13538 matches found
HPE IMC Remote Code Execution
A remote code execution vulnerability exists in HPE Intelligent Management Center. Successful exploitation could allow the attacker to execute arbitrary code on the affected system...
Apache ShardingSphere Insecure Deserialization (CVE-2020-1947)
An insecure deserialization vulnerability exists in Apache ShardingSphere incubator. Successful exploitation of this vulnerability could result in arbitrary code execution with the privileges of the application...
WECON LeviStudio MulStatus szFilename Stack Buffer Overflow
A stack buffer overflow exists in WECON LeviStudio. Successful exploitation of this vulnerability could result in execute arbitrary code under context of Administrator...
Nagios Log Server Cross-Site Scripting (CVE-2020-6586)
A stored cross-site scripting vulnerability exists in Nagios Log Server. This vulnerability is due to insufficient validation of user profile information in the user profile page...
Adobe ColdFusion Remote Code Execution (CVE-2019-7838)
A remote code execution vulnerability exists in adobe coldfusion . Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WECON LeviStudio ShortMessage Module SMtext Stack Buffer Overflow
A stack buffer overflow exists in Wecon LeviStudio. A remote attacker could exploit this vulnerability by enticing a user to open a crafted project. Successful exploitation could allow the attacker to execute arbitrary code under the security context of the user process...
Gila CMS Directory Traversal (CVE-2020-5512)
A path traversal vulnerability exists in Gila CMS. This vulnerability is due to improper handling of the path request parameter by media-assets.php...
Centreon formMibs.php Command Injection (CVE-2019-15298)
A command injection vulnerability exists in the Centreon Web Application. Successful exploitation of this vulnerability could result in arbitrary command execution in the context of the server process...
WiKID 2FA Enterprise Server Cross-Site Scripting (CVE-2019-17116)
A cross-site scripting vulnerability exists in WiKID 2FA Enterprise Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microvirt MEmu Command Injection (CVE-2019-14514)
A command Injection vulnerability exists in Microvirt MEmu. Successful exploitation of this vulnerability could result in execution of arbitrary code on the affected system...
Advantech WISE-PaaS/RMM XML External Entity Injection (CVE-2019-18227)
An XML external entity injection vulnerability exists in Advantech WISE-PaaS/RMM. Successful exploitation of this vulnerability could result in the disclosure of file contents from the target system...
Ovirt Engine Reflected Cross Site Scripting (CVE-2016-3113)
A reflected cross site scripting vulnerability exists in Ovirt Engine. Successful exploitation of this vulnerability could allow attackers to execute arbitrary code on the affected system...
CoDeSys V3 CmpRouter and CmpRouterEmbedded Integer Overflow (CVE-2019-5105)
An integer overflow vulnerability exists in CoDeSys V3 CmpRouter and CmpRouterEmbedded components. The vulnerability is due to improper validation of user-supplied data. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted message to the target server. Successf...
Cisco Data Center Network Manager Directory Traversal (CVE-2019-15980)
A directory traversal vulnerability exists in Cisco Data Center Network Manager. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...
Centreon Command Injection (CVE-2020-9463)
A command injection vulnerability exists in the Centreon Web Application. Successful attack may result in arbitrary command execution in the context of the server process...
Microsoft SharePoint Information Disclosure (CVE-2019-1443)
An information disclosure vulnerability exists in Microsoft SharePoint. Successful exploitation of this vulnerability could result in the disclosure of sensitive user information...
PHP exif_read_data Out-Of-Bounds Read (CVE-2020-7064)
An out of bounds read vulnerability exists in PHP. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information from the affected system...
PHP get_headers Information Disclosure (CVE-2020-7066)
An information disclosure vulnerability exists in PHP. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information from the affected system...
ELOG Project Information Disclosure (CVE-2019-3993)
An information disclosure vulnerability exists in ELOG Project. Successful exploitation of this vulnerability could cause the ELOG server to disclose the password hash for a user...
PHP mb_strtolower Stack Buffer Overflow (CVE-2020-7065)
A stack buffer overflow vulnerability exists in PHP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Advantech WISE-PaaS/RMM SQL Injection (CVE-2019-18229)
An SQL injection vulnerability exists in Advantech WISE-PaaS/RMM. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL commands against the database on the target server...
Sangoma Asterisk Command Injection (CVE-2019-18610)
A command injection vulnerability exists in Sangoma Asterisk. Successful exploitation of this vulnerability could result in arbitrary command execution on the affected system...
Microsoft OpenType Font Parsing Remote Code Execution (CVE-2020-0938)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft DirectX Elevation of Privilege (CVE-2020-0888)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0957)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2020-0968)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0956)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2020-0958)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Graphics Component Elevation of Privilege (CVE-2020-1004)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Kernel Elevation of Privilege (CVE-2020-1027)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Font Manager Library Remote Code Execution Vulnerability (CVE-2020-1020)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft DirectX Elevation of Privilege (CVE-2020-0784)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft SharePoint Server Cross Site Scripting (CVE-2019-1070)
A cross-site scripting vulnerability exists in Microsoft SharePoint Server. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
rConfig Network Device Configuration Tool Command Injection (CVE-2019-19509)
A command injection vulnerability exists in rConfig Network Device Configuration Tool. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Apache OFBiz Insecure Deserialization (CVE-2019-0189)
An insecure deserialization vulnerability exists in Apache OFBiz. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Gila CMS Local File Inclusion (CVE-2020-5513)
A local file inclusion vulnerability exists in Gila CMS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Oracle E-Business Suite SQL Injection (CVE-2020-2586; CVE-2020-2587)
An SQL injection vulnerability exists in Oracle E-Business Suite. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements with the privileges of the APPS database user...
Microsoft Windows Media Foundation Memory Corruption (CVE-2020-0738)
A memory corruption vulnerability exists in Microsoft Windows Media Foundation. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows LNK Remote Code Execution (CVE-2020-0729)
A remote code execution vulnerability exists in Microsoft Windows LNK. Successful exploitation of this vulnerability could result in execution of arbitrary code on the affected system...
Chadha PHPKB Remote Code Execution (CVE-2020-10386; CVE-2020-10389)
A remote code execution vulnerability exists in Chadha PHPKB. Successful exploitation of this vulnerability could allow remote attackers to execute arbitrary code on the affected system...
Ayukov NFTPD Buffer Overflow Remote Code Execution (CVE-2017-15222)
A buffer overflow vulnerability exists in Ayukov NFTP FTP Client. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Cisco Data Center Network Manager Command Injection (CVE-2019-15978; CVE-2019-15979)
A command injection vulnerability exists in Cisco Data Center Network Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Cisco Data Center Network Manager Arbitrary File Deletion (CVE-2019-15981)
An arbitrary file deletion vulnerability exists in Cisco Data Center Network Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Microsoft SharePoint Server Stored Cross Site Scripting (CVE-2020-0693)
A stored cross site scripting vulnerability exists in Ovirt Engine. Successful exploitation of this vulnerability could allow attackers to execute arbitrary code on the affected system...
Asus Dsln12e C1 Firmware Command Execution (CVE-2018-15887)
A command execution vulnerability exists in asus dsln12e c1 firmware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Nagios XI Cross-Site Scripting (CVE-2019-20139)
A cross-site scripting vulnerability exists in Nagios XI. Successful exploitation of this vulnerability could allow attackers to execute arbitrary code on the affected system...
Oracle Weblogic Insecure Deserialization (CVE-2020-2555)
An insecure deserialization vulnerability exists in Oracle Weblogic server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Dreambox Opendreambox Command Execution (CVE-2017-14135)
A command execution vulnerability exists in dreambox opendreambox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Microsoft .NET Framework Remote Code Execution (CVE-2020-0646)
A remote code execution vulnerability exists in Microsoft .NET Framework. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Terramaster TOS Cross Site Scripting (CVE-2018-13334; CVE-2018-13335; CVE-2018-13357)
A cross site scripting exists in Terramaster TOS. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...