Proof of concept git-lfs remote code execution exploit written in Go. Affects Git, GitHub CLI, GitHub Desktop, Visual Studio, GitKraken, SmartGit, SourceTree, and more.
207206e22d89b9b831273f5d12954acbRed Hat Security Advisory 2020-4670-01 - Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Issues addressed include code execution, cross site scripting, denial of service, memory leak, and use-after-free vulnerabilities.
a2c90d593b9c6e8811884b85e307573eRed Hat Security Advisory 2020-4847-01 - The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Issues addressed include code execution, cross site scripting, denial of service, and memory leak vulnerabilities.
7ecfb4bf539e1fbe2b8442201768bfc4Red Hat Security Advisory 2020-4690-01 - Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Issues addressed include code execution and denial of service vulnerabilities.
fd2db0b4d1c3608649b32a0413c34c0eRed Hat Security Advisory 2020-4625-01 - The SpamAssassin tool provides a way to reduce unsolicited commercial email from incoming email. Issues addressed include code execution and denial of service vulnerabilities.
be679de402239e4c7cab8b93d4468e7cRed Hat Security Advisory 2020-4442-01 - SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. Issues addressed include code execution, null pointer, out of bounds read, and use-after-free vulnerabilities.
810308288fe2bf7a334149ecefa3ca1fRed Hat Security Advisory 2020-4451-01 - GNOME is the default desktop environment of Red Hat Enterprise Linux. Issues addressed include buffer overflow, code execution, cross site scripting, denial of service, out of bounds read, and use-after-free vulnerabilities.
a269bf3e84e1c38ed3269e45d807c602Student Attendance Management System version 1.0 suffers from a remote SQL injection vulnerability that could lead to code execution.
381fc01d9bd38316f3c147d991777a42School Log Management System version 1.0 suffers from a remote SQL injection vulnerability that could lead to code execution.
d747075f51888722bb766ae5265274faComplaints Report Management System version 1.0 suffers from a remote SQL injection vulnerability that can allow for remote code execution.
34a90af2fd41a3b86d73ac2e42ef8ce0Monitorr version 1.7.6m suffers from an unauthenticated remote code execution vulnerability.
cd4d30c82b2cf42e047c35c13bfb1a0cApache Flink version 1.9.x suffers from a remote code execution vulnerability via a malicious upload.
73ba56695db605e8cd2386e1c79e0bcaSimple College Website version 1.0 suffers from code execution and remote SQL injection vulnerabilities.
b79435331f73ab8e247db7039783c59fOracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.
24fa9b1def3992595545767d8d82efa2Microsoft Edge suffers from information disclosure and remote code execution vulnerabilities. Affected builds include 85.0.564.83, 85.0.564.86, 85.0.564.70, 86.0.622.38, 86.0.622.43, 86.0.622.48, 86.0.622.51, and 86.0.622.56.
d1283aca7d57dba59274a53c8d4be7c8Red Hat Security Advisory 2020-4298-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Issues addressed include code execution, cross site scripting, and denial of service vulnerabilities.
299014ca30efa3c45bd95e89d230f844Sphider Search Engine version 1.3.6 remote code execution exploit.
2379dde6c9c4d4aca8f5e6073444d459InoERP version 0.7.2 suffers from an unauthenticated remote code execution vulnerability.
b7684b0b25bfb36cec0c74a9db79b663Gentoo Linux Security Advisory 202010-6 - Ark was found to allow arbitrary file overwrite, possibly allowing arbitrary code execution. Versions less than 20.04.3-r2 are affected.
0bb741fdae06e4dfc77ed8440d31aa75An unauthenticated remote code execution vulnerability was found in the LISTSERV Maestro software, versions 9.0-8 and below. This vulnerability stems from a known issue in struts, CVE-2010-1870, that allows for code execution via OGNL Injection. This vulnerability has been confirmed to be exploitable in both the Windows and Linux version of the software and has existed in the LISTSERV Maestro software since at least version 8.1-5. As a result, a specially crafted HTTP request can be constructed that executes code in the context of the web application. Exploitation of this vulnerability does not require authentication and can lead to root level privilege on any system running the LISTServ Maestro services.
a3168454ee163a5555ee9cdd35609b72Apache Struts 2 DefaultActionMapper Prefixes OGNL remote code execution exploit.
4bacfb503bb7a49d5262f888693bb1b8Rite CMS version 2.2.1 authenticated remote code execution exploit. Original finding for remote code execution in this version of Rite CMS is attributed to Enes Ozeser.
ae908efdadf489d50daf07ce1577dbb2Typesetter CMS version 5.1 authenticated remote code execution exploit.
be124f8d98baac1116395606bbbfd43cReQuest Serious Play F3 Media Server version 7.0.3 suffers from an unauthenticated remote code execution vulnerability. Abusing the hidden ReQuest Internal Utilities page (/tools) from the services provided, an attacker can exploit the Quick File Uploader (/tools/upload.html) page and upload PHP executable files that results in remote code execution as the web server user.
27df19dca8c37dc3db671041baa681bfRed Hat Security Advisory 2020-4274-01 - The Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections Framework. Issues addressed include a code execution vulnerability.
8773f9cb63de12ce14a4bc1a09189db1
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed