This Metasploit module exploits an OGNL injection in Atlassian Confluence's WebWork component to execute commands as the Tomcat user.
78b308738c153a19545165ba47b4b15d6c0473eedcb99a8170d7a8e03183480aInternet Explorer suffers from an issue where incorrect JIT optimization in jscript9.dll leads to memory corruption.
cb83b562636ea76e2bb8cf3458b612c7c7976ae831087491f462b16ec9a8758eECOA building automation systems suffer from an arbitrary file deletion vulnerability. Many versions are affected.
74b68e2af97ce92c0f6145176c6346d99ffdc70d081fbb5279db58eb124bb1b5Backdoor.Win32.WinterLove.i malware suffers from a hardcoded credential vulnerability.
5b3e636473f599956429b4488c51c576410e0fb6797838f3edaa1227851bc07bECOA building automation systems suffer from a local file disclosure vulnerability. Many versions are affected.
ab578e3b99dda2c479565b63ee2a81cbdefbf253cf929994b8241910d546052cECOA building automation systems suffer from authorization bypass and insecure direct object reference vulnerabilities. Many versions are affected.
2fbaa33171e382ad3ebccde715fa7a4331d3d4391ce1d026f2ab795d2e9a0458ECOA building automation systems suffer from a remote privilege escalation vulnerability. Many versions are affected.
5d72cdb1a9e256f8aa04a95cc7fda1757d99f39d0120ff44f6e0ad0f1aa9003dUbuntu Security Notice 5074-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, bypass mixed content blocking, or execute arbitrary code.
9c9643409c667a97450794f67bb7aa91f6ab1d08343d3921ee3c41cc62a5c654ECOA building automation systems suffer from missing encryption of sensitive information. Many versions are affected.
fbea3c02c7a377cbfc0e1fe62af2f79450fdffd163742edd08eb5f1c1d89ce80ECOA building automation systems have hardcoded SSH credentials. Many versions are affected.
3b6c0f63a46ae33fbb65a334f754cbd3d76e400e5a655fe28a84047f54567cc0Backdoor.Win32.Wollf.h malware suffers from a code execution vulnerability.
a4937a349899e6afba56cc0926e8355d321358d1f37d6ac1ffef42a24ba6d576ECOA building automation systems suffer from a configuration download information disclosure vulnerability. Many versions are affected.
aef4a97a1314e27e1969f3d4e1a72da189d996a3e5a1eb6091e6d19bba339d2dECOA building automation systems suffer from a cookie poisoning vulnerability that allows for authentication bypass. Many versions are affected.
9f1383de0fd14fccc3b75dfe56afccaa387d7add8055bd914de409611271ac92ECOA building automation systems suffer from a cross site request forgery vulnerability. Many versions are affected.
c5e04be1683df924f6735186c911be919b8740e173fc6f468e327ce6ed73c7eeBackdoor.Win32.VB.awm malware suffers from bypass and information leakage vulnerabilities.
6f599670a0087704724f901a40e71705e4b518d6a21c4ed3aa2e68db4b6b6399ECOA building automation systems suffer from directory traversal vulnerability that allows for content disclosure. Many versions are affected.
020d2d4f0280cbde5afa73dac4c8cfd23db4621f938bb3e0bb70091b1c53de10ECOA building automation systems suffer from path traversal and arbitrary file upload vulnerabilities. Many versions are affected.
ea7f9bd9279b87a7dac72d39679684829a62542b790b1b70e36bca9e2ed2428bECOA building automation systems suffer from having default weak credentials. Many versions are affected.
45f0fdd9a7c77effec513c3335453ac15ea81dbffa7b4d63604efe22c99cf375HEUR.Trojan.Win32.Generic malware suffers from an insecure permissions vulnerability.
25046969aaca55e46ee3bcad8ebe2562ebfc1fe9516d228cf50ca1401c1cb9a1
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed