Proof of concept git-lfs remote code execution exploit written in Go. Affects Git, GitHub CLI, GitHub Desktop, Visual Studio, GitKraken, SmartGit, SourceTree, and more.
207206e22d89b9b831273f5d12954acb
Red Hat Security Advisory 2020-4670-01 - Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Issues addressed include code execution, cross site scripting, denial of service, memory leak, and use-after-free vulnerabilities.
a2c90d593b9c6e8811884b85e307573e
Red Hat Security Advisory 2020-4847-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include code execution, cross site scripting, denial of service, and memory leak vulnerabilities.
7ecfb4bf539e1fbe2b8442201768bfc4
Red Hat Security Advisory 2020-4690-01 - Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Issues addressed include code execution and denial of service vulnerabilities.
fd2db0b4d1c3608649b32a0413c34c0e
Red Hat Security Advisory 2020-4625-01 - The SpamAssassin tool provides a way to reduce unsolicited commercial email from incoming email. Issues addressed include code execution and denial of service vulnerabilities.
be679de402239e4c7cab8b93d4468e7c
Red Hat Security Advisory 2020-4442-01 - SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. Issues addressed include code execution, null pointer, out of bounds read, and use-after-free vulnerabilities.
810308288fe2bf7a334149ecefa3ca1f
Red Hat Security Advisory 2020-4451-01 - GNOME is the default desktop environment of Red Hat Enterprise Linux. Issues addressed include buffer overflow, code execution, cross site scripting, denial of service, out of bounds read, and use-after-free vulnerabilities.
a269bf3e84e1c38ed3269e45d807c602
Student Attendance Management System version 1.0 suffers from a remote SQL injection vulnerability that could lead to code execution.
381fc01d9bd38316f3c147d991777a42
School Log Management System version 1.0 suffers from a remote SQL injection vulnerability that could lead to code execution.
d747075f51888722bb766ae5265274fa
Complaints Report Management System version 1.0 suffers from a remote SQL injection vulnerability that can allow for remote code execution.
34a90af2fd41a3b86d73ac2e42ef8ce0
Monitorr version 1.7.6m suffers from an unauthenticated remote code execution vulnerability.
cd4d30c82b2cf42e047c35c13bfb1a0c
Apache Flink version 1.9.x suffers from a remote code execution vulnerability via a malicious upload.
73ba56695db605e8cd2386e1c79e0bca
Simple College Website version 1.0 suffers from code execution and remote SQL injection vulnerabilities.
b79435331f73ab8e247db7039783c59f
Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.
24fa9b1def3992595545767d8d82efa2
Microsoft Edge suffers from information disclosure and remote code execution vulnerabilities. Affected builds include 85.0.564.83, 85.0.564.86, 85.0.564.70, 86.0.622.38, 86.0.622.43, 86.0.622.48, 86.0.622.51, and 86.0.622.56.
d1283aca7d57dba59274a53c8d4be7c8
Red Hat Security Advisory 2020-4298-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include code execution, cross site scripting, and denial of service vulnerabilities.
299014ca30efa3c45bd95e89d230f844
Sphider Search Engine version 1.3.6 remote code execution exploit.
2379dde6c9c4d4aca8f5e6073444d459
InoERP version 0.7.2 suffers from an unauthenticated remote code execution vulnerability.
b7684b0b25bfb36cec0c74a9db79b663
Gentoo Linux Security Advisory 202010-6 - Ark was found to allow arbitrary file overwrite, possibly allowing arbitrary code execution. Versions less than 20.04.3-r2 are affected.
0bb741fdae06e4dfc77ed8440d31aa75
An unauthenticated remote code execution vulnerability was found in the LISTSERV Maestro software, versions 9.0-8 and below. This vulnerability stems from a known issue in struts, CVE-2010-1870, that allows for code execution via OGNL Injection. This vulnerability has been confirmed to be exploitable in both the Windows and Linux version of the software and has existed in the LISTSERV Maestro software since at least version 8.1-5. As a result, a specially crafted HTTP request can be constructed that executes code in the context of the web application. Exploitation of this vulnerability does not require authentication and can lead to root level privilege on any system running the LISTServ Maestro services.
a3168454ee163a5555ee9cdd35609b72
Apache Struts 2 DefaultActionMapper Prefixes OGNL remote code execution exploit.
4bacfb503bb7a49d5262f888693bb1b8
Rite CMS version 2.2.1 authenticated remote code execution exploit. Original finding for remote code execution in this version of Rite CMS is attributed to Enes Ozeser.
ae908efdadf489d50daf07ce1577dbb2
Typesetter CMS version 5.1 authenticated remote code execution exploit.
be124f8d98baac1116395606bbbfd43c
ReQuest Serious Play F3 Media Server version 7.0.3 suffers from an unauthenticated remote code execution vulnerability. Abusing the hidden ReQuest Internal Utilities page (/tools) from the services provided, an attacker can exploit the Quick File Uploader (/tools/upload.html) page and upload PHP executable files that results in remote code execution as the web server user.
27df19dca8c37dc3db671041baa681bf
Red Hat Security Advisory 2020-4274-01 - The Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections Framework. Issues addressed include a code execution vulnerability.
8773f9cb63de12ce14a4bc1a09189db1