eClass LMS version 2.6 suffers from a remote shell upload vulnerability.
27ab302a8ee9d1973f951525ce39698fComplaint Management System version 1.0 suffers from a remote shell upload vulnerability.
c7041ac8f36188440071c2ed76b5d17bArtworks Gallery version 1.0 suffers from multiple remote shell upload vulnerabilities.
ca2142a5ef21aa8aad9aa7013aa18a0aCar Rental Management System version 1.0 suffers from a remote shell upload vulnerability.
c42840abea293ce3967f753e3dd1cc6aCar Rental Management System version 1.0 remote SQL injection and shell upload exploit.
7028cda543bffd9460cbc39e018092daRed Hat Security Advisory 2020-4697-01 - The targetcli package contains an administration shell for configuring Internet Small Computer System Interface, Fibre Channel over Ethernet, and other SCSI targets, using the Target Core Mod/Linux-IO kernel target subsystem. FCoE users also need to install and use the fcoe-utils package.
0d55ec9a68eaef13be5664f16d70a5b8PDW File Browser version 1.3 suffers from a remote shell upload vulnerability.
c5d984e11fcc1aa1af9a176e3ea360b0WordPress Simple File List plugin version 5.4 suffers from a remote shell upload vulnerability.
75488258360850a9899dfe59fe7a49dfOnline Library Management System version 1.0 suffers from a remote shell upload vulnerability.
459c992933d1f7209cbdf12c6e9c33d4Sentrifugo version 3.2 suffers from a restriction bypass vulnerability that allows for a remote shell upload.
981cdb0177e2271690c25d011e5b38c6Adtec Digital is a leading manufacturer of Broadcast, Cable and IPTV products and solutions. Many of their devices utilize hard-coded and default credentials within its Linux distribution image for Web/Telnet/SSH access. A remote attacker could exploit this vulnerability by logging in using the default credentials for accessing the web interface or gain shell access as root.
063154d6c7521ecfedc183b52625d739GOautodial version 4.0 suffers from a remote shell upload vulnerability.
1dc47bb67a41c4ba34d498a30ea9daaeWordPress HS Brand Logo Slider plugin version 2.1 suffers from a remote shell upload vulnerability.
247365fd8094a2f47aef67d768cb364fWordPress SuperStoreFinder plugin version 6.1 suffers from cross site request forgery and remote shell upload vulnerabilities.
d65d9b7ecb896e5b99b319e01822cb42Online Student's Management System version 1.0 suffers from a remote shell upload vulnerability.
d8d317865accc39f0ea9c31f5b1c18abTourism Management System version 1.0 suffers from a remote shell upload vulnerability.
023224c77cadc9a82e003c481b8f416fUbuntu Security Notice 4582-1 - It was discovered that Vim incorrectly handled permissions on the .swp file. A local attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 16.04 LTS. It was discovered that Vim incorrectly handled restricted mode. A local attacker could possibly use this issue to bypass restricted mode and execute arbitrary commands. Note: This update only makes executing shell commands more difficult. Restricted mode should not be considered a complete security measure. Various other issues were also addressed.
e6159e2f38d8be01d2ed2841a3b41473This Metasploit module exploits an arbitrary file upload vulnerability in MaraCMS versions 7.5 and below in order to execute arbitrary commands. The module first attempts to authenticate to MaraCMS. It then tries to upload a malicious PHP file to the web root via an HTTP POST request to codebase/handler.php. If the php target is selected, the payload is embedded in the uploaded file and the module attempts to execute the payload via an HTTP GET request to this file. For the linux and windows targets, the module uploads a simple PHP web shell. Subsequently, it leverages the CmdStager mixin to deliver the final payload via a series of HTTP GET requests to the PHP web shell. Valid credentials for a MaraCMS admin or manager account are required. This module has been successfully tested against MaraCMS 7.5 running on Windows Server 2012 (XAMPP server).
f3fcdcf0924156e882b29740d16480f8Ubuntu Security Notice 4533-1 - Veeti Veteläinen discovered that the LTSP Display Manager incorrectly handled user logins from unsupported shells. A local attacker could possibly use this issue to gain root privileges.
f737de063aa0c72d9f092dd14307d74aRed Hat Security Advisory 2020-3803-01 - The bash packages provide Bash, which is the default shell for Red Hat Enterprise Linux.
09a3b8e514d3cfd4046dff77d503199dThis Metasploit module exploits command injection vulnerabilities and an insecure default sudo configuration on VyOS versions 1.0.0 through 1.1.8 to execute arbitrary system commands as root. VyOS features a restricted-shell system shell intended for use by low privilege users with operator privileges. This module exploits a vulnerability in the telnet command to break out of the restricted shell, then uses sudo to exploit a command injection vulnerability in /opt/vyatta/bin/sudo-users/vyatta-show-lldp.pl to execute commands with root privileges. This module has been tested successfully on VyOS 1.1.8 amd64 and VyOS 1.0.0 i386.
3d5d65d5e0f254ce3c9343e508e95b9dTP-Link cloud cameras NCXXX series (NC200, NC210, NC220, NC230, NC250, NC260, NC450) are vulnerable to an authenticated command injection vulnerability. In all devices except NC210, despite a check on the name length in swSystemSetProductAliasCheck, no other checks are in place in order to prevent shell metacharacters from being introduced. The system name would then be used in swBonjourStartHTTP as part of a shell command where arbitrary commands could be injected and executed as root. NC210 devices cannot be exploited directly via /setsysname.cgi due to proper input validation. NC210 devices are still vulnerable since swBonjourStartHTTP did not perform any validation when reading the alias name from the configuration file. The configuration file can be written, and code execution can be achieved by combining this issue with CVE-2020-12110.
65581bfcfd69f6bd2c8b8917eda921c4Gentoo Linux Security Advisory 202009-8 - An information disclosure vulnerability in GNOME Shell might allow local attackers to obtain sensitive information. Versions less than 3.34.5-r1 are affected.
309e5318135523eb52d41ec01f1dfaceRed Lion N-Tron 702-W and 702M12-W versions 2.0.26 and below suffer from cross site request forgery, hidden shell interface, cross site scripting and busybox vulnerabilities.
0d2c4894db250550f69bf99d4b85cdbdSiteMagic CMS version 4.4.2 suffers from a remote shell upload vulnerability.
9b13334a85c32519bca21e7d26088a4b
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed