. Successful exploitation of this vulnerability could result in execution of arbitrary code on the target system...
Web Servers SQL Injection Attempt (CVE-2020-10220; CVE-2020-15533; CVE-2020-23833; CVE-2020-23973; CVE-2020-23976; CVE-2020-23978; CVE-2020-23979)
An SQL Injection vulnerability exists in web servers due to lack of input validation. Successful exploitation of this vulnerability could result in damaging target systems...
Zeroshell Remote Code Execution (CVE-2020-29390)
A remote code execution vulnerability exists in Zeroshell. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Aerospike Community Remote Code Execution (CVE-2020-13151)
A remote code execution vulnerability exists in Aerospike Community. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Information Disclosure (CVE-2016-0175)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Microsoft Windows WebDAV Client Privilege Escalation (CVE-2016-0051)
A privilege escalation vulnerability exists in Microsoft Windows WebDAV Client. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Cisco Collaboration Server Cross-Site Scripting (CVE-2010-0641)
A cross site scripting vulnerability exists in Cisco Collaboration Server. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Sunburst Backdoor Suspicious Traffic
Sunburst Backdoor Trojan is a malicious application that allows remote attackers to gain access to an affected system...
Pandora FMS Cross-Site Scripting (CVE-2020-11749)
A cross-site scripting vulnerability exists in Pandora FMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary commands on the affected system...
SourceCodester Water Billing System SQL Injection (CVE-2020-28183)
An SQL injection vulnerability exists in SourceCodester Water Billing System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Zoho ManageEngine SDP Arbitrary File Upload (CVE-2019-8394)
An arbitrary file upload vulnerability exists in Zoho ManageEngine SDP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Teams Remote Code Execution
A remote code execution vulnerability exists in Microsoft Teams. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Exchange Memory Corruption (CVE-2020-17144)
A memory corruption vulnerability exists in Microsoft Microsoft Exchange. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows SMB Remote Code Execution (CVE-2020-17096)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Dynamics 365 for Finance and Operations Remote Code Execution (CVE-2020-17158)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows SMB Server Information Disclosure (CVE-2020-17140)
An information disclosure vulnerability has been reported in the SMBv2 component of Microsoft Windows SMB server. The vulnerability is due to improper handling of SMB2SETINFO messages. A remote, authenticated attacker can exploit this vulnerability by sending crafted SMBv2 messages to the target...
Microsoft Dynamics 365 Commerce Remote Code Execution (CVE-2020-17152)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft SharePoint Remote Code Execution (CVE-2020-17121)
A remote code execution vulnerability exists in Microsoft SharePoint. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Server Privilege Escalation (CVE-2016-0093)
A privilege escalation vulnerability exists in Microsoft Windows Server. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Apple iOS Remote Code Execution (CVE-2019-8506)
A remote code execution vulnerability exists in Apple iOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Apache Druid Information Disclosure (CVE-2020-1958)
An information disclosure vulnerability exists in Apache Druid. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Sonicwall Secure Remote Access Server Command Injection (CVE-2016-9684)
A command injection vulnerability exists in SonicWall Secure Remote Access server. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
SonicWall Secure Remote Access Server Command Injection (CVE-2016-9682)
A command injection vulnerability exists in SonicWall Secure Remote Access server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Microsoft Windows Uniscribe Memory Corruption (CVE-2010-2738)
A memory corruption vulnerability exists in Microsoft Windows. The vulnerability is due to improper input validation of a table in the TrueType font layout. Remote attacker could trigger this flaw by enticing a user to open a specially crafted TTF file. Successful exploitation could result in a...
PHP-Fusion downloads.php Privilege Escalation (CVE-2020-24949)
A privilege escalation vulnerability exists in PHP-Fusion. The vulnerability is due to insufficient validation of HTTP request parameters in downloads.php...
Microsoft Windows Server Privilege Escalation (CVE-2016-0099)
A privilege escalation vulnerability exists in Microsoft Windows Server. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Git Information Disclosure (CVE-2020-5260)
An information disclosure vulnerability exists in Git. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Trend Micro InterScan Web Security Virtual Appliance Command Injection (CVE-2020-28580; CVE-2020-28581)
A command injection vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Trend Micro InterScan Web Security Virtual Appliance Stack Overflow (CVE-2020-28578; CVE-2020-28579)
A stack overflow vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Microsoft Windows Server Privilege Escalation (CVE-2016-0095)
A privilege escalation vulnerability exists in Microsoft Windows Server. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Microsoft Windows Server Privilege Escalation (CVE-2016-0007)
A privilege escalation vulnerability exists in Microsoft Windows Server. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
Microsoft Windows Server Information Disclosure (CVE-2016-3371)
An information disclosure vulnerability exists in Microsoft Windows Server. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Moxa AWK-3131A Cross-Site Scripting (CVE-2016-8719)
A cross-site scripting vulnerability exists in Moxa AWK-3131A. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
WonderCMS Persistent Cross-Site Scripting
A cross-site scripting vulnerability exists in WonderCMS. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
SourceCodester Online Library Management System Command Injection (CVE-2020-28130)
A command injection vulnerability exists in SourceCodester Online Library Management System. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
SourceCodester Online Clothing Store Command Injection (CVE-2020-28140)
A command injection vulnerability exists in SourceCodester Online Clothing Store. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Gemtek WRTM-127ACN Command Injection (CVE-2020-24365)
A command injection vulnerability exists in Gemtek WRTM-127ACN. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Nagios XI Command Injection (CVE-2020-5791)
A command injection vulnerability exists in Nagios XI. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Ruby On Rails Remote Code Execution (CVE-2020-8165)
A remote code execution vulnerability exists in Ruby On Rails. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
UCMS Project Command Injection (CVE-2020-25483)
A command Injection vulnerability exists in UCMS Project. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
SourceCodester Online Clothing Store SQL Injection (CVE-2020-28138)
An SQL injection vulnerability exists in SourceCodester Online Clothing Store. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
PluXml Remote Code Execution (CVE-2020-18185)
A remote code execution vulnerability exists in PluXml. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Nagios Log Server Persistent Cross-Site Scripting
A persistent cross site scripting vulnerability exists in Nagios Log Server. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
SuiteCRM Remote Code Execution (CVE-2020-28328)
A remote code execution vulnerability exists in SuiteCRM. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Nagios XI mibs.php Command Injection (CVE-2020-5791)
A command injection vulnerability exists in Nagios XI. This vulnerability is due to insufficient validation of the input parameters in the mibs.php...