An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka ‘Windows Data Sharing Service Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2020-0747. Date published...
An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka ‘Windows Common Log File System Driver Information Disclosure Vulnerability’. Date...
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka ‘Windows Common Log File System Driver Elevation of Privilege Vulnerability’. Date published :...
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an authenticated attacker abuses clipboard redirection, aka ‘Remote Desktop Services Remote Code Execution Vulnerability’. Date published...
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka ‘Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability’. Date published : 2020-02-11 http://packetstormsecurity.com/files/156707/SQL-Server-Reporting-Services-SSRS-ViewState-Deserialization.html http://packetstormsecurity.com/files/159216/Microsoft-SQL-Server-Reporting-Services-2016-Remote-Code-Execution.html
vBSeo before 3.6.0PL2 allows XSS via the member.php u parameter. Date published : 2020-02-10 https://www.exploit-db.com/exploits/37944 https://www.securityfocus.com/bid/55908
An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative password by default, and can...
The clientconf.html and detailbw.html pages in x3 in cPanel & WHM 11.34.0 (build 8) have a XSS vulnerability. Date published : 2020-02-10 https://packetstormsecurity.com/files/119113/C-Panel-WHM-11.34.0-Cross-Site-Scripting.html
BlackBerry PlayBook before 2.1 has an Information Disclosure Vulnerability via a Web browser component error Date published : 2020-02-10 http://www.securityfocus.com/bid/56793 https://exchange.xforce.ibmcloud.com/vulnerabilities/80555
InfoSphere Guardium aix_ktap module: DoS Date published : 2020-02-10 https://exchange.xforce.ibmcloud.com/vulnerabilities/76968
HP Systems Insight Manager before 7.0 allows a remote user on adjacent network to access information Date published : 2020-02-10 http://www.securityfocus.com/bid/53315 http://www.securitytracker.com/id?1026987
Multiple SQL injection vulnerabilities in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware before 1.08B77 allow...
Ajaxeplorer before 5.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) archive_name parameter to the Power FS module (plugins/action.powerfs/class.PowerFSController.php), a (2) file name to the getTrustSizeOnFileSystem function in the...
WordPress plugin wp-cleanfix has Remote Code Execution Date published : 2020-02-10 http://www.openwall.com/lists/oss-security/2013/05/18/11 https://exchange.xforce.ibmcloud.com/vulnerabilities/84434