A malicious unauthenticated user could abuse the lack of authentication check on SAP Java P2P cluster communication in order to connect to the respective TCP ports and perform different privileged actions. SAP Netweaver JAVA versions 7.10 through 7.50 are affected.
97b11d237ebc411e047673bc4c3aa91eClient Management System version 1.1 suffers from a remote SQL injection vulnerability.
b2a0f5124d38d078542b920ab171f2b8Client Management System version 1.1 suffers from a persistent cross site scripting vulnerability.
2f83c7f0a1aba3af2fad9aae911255b4This Metasploit module exploits an authenticated command injection vulnerability in the /cgi-bin/pakfire.cgi web page of IPFire devices running versions 2.25 Core Update 156 and prior to execute arbitrary code as the root user.
69d36ee1b60ffec6d31a6ebc94e2dc1eThis Metasploit module lets you create a batch job on HashiCorp's Nomad service to spawn a shell. The default option is to use the raw_exec driver, which runs with high privileges. Development servers and clients explicitly enabling the raw_exec plugin can spawn these type of jobs. Regular exec jobs can be created in a similar fashion at a lower privilege level.
43fcfd455dd3900ac07eb5c17b346b5dBrother BRPrint Auditor version 3.0.7 suffers from an unquoted service path vulnerability.
14d6f4a4a0b0fae5b688eb9d70b453faThis document illustrates proof of concept exploitation of a vulnerability in WordPress versions 5.6.0 through 5.7.0 that gives a user the ability to upload files on a server and exploit an XML parsing issue in the Media Library using an MP3 file upload that leads to an XXE attack.
f480e11bbb87f0689d864f58c065154dPolkit version Polkit 0.105-26 0.117-2 suffers from a local privilege escalation vulnerability.
85254ee18358ee1627ca678b9e9519b3Online Library Management System version 2.0 suffers from a cross site request forgery vulnerability.
adc60506bac13f286946361e3c61231fBrother BRAgent version 1.38 suffers from an unquoted service path vulnerability.
cc2d59d3bdb8a32bfc24becb43d76cc9Sami HTTP server version 2.0 suffers from a denial of service vulnerability.
e4f77f7a968cac9e6f41e703a5a09a17SAP Solution Manager version 7.2 (ST 720) suffers from an open redirection vulnerability.
0bceca4b1380d2874af8c29d32b034d7SysGauge version 7.9.18 suffers from an unquoted service path vulnerability.
a37267fedad30e9d82f8c2279b9c0985ChromeOS suffers from a missing path restriction vulnerability in arc-obb-mounter.
d37b7a8eceb81455f4119e17205b9635Backdoor.Win32.VB.pld malware suffers from a code execution vulnerability.
d6c2a58c6eee5e544b86731b1227125dTextPattern CMS version 4.8.7 suffers from an authenticated remote command execution vulnerability.
590f982083de80faa52ccf37dcfdbb31Small CRM version 3.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
db23fe4e0c0ca0781c56faea3495fa6fStock Management System version 1.0 suffers from a remote blind SQL injection vulnerability. This is a variant to the original discovery of SQL injection in this version discovered in August of 2020 by hyd3sec.
7376bc754717fdc360514061972934e0Backdoor.Win32.Zombam.gen malware suffers from an information leakage vulnerability.
7192d845dce49d1fd1364aa2d11772a6GLPI version 9.4.5 remote code execution exploit.
9b3bf8c94d2629a94ddb5f3f4698cdd0Accela Civic Platform version 21.1 suffers from an insecure direct object reference vulnerability.
c93053ff9fc147dfc6825cf35217930eAccela Civic Platform version 21.1 suffers from cross site scripting and open redirection vulnerabilities.
a066317a2d9548a91e801a3ee0b6503bBackdoor.Win32.Pazus.18 malware suffers from bypass and code execution vulnerabilities.
d5fd6982baf05bc8448326adcfcd13d8COVID-19 Testing Management System version 1.0 suffers from a persistent cross site scripting vulnerability. This is a variant of the original discovery of cross site scripting in this version made by Rohit Burke in May of 2021.
4187b42d6504e72f4ca2e37f3a66ffa4OpenEMR version 5.0.1.3 authenticated remote shell upload exploit.
7700613258c55d87cc8689ab8d49b6f7
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed