The binary /opt/zoom/ZoomLauncher is vulnerable to command injection because it uses user input to construct a shell command without proper sanitization. The client registers a scheme handler (zoommtg://) and this makes possible to trigger the vulnerab…
Zivif PR115-204-P-RS cameras version 220.127.116.113 suffer from authentication bypass, command injection, and hardcoded password vulnerabilities.
Source: Zivif PR115-204-P-RS 18.104.22.1683 Bypass / Command Injection / Hardcoded Password
The post Zivif PR115-2…
LaCie 5big Network version 2.2.8 suffers from a remote command injection vulnerability.
Source: LaCie 5big Network 2.2.8 Command Injection
The post LaCie 5big Network 2.2.8 Command Injection appeared first on MondoUnix.
Within Polycom command shell, a command execution flaw exists in lan traceroute, one of the dev commands, which allows for an attacker to execute arbitrary payloads with telnet or openssl.
Source: Polycom Shell HDX Series Traceroute Command Execution
OpenEMR version 5.0.0 suffers from code execution and cross site scripting vulnerabilities.
Source: OpenEMR 5.0.0 Command Injection / Cross Site Scripting
The post OpenEMR 5.0.0 Command Injection / Cross Site Scripting appeared first on MondoUnix.
Synology StorageManager version 5.2 suffers from a remote root command execution vulnerability in smart.cgi.
Source: Synology StorageManager 5.2 Remote Command Execution
The post Synology StorageManager 5.2 Remote Command Execution appeared first on Mo…
pfSense versions 2.3.1_1 and below contain a remote command execution vulnerability post authentication in the system_groupmanager.php page.
Source: pfSense 2.3.1_1 Remote Command Execution
The post pfSense 2.3.1_1 Remote Command Execution appeared fir…
This Metasploit module exploits a vulnerability found in Mako Server version 2.5. It’s possible to inject arbitrary OS commands in the Mako Server tutorial page through a PUT request to save.lsp. Attacker input will be saved on the victims machine and can be executed by sending a GET request to manage.lsp. Source: Mako Server 2.5 […]
This Metasploit module exploits an arbitrary command execution vulnerability in tnftp’s handling of the resolved output filename – called “savefile” in the source – from a requested resource. If tnftp is executed without the -o command-line option, it will resolve the output filename from the last component of the requested resource. If the output filename […]
It was discovered that the Unitrends bpserverd proprietary protocol, as exposed via xinetd, has an issue in which its authentication can be bypassed. A remote attacker could use this issue to execute arbitrary commands with root privilege on the target…