Cisco UCS Manager version 2.2(1d) remote command execution exploit. An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager before 2.2(4b), 2.2(5) before 2.2(5a), and 3.0 before 3.0(2e) allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888.
f3fab9befb8e7cbad15afa31a69504a465f274122e534cebcbde38a7d8f6288eThis Metasploit module exploits an arbitrary file upload vulnerability together with a directory traversal flaw in ATutor versions 2.2.4, 2.2.2 and 2.2.1 in order to execute arbitrary commands.
344a78946baa67ebb531073dad88904763b7f86e0bf52c4f8197e8fc0c0f179dFUDForum version 3.0.9 suffers from remote code execution and stored cross site scripting vulnerabilities.
e782a370f945871eef471a3c05963e6f6e3a2d5a431d761f1c3860b43ae0a28cATutor version 2.2.4 suffers from a language_import arbitrary file upload that allows for command execution.
68b1f5ef4f43ce98748eca51235dfb77dab8a8340683912b52e996264a98eec7ATutor version 2.2.4 suffers from a backup functionality remote command execution vulnerability.
06e7c86f7744d78ae2778cf7d8005061d4ab736263b7669b8d90987a354be32aeLabFTW version 1.8.5 suffers from arbitrary file upload and code execution vulnerabilities.
6740b6eb0bb94e7f81a3aab91e04f9d4cbf240e5ee05f834f815594d93776d7e
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed