Lucene search
K

4305 matches found

Saint
Saint
•added 2023/06/23 12:0 a.m.•837 views

SPIP password reset serialization vulnerability

Added: 06/23/2023 Background SPIP is a web-based publishing system written in PHP. Problem Mishandling of serialized data in SPIP's password reset form allows remote attackers to execute arbitrary commands. Resolution Upgrade to SPIP 3.2.18, 4.0.10, 4.1.8, 4.2.1 or higher. References...

9.8CVSS9.9AI score0.99637EPSS
Exploits23
Saint
Saint
•added 2023/05/12 12:0 a.m.•189 views

PaperCut authentication bypass

Added: 05/12/2023 Background PaperCut is print management software. It includes a web interface written in Java. Problem An authentication bypass vulnerability in the SetupCompleted class allows a remote, unauthenticated attacker to execute arbitrary code in the context of SYSTEM. Resolution...

9.8CVSS10AI score0.99999EPSS
Exploits24
Saint
Saint
•added 2023/05/12 12:0 a.m.•210 views

PaperCut authentication bypass

Added: 05/12/2023 Background PaperCut is print management software. It includes a web interface written in Java. Problem An authentication bypass vulnerability in the SetupCompleted class allows a remote, unauthenticated attacker to execute arbitrary code in the context of SYSTEM. Resolution...

9.8CVSS10AI score0.99999EPSS
Exploits24
Saint
Saint
•added 2023/04/13 12:0 a.m.•231 views

IBM Aspera Faspex YAML deserialization

Added: 04/13/2023 Background IBM Aspera Faspex is a centralized, high-speed transfer solution using the FASP protocol. Problem A YAML deserialization vulnerability allows remote attackers to execute arbitrary commands by sending a POST request for relaypackage with specially crafted JSON content...

8.4AI score
Exploits0
Saint
Saint
•added 2023/04/13 12:0 a.m.•244 views

IBM Aspera Faspex YAML deserialization

Added: 04/13/2023 Background IBM Aspera Faspex is a centralized, high-speed transfer solution using the FASP protocol. Problem A YAML deserialization vulnerability allows remote attackers to execute arbitrary commands by sending a POST request for relaypackage with specially crafted JSON content...

8.4AI score
Exploits0
Saint
Saint
•added 2023/03/22 12:0 a.m.•99 views

SugarCRM EmailTemplates PNG file upload

Added: 03/22/2023 Background SugarCRM is customer relationship management software written in PHP. Problem A vulnerability in the EmailTemplates module allows remote, unauthenticated attackers to execute arbitrary commands on the server by uploading a PNG image file containing embedded PHP code...

8.3AI score
Exploits0
Saint
Saint
•added 2023/03/22 12:0 a.m.•115 views

SugarCRM EmailTemplates PNG file upload

Added: 03/22/2023 Background SugarCRM is customer relationship management software written in PHP. Problem A vulnerability in the EmailTemplates module allows remote, unauthenticated attackers to execute arbitrary commands on the server by uploading a PNG image file containing embedded PHP code...

8.3AI score
Exploits0
Saint
Saint
•added 2023/02/24 12:0 a.m.•137 views

FortiNAC keyUpload.jsp command execution

Added: 02/24/2023 Background FortiNAC is a network access control solution. Problem A vulnerability in the keyUpload.jsp resource allows remote attackers to write arbitrary files by uploading a specially crafted zip file, leading to command execution. Resolution Upgrade to FortiNAC 7.2.0, 9.1.8,...

9.8CVSS9.9AI score0.99815EPSS
Exploits7
Saint
Saint
•added 2023/02/24 12:0 a.m.•187 views

FortiNAC keyUpload.jsp command execution

Added: 02/24/2023 Background FortiNAC is a network access control solution. Problem A vulnerability in the keyUpload.jsp resource allows remote attackers to write arbitrary files by uploading a specially crafted zip file, leading to command execution. Resolution Upgrade to FortiNAC 7.2.0, 9.1.8,...

9.8CVSS9.9AI score0.99815EPSS
Exploits7
Saint
Saint
•added 2023/02/17 12:0 a.m.•176 views

Zoho ManageEngine ServiceDesk Plus SAMLResponse command execution

Added: 02/17/2023 Background Zoho ManageEngine ServiceDesk Plus is IT helpdesk software. Problem A vulnerability in an outdated Apache Santuario library in ServiceDesk Plus allows a remote, unauthenticated attacker to execute arbitrary commands by sending a specially crafted SAMLResponse paramete...

9.8CVSS10AI score0.99753EPSS
Exploits15
Saint
Saint
•added 2023/02/17 12:0 a.m.•225 views

Zoho ManageEngine ServiceDesk Plus SAMLResponse command execution

Added: 02/17/2023 Background Zoho ManageEngine ServiceDesk Plus is IT helpdesk software. Problem A vulnerability in an outdated Apache Santuario library in ServiceDesk Plus allows a remote, unauthenticated attacker to execute arbitrary commands by sending a specially crafted SAMLResponse paramete...

9.8CVSS10AI score0.99753EPSS
Exploits15
Saint
Saint
•added 2023/02/10 12:0 a.m.•173 views

VMware ESXi OpenSLP heap overflow

Added: 02/10/2023 Background VMware ESXi is a bare metal hypervisor. Problem A heap overflow vulnerability in the OpenSLP service could allow an attacker on the same network segment to execute arbitrary commands. Resolution Upgrade to a fixed version referenced in VMSA-2021-0002 or disable the SL...

8.1AI score
Exploits0
Saint
Saint
•added 2023/02/10 12:0 a.m.•256 views

VMware ESXi OpenSLP heap overflow

Added: 02/10/2023 Background VMware ESXi is a bare metal hypervisor. Problem A heap overflow vulnerability in the OpenSLP service could allow an attacker on the same network segment to execute arbitrary commands. Resolution Upgrade to a fixed version referenced in VMSA-2021-0002 or disable the SL...

8.1AI score
Exploits0
Saint
Saint
•added 2023/01/17 12:0 a.m.•287 views

Zyxel zhttpd and libclinkc.so buffer overflows

Added: 01/17/2023 CVE: CVE-2022-4510 Background Zyxel Firewalls are a business solution providing protection from malware and unauthorized access. Problem A buffer overflow vulnerability in Zyxel firewalls could allow a remote, unauthenticated attacker to execute arbitrary code by requesting a...

7.8CVSS8AI score0.22013EPSS
Exploits8
Saint
Saint
•added 2023/01/17 12:0 a.m.•242 views

Zyxel zhttpd and libclinkc.so buffer overflows

Added: 01/17/2023 CVE: CVE-2022-4510 Background Zyxel Firewalls are a business solution providing protection from malware and unauthorized access. Problem A buffer overflow vulnerability in Zyxel firewalls could allow a remote, unauthenticated attacker to execute arbitrary code by requesting a...

7.8CVSS8AI score0.22013EPSS
Exploits8
Saint
Saint
•added 2022/12/23 12:0 a.m.•154 views

pfSense pfBlockerNG Host header command injection

Added: 12/23/2022 Background pfSense is an open-source network firewall based on the FreeBSD operating system. pfSense is the software which powers Netgate Security Gateway Appliances. pfBlockerNG is a pfSense package which allows creation of firewall rules on the appliance. Problem A vulnerabili...

7.7AI score
Exploits0
Saint
Saint
•added 2022/12/23 12:0 a.m.•98 views

pfSense pfBlockerNG Host header command injection

Added: 12/23/2022 Background pfSense is an open-source network firewall based on the FreeBSD operating system. pfSense is the software which powers Netgate Security Gateway Appliances. pfBlockerNG is a pfSense package which allows creation of firewall rules on the appliance. Problem A vulnerabili...

7.7AI score
Exploits0
Saint
Saint
•added 2022/12/12 12:0 a.m.•154 views

VMware vCenter Server local privilege elevation

Added: 12/12/2022 Background VMware vCenter Server is server management software for controlling VMware vSphere environments. Problem Improper permissions on the java-wrapper-vmon file allow authenticated, unprivileged attackers to gain root privileges. Resolution Upgrade to vCenter Server 7.0 U2...

7.7AI score
Exploits0
Saint
Saint
•added 2022/12/12 12:0 a.m.•166 views

VMware vCenter Server local privilege elevation

Added: 12/12/2022 Background VMware vCenter Server is server management software for controlling VMware vSphere environments. Problem Improper permissions on the java-wrapper-vmon file allow authenticated, unprivileged attackers to gain root privileges. Resolution Upgrade to vCenter Server 7.0 U2...

7.7AI score
Exploits0
Saint
Saint
•added 2022/10/31 12:0 a.m.•122 views

VMware Cloud Foundation XStream Deserialization

Added: 10/31/2022 Background VMware Cloud Foundation is a hybrid cloud platform. Problem An XStream deserialization vulnerability in the NSM Manager component of VMware Cloud Foundation NSX-V allows a remote attacker to execute arbitrary commands. Resolution Apply the patch referenced in...

8AI score
Exploits0
Saint
Saint
•added 2022/10/31 12:0 a.m.•223 views

VMware Cloud Foundation XStream Deserialization

Added: 10/31/2022 Background VMware Cloud Foundation is a hybrid cloud platform. Problem An XStream deserialization vulnerability in the NSM Manager component of VMware Cloud Foundation NSX-V allows a remote attacker to execute arbitrary commands. Resolution Apply the patch referenced in...

8AI score
Exploits0
Saint
Saint
•added 2022/09/27 12:0 a.m.•112 views

Airspan AirSpot pingDiagnostic command injection

Added: 09/27/2022 Background Airspan AirSpot 5410 is an advanced, LTE, CAT12, outdoor, multi-service product specifically designed to meet data needs for residential, business and enterprise users. Problem A command injection vulnerability when diagnostics.cgi handles the pingDiagnostic command...

8.4AI score
Exploits0
Saint
Saint
•added 2022/09/27 12:0 a.m.•202 views

Airspan AirSpot pingDiagnostic command injection

Added: 09/27/2022 Background Airspan AirSpot 5410 is an advanced, LTE, CAT12, outdoor, multi-service product specifically designed to meet data needs for residential, business and enterprise users. Problem A command injection vulnerability when diagnostics.cgi handles the pingDiagnostic command...

8.4AI score
Exploits0
Saint
Saint
•added 2022/08/30 12:0 a.m.•128 views

Zimbra Collaboration Suite mboximport path traversal

Added: 08/30/2022 Background Zimbra Collaboration Suite is an email, calendar, and collaboration solution for enterprises. Problem A path traversal vulnerability in the mboximport function could allow a remote attacker to create arbitrary JSP files within the web document root, leading to command...

7.8AI score
Exploits0
Saint
Saint
•added 2022/08/30 12:0 a.m.•286 views

Zimbra Collaboration Suite mboximport path traversal

Added: 08/30/2022 Background Zimbra Collaboration Suite is an email, calendar, and collaboration solution for enterprises. Problem A path traversal vulnerability in the mboximport function could allow a remote attacker to create arbitrary JSP files within the web document root, leading to command...

7.8AI score
Exploits0
Saint
Saint
•added 2022/08/12 12:0 a.m.•240 views

Weblizar School Management Pro plugin backdoor

Added: 08/12/2022 CVE: CVE-2022-1609 Background Weblizar School Management is a WordPress plugin for management of school operations. Problem The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands. Resolution Upgrade to t...

9.8CVSS9.8AI score0.64321EPSS
Exploits6
Saint
Saint
•added 2022/08/12 12:0 a.m.•228 views

Weblizar School Management Pro plugin backdoor

Added: 08/12/2022 CVE: CVE-2022-1609 Background Weblizar School Management is a WordPress plugin for management of school operations. Problem The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands. Resolution Upgrade to t...

9.8CVSS9.8AI score0.64321EPSS
Exploits6
Saint
Saint
•added 2022/07/18 12:0 a.m.•126 views

Red Hat JBoss Enterprise Application Platform Remoting Unified Invoker command execution

Added: 07/18/2022 Background Red Hat JBoss Enterprise Application Platform is an open source platform for highly transactional, web-scale Java applications. Problem A remote, unauthenticated attacker can execute arbitary commands on the server by sending a specially crafted serialized object to t...

7.8AI score
Exploits0
Saint
Saint
•added 2022/07/18 12:0 a.m.•344 views

Red Hat JBoss Enterprise Application Platform Remoting Unified Invoker command execution

Added: 07/18/2022 Background Red Hat JBoss Enterprise Application Platform is an open source platform for highly transactional, web-scale Java applications. Problem A remote, unauthenticated attacker can execute arbitary commands on the server by sending a specially crafted serialized object to t...

7.8AI score
Exploits0
Saint
Saint
•added 2022/06/06 12:0 a.m.•106 views

Atlassian Confluence Server OGNL injection

Added: 06/06/2022 Background Atlassian Confluence is a collaboration and knowledge management application. Problem Atlassian Confluence has an OGNL injection vulnerability that could allow an unauthenticated user to execute arbitrary code on a Confluence Server. Resolution Upgrade to Confluence...

8.6AI score
Exploits0
Saint
Saint
•added 2022/06/06 12:0 a.m.•123 views

Atlassian Confluence Server OGNL injection

Added: 06/06/2022 Background Atlassian Confluence is a collaboration and knowledge management application. Problem Atlassian Confluence has an OGNL injection vulnerability that could allow an unauthenticated user to execute arbitrary code on a Confluence Server. Resolution Upgrade to Confluence...

8.6AI score
Exploits0
Saint
Saint
•added 2022/05/20 12:0 a.m.•130 views

Zyxel Firewall SetWanPortSt command injection

Added: 05/20/2022 Background Zyxel Firewalls are a business solution providing protection from malware and unauthorized access. Problem Zyxel USG FLEX, ATP series, and VPN series firewalls are affected by a vulnerability in the SetWanPortSt command which could allow an attacker to inject arbitrar...

7.3AI score
Exploits0
Saint
Saint
•added 2022/05/20 12:0 a.m.•146 views

Zyxel Firewall SetWanPortSt command injection

Added: 05/20/2022 Background Zyxel Firewalls are a business solution providing protection from malware and unauthorized access. Problem Zyxel USG FLEX, ATP series, and VPN series firewalls are affected by a vulnerability in the SetWanPortSt command which could allow an attacker to inject arbitrar...

7.3AI score
Exploits0
Saint
Saint
•added 2022/05/13 12:0 a.m.•263 views

F5 BIG-IP iControl REST vulnerability

Added: 05/13/2022 CVE: CVE-2022-1388 Background F5 BIG-IP is a suite of network security products. Problem An authentication bypass vulnerability in the iControl REST service allows remote attackers to execute arbitrary commands. Resolution Upgrade to one of the fixed versions referenced in...

9.8CVSS10AI score0.99956EPSS
Exploits63
Saint
Saint
•added 2022/05/13 12:0 a.m.•147 views

F5 BIG-IP iControl REST vulnerability

Added: 05/13/2022 CVE: CVE-2022-1388 Background F5 BIG-IP is a suite of network security products. Problem An authentication bypass vulnerability in the iControl REST service allows remote attackers to execute arbitrary commands. Resolution Upgrade to one of the fixed versions referenced in...

9.8CVSS10AI score0.99956EPSS
Exploits63
Saint
Saint
•added 2022/04/26 12:0 a.m.•157 views

Apache Struts forced OGNL evaluation incomplete fix

Added: 04/26/2022 Background Apache Struts is an open-source web application framework for developing Java EE web applications. It uses and extends the Java Servlet API to encourage developers to adopt a model-view-controller MVC architecture. Struts uses Object-Graph Navigation Language OGNL to...

9.8CVSS10AI score0.95922EPSS
Exploits11
Saint
Saint
•added 2022/04/26 12:0 a.m.•219 views

Apache Struts forced OGNL evaluation incomplete fix

Added: 04/26/2022 Background Apache Struts is an open-source web application framework for developing Java EE web applications. It uses and extends the Java Servlet API to encourage developers to adopt a model-view-controller MVC architecture. Struts uses Object-Graph Navigation Language OGNL to...

9.8CVSS10AI score0.95922EPSS
Exploits11
Saint
Saint
•added 2022/04/05 12:0 a.m.•216 views

Spring Framework Data Binding vulnerability

Added: 04/05/2022 Background The Spring Framework provides a comprehensive programming and configuration model for modern Java-based enterprise applications. Problem Spring Framework is affected by a data binding vulnerability when running with JDK 9 or higher. The vulnerability allows remote cod...

8.2AI score
Exploits0
Saint
Saint
•added 2022/04/05 12:0 a.m.•443 views

Spring Cloud Function Remote Code Execution

Added: 04/05/2022 Background Spring Cloud Function abstracts all transport details and infrastructure, allowing developers to keep all familiar tools and processes and focus on business logic. Problem Spring Cloud Function has remote code execution vulnerability. An attacker could provide a craft...

9.8CVSS9.8AI score0.99939EPSS
Exploits36
Saint
Saint
•added 2022/04/05 12:0 a.m.•235 views

Spring Cloud Function Remote Code Execution

Added: 04/05/2022 Background Spring Cloud Function abstracts all transport details and infrastructure, allowing developers to keep all familiar tools and processes and focus on business logic. Problem Spring Cloud Function has remote code execution vulnerability. An attacker could provide a craft...

9.8CVSS9.8AI score0.99939EPSS
Exploits36
Saint
Saint
•added 2022/04/05 12:0 a.m.•91 views

Spring Framework Data Binding vulnerability

Added: 04/05/2022 Background The Spring Framework provides a comprehensive programming and configuration model for modern Java-based enterprise applications. Problem Spring Framework is affected by a data binding vulnerability when running with JDK 9 or higher. The vulnerability allows remote cod...

8.2AI score
Exploits0
Saint
Saint
•added 2022/03/07 12:0 a.m.•103 views

ColdFusion verifyldapserver vulnerability

Added: 03/07/2022 Background Adobe ColdFusion is a web application development platform written in Java. Problem The verifyldapserver method in utils.cfc allows a remote attacker to cause the server to download a Java class from an arbitrary LDAP server, leading to remote code execution. Resoluti...

8.2AI score
Exploits0
Saint
Saint
•added 2022/03/07 12:0 a.m.•342 views

ColdFusion verifyldapserver vulnerability

Added: 03/07/2022 Background Adobe ColdFusion is a web application development platform written in Java. Problem The verifyldapserver method in utils.cfc allows a remote attacker to cause the server to download a Java class from an arbitrary LDAP server, leading to remote code execution. Resoluti...

8.2AI score
Exploits0
Saint
Saint
•added 2022/01/27 12:0 a.m.•304 views

Polkit pkexec privilege elevation

Added: 01/27/2022 CVE: CVE-2021-4034 Background Polkit is a Linux package for handling policies that allow unprivileged processes to communicate with privileged processes. It includes a tool called pkexec that allows the user to execute commands as another user according to the polkit policy...

7.8CVSS8.7AI score0.94921EPSS
Exploits152
Saint
Saint
•added 2022/01/27 12:0 a.m.•228 views

Polkit pkexec privilege elevation

Added: 01/27/2022 CVE: CVE-2021-4034 Background Polkit is a Linux package for handling policies that allow unprivileged processes to communicate with privileged processes. It includes a tool called pkexec that allows the user to execute commands as another user according to the polkit policy...

7.8CVSS8.7AI score0.94921EPSS
Exploits152
Saint
Saint
•added 2021/12/16 12:0 a.m.•175 views

Apache Log4j JNDI message lookup vulnerability

Added: 12/16/2021 Background Apache Log4j is a logging library used by many Java applications. Problem An attacker who is able to control log message content could embed a JNDI reference to an LDAP or RMI URL which downloads an executable Java class, leading to arbitrary command execution...

0.5AI score
Exploits0
Saint
Saint
•added 2021/12/16 12:0 a.m.•165 views

Apache Log4j JNDI message lookup vulnerability

Added: 12/16/2021 Background Apache Log4j is a logging library used by many Java applications. Problem An attacker who is able to control log message content could embed a JNDI reference to an LDAP or RMI URL which downloads an executable Java class, leading to arbitrary command execution...

7.5AI score
Exploits0
Saint
Saint
•added 2021/12/16 12:0 a.m.•81 views

Apache Log4j JNDI message lookup vulnerability

Added: 12/16/2021 Background Apache Log4j is a logging library used by many Java applications. Problem An attacker who is able to control log message content could embed a JNDI reference to an LDAP or RMI URL which downloads an executable Java class, leading to arbitrary command execution...

7.5AI score
Exploits0
Saint
Saint
•added 2021/11/24 12:0 a.m.•160 views

GitLab ExifTool uploaded image command injection

Added: 11/24/2021 Background GitLab is an open-source software development platform with built-in version control and issue tracking. Problem A remote attacker can execute arbitrary commands by uploading a specially crafted image to GitLab, which executes injected Perl code when ExifTool parses...

8.2AI score
Exploits0
Saint
Saint
•added 2021/11/24 12:0 a.m.•366 views

GitLab ExifTool uploaded image command injection

Added: 11/24/2021 Background GitLab is an open-source software development platform with built-in version control and issue tracking. Problem A remote attacker can execute arbitrary commands by uploading a specially crafted image to GitLab, which executes injected Perl code when ExifTool parses...

7.6AI score
Exploits0
Total number of security vulnerabilities4305