Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ CVE-2021-46850 | myVesta/Vesta Control Panel HTTP POST Request /edit/server v_sftp_license command injection (EDB-49674)
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š CVE-2021-46850 | myVesta/Vesta Control Panel HTTP POST Request /edit/server v_sftp_license command injection (EDB-49674)


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability, which was classified as critical, was found in myVesta/Vesta Control Panel. This affects an unknown part of the file /edit/server of the component HTTP POST Request Handler. The manipulation of the argument v_sftp_license leads to command injection. This vulnerability is uniquely identified as CVE-2021-46850. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component. ...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ Vesta Control Panel/myVesta UploadHandler.php unrestricted upload


๐Ÿ“ˆ 71.25 Punkte

๐Ÿ“Œ Vesta Control Panel up to 0.9.8-22 edit/web/ domain cross site scripting


๐Ÿ“ˆ 47.37 Punkte

๐Ÿ“Œ CVE-2019-9859 | Vesta Control Panel up to 0.9.8-23 escapeshellarg os command injection


๐Ÿ“ˆ 46.23 Punkte

๐Ÿ“Œ Vuln: Vesta Control Panel 'bin/v-get-web-domain-value' Script Local Command Injection Vulnerability


๐Ÿ“ˆ 45.04 Punkte

๐Ÿ“Œ Vuln: Vesta Control Panel 'bin/v-get-web-domain-value' Script Local Command Injection Vulnerability


๐Ÿ“ˆ 45.04 Punkte

๐Ÿ“Œ Vesta Control Panel up to 0.9.8 list/backup/index.php backup command injection


๐Ÿ“ˆ 45.04 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-24 UploadHandler.php command injection


๐Ÿ“ˆ 45.04 Punkte

๐Ÿ“Œ CVE-2022-3967 | Vesta Control Panel sed func/main.sh argument injection


๐Ÿ“ˆ 40.64 Punkte

๐Ÿ“Œ CVE-2022-29013 | Razer Sila Gaming Router 2.0.441_api-2.0.418 POST Request command command injection (ID 166684 / EDB-50865)


๐Ÿ“ˆ 39.45 Punkte

๐Ÿ“Œ CVE-2023-6901 | codelyfe Stupid Simple CMS up to 1.2.3 HTTP POST Request handle-command.php command os command injection


๐Ÿ“ˆ 36.44 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-15 Cross Site Scripting


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ [webapps] - Vesta Control Panel <= 0.9.8-15 - Persistent XSS Vulnerability


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ [local] - Vesta Control Panel 0.9.8-16 - Local Privilege Escalation


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-16 Local Privilege Escalation


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-15 Cross Site Scripting


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ [webapps] - Vesta Control Panel <= 0.9.8-15 - Persistent XSS Vulnerability


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ [local] - Vesta Control Panel 0.9.8-16 - Local Privilege Escalation


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-16 Local Privilege Escalation


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-20 view/file/index.php file_put_contents $_REQUEST['path'] cross site scripting


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta control panel servers infected with DDoS malware after supply chain attack


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ #0daytoday #Vesta Control Panel 0.9.8-26 - Authenticated Remote Code Execution Exploit [#0day #Exploit]


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel Authenticated Remote Code Execution


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ #0daytoday #Vesta Control Panel 0.9.8-26 - Authenticated Remote Code Execution Exploit [#0day #Exploit]


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-23 URL cross site scripting


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel 0.9.8-24 v-list-user directory traversal


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta/Hestia Control Panel Password Reset Host Header information disclosure


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel bis 0.9.8 list/backup/index.php backup erweiterte Rechte


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ [webapps] Vesta Control Panel 0.9.8-26 - Authenticated Remote Code Execution (Metasploit)


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Vesta Control Panel Authenticated Remote Code Execution


๐Ÿ“ˆ 35.93 Punkte

๐Ÿ“Œ Asternic Flash Operator Panel 2.31.03 User Control Panel command Command privilege escalation


๐Ÿ“ˆ 35.05 Punkte

๐Ÿ“Œ Asternic Flash Operator Panel 2.31.03 User Control Panel command Command erweiterte Rechte


๐Ÿ“ˆ 35.05 Punkte

๐Ÿ“Œ CVE-2015-7707 | Ignite Realtime Openfire 3.10.2 user-edit-form.jsp isadmin access control (ID 133559 / EDB-38190)


๐Ÿ“ˆ 29.35 Punkte

๐Ÿ“Œ CVE-2024-0718 | liuwy-dlsdys zhglxt 4.7.7 HTTP POST Request /oa/notify/edit notifyTitle cross site scripting


๐Ÿ“ˆ 27.59 Punkte

๐Ÿ“Œ JavaScript Post Request โ€“ How to Send an HTTP Post Request in JS


๐Ÿ“ˆ 27.27 Punkte

๐Ÿ“Œ CVE-2022-3790 | Flipbook Plugin on WordPress Edit Post post.php Shortcode cross site scripting


๐Ÿ“ˆ 27.24 Punkte











matomo

Kontakt

24/7 [email protected]

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software