CMSimple version 5.4 local file inclusion to remote code execution exploit.
7d206d745fd2639b990408dc45a77919Red Hat Security Advisory 2021-4702-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include XML injection, code execution, denial of service, information leakage, local file inclusion, man-in-the-middle, memory leak, open redirection, password leak, remote file inclusion, remote shell upload, and traversal vulnerabilities.
15d37f280e159b35ed6469b1f97ed672This Metasploit module exploits local file inclusion and log poisoning vulnerabilities (CVE-2020-16152) in Aerohive NetConfig, version 10.0r8a build-242466 and older in order to achieve unauthenticated remote code execution as the root user. NetConfig is the Aerohive/Extreme Networks HiveOS administrative webinterface. Vulnerable versions allow for LFI because they rely on a version of PHP 5 that is vulnerable to string truncation attacks. This module leverages this issue in conjunction with log poisoning to gain remote code execution as root. Upon successful exploitation, the Aerohive NetConfig application will hang for as long as the spawned shell remains open. Closing the session should render the application responsive again. The module provides an automatic cleanup option to clean the log. However, this option is disabled by default because any modifications to the /tmp/messages log, even via sed, may render the target (temporarily) unexploitable. This state can last over an hour. This module has been successfully tested against Aerohive NetConfig versions 8.2r4 and 10.0r7a.
70c6dcfbe8cd1056d848f4af42f66776Easy Chat Server version 3.1 suffers from a directory traversal vulnerability.
6467ba2ba996208488cde9d6cd01fa7dApache HTTP Server version 2.4.50 suffers from path traversal and code execution vulnerabilities.
83e881b06b8c45b03c0e1280bba0e9dfApache HTTP Server version 2.4.49 suffers from a path traversal vulnerability.
1f8f44361142a2acbf7b9f53b654f29aPayara Micro Community version 5.2021.6 suffers from a directory traversal vulnerability.
facaade4d9c2aaf474e859daee70da16Red Hat Security Advisory 2021-3490-01 - An update for python-django20 is now available for Red Hat OpenStack Platform 16.2 (Train). Issues addressed include local file inclusion, remote file inclusion, server-side request forgery, and traversal vulnerabilities.
e7500bc349886d3fb83b1178501b814bOpenSIS version 8.0 suffers from a local file inclusion vulnerability via a path traversal.
b5b5159ba7f41f0e12e980bac421c26dUmbraco CMS versions 8.9.1 and below suffer from path traversal and arbitrary file write vulnerabilities.
0a99ada2f17347f95a647a852d95bcfeProcessMaker version 3.5.4 suffers from a local file inclusion vulnerability.
6866947c3b49d852208d6c48618fa6ccWordPress Mail Masta plugin version 1.0 suffers from a local file inclusion vulnerability.
904e1bbfd06fac7ad4b4f0f51166be0eGeoVision Geowebserver versions 5.3.3 and below suffer from code execution, cross site request forgery, cross site scripting, html injection, and local file inclusion vulnerabilities.
7f0018d2193589d1334f12f6ebcc8843This whitepaper discusses chain session upload progress to remote code execution when taking advantage of local file inclusion.
30b82ecd437ab784ec81665a82576757Novus Management System versions prior to 1.51.2 suffer from cross site scripting and directory traversal vulnerabilities.
c64a7fc8b08135ed2c5f6feadfc07eadWyomind Help Desk version 1.3.6 suffers from remote shell upload, cross site scripting, and directory traversal vulnerabilities.
59218439c3ab4fb34a4f3a6427121b87WordPress Anti-Malware Security and Bruteforce Firewall plugin version 4.20.59 suffers from a directory traversal vulnerability.
6f9edaf13c8046960529a3c19bdf3c96Black Box Kvm Extender version 3.4.31307 suffers from a local file inclusion vulnerability.
6fe8c1691d468a9bf6c2ebd9e15d6affOpenEMR version 5.0.17 path traversal exploit.
a7622ae19ddf3cafa635248b9528fd2cOpenEMR version 5.0.1.7 suffers from a path traversal vulnerability.
9b189b539433dd288cb8f97ef2d49d86Postbird version 0.8.4 suffers from cross site scripting, local file inclusion, and insecure data storage vulnerabilities. Included in this archive is a whitepaper and proof of concept exploit.
f60c4ad77076831e6c6210dffcd07d54Trixbox version 2.8.0.4 has path traversal via the xajaxargs array parameter to /maint/index.php?packages or the lang parameter to /maint/modules/home/index.php.
ebe53272a318e753d01ffa4b44a12413Postbird version 0.8.4 suffers from a javascript injection vulnerability that allows for cross site scripting and local file inclusion.
f2d171b04734775d46bcc4f5dc3a2213Schlix CMS version 2.2.6-6 suffers from an arbitrary file upload and a directory traversal that together can lead to remote command execution.
f2f6e3d92179511f87fa66f851387309Mini Mouse version 9.3.0 suffers from local file inclusion and path traversal vulnerabilities.
5f48132206c39831f6956e4b977d8857
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed