Vulnerabilities (Page 10)

Injection of sed Commands Leading to Remote Code Execution in pfSense

web

Abusing an otherwise secure call to shell_execallows users to control part of the sed commands leading to code execution.One thing of note is that this is the FreeBSD version of sed which differs from the more common GNU version in that it doesn’t include the commands to directly execute commands…

 

Finding an Authorization Bypass on my Own Website

web

Permissive parsing strikes again, MySQLjs by would accept objects as values for a parameterized query with a somewhat surprising default behaviour. The key issue here though is that MySQLjs exposes an interface entirely like prepared statements, but is actually crafting the query on the client side rather than using server-side prepared statements.

 

Logic Flaw Leading to RCE in Dynamicweb 9.5.0 - 9.12.7

web

We touched on a similar issue last week in Zabbix where the ability to access the setup process after it was complete could lead to compromising the system. In this situation no extra trickery was necessary as it appears to have been a bad conditional allowing reentry to the setup functionality.

 
8
9
10
11
12
13
14