漏洞分类 - 代码执行 - Code Execution - Seebug 漏洞平台

漏洞分类 — 代码执行

英文名字: Code Execution

漏洞详情：: 代码执行漏洞是用户通过浏览器提交执行命令，由于服务器端没有针对执行函数做过滤，导致在没有指定绝对路径的情况下就执行命令，可能会允许攻击者通过改变 $PATH 或程序执行环境的其他方面来执行一个恶意构造的代码。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-97958	2019-05-22		Cisco Prime Infrastructure Health Monitor HA TarArchive Directory Traversal Remote Code Execution Vulnerability(CVE-2019-1821)		4605 \| 0
SSV-97956	2019-05-20		PHP-Fusion < 9.03.00 "编辑配置文件" 远程执行代码漏洞		4636 \| 0
SSV-97955	2019-05-16		Schneider Electric U.Motion Builder Remote Code Execution(CVE-2018-7841)		5329 \| 0
SSV-97954	2019-05-15		Remote Desktop Services Remote Code Execution Vulnerability(CVE-2019-0708)		12575 \| 12
SSV-97937	2019-05-13		Four Faith Industrial routers Command Injection RCE Reverse Shell		4403 \| 4
SSV-97922	2019-04-22		SeaCms V9.2 后台任意代码执行		5630 \| 4
SSV-97920	2019-04-20		Oracle WebLogic wls9-async组件存在反序列化远程命令执行漏洞		13825 \| 0
SSV-97907	2019-04-12		AntSword XSS/RCE		4955 \| 0
SSV-97906	2019-04-12		Nagios XI 5.5.10: XSS to RCE		5044 \| 0
SSV-97905	2019-04-12		Apache Tomcat Remote Code Execution on Windows(CVE-2019-0232 )		16313 \| 12
SSV-97903	2019-04-10		戴尔KACE K1000远程执行代码		4056 \| 1
SSV-97901	2019-04-10		CVE-2019-0227: Expired Domain to Remote Code Execution in Apache Axis		6004 \| 0
SSV-97898	2019-04-04		Atlassian Confluence Widget Connector macro 远程代码执行 - CVE-2019-3396		6853 \| 0
SSV-97891	2019-04-01		VMware Fusion 11 - Guest VM RCE - CVE-2019-5514		4903 \| 0
SSV-97887	2019-03-30		Remote code execution as root from the local network on TP-Link SR20 routers		5883 \| 0
SSV-97881	2019-03-29		Jfinal cms Background RCE		2044 \| 0
SSV-97872	2019-03-27		ORACLE PEOPLESOFT远程执行代码		4604 \| 0
SSV-97871	2019-03-26		Social Warfare XSS and RCE Vulnerabilities and Attack Data		6534 \| 0
SSV-97868	2019-03-23		Consul RCE 漏洞		6382 \| 0
SSV-97866	2019-03-18		A Saga of Code Executions on Zimbra		12709 \| 5
SSV-97857	2019-03-14		WordPress 5.1 CSRF to Remote Code Execution		5890 \| 1
SSV-97855	2019-03-13		Adobe ColdFusion 反序列化 RCE 漏洞分析(CVE-2019-7091)		6959 \| 0
SSV-97851	2019-03-11		Metinfo利用sql注入快速getshell		7114 \| 0
SSV-97850	2019-03-11		Deserialization of untrusted data via jmx.serviceUrl(CVE-2019-0192)		6346 \| 0
SSV-97826	2019-03-04		OpenMRS Platform Insecure Object Deserialization		4595 \| 0
SSV-97825	2019-02-27		Splunk Universal Forwarder远程代码执行漏洞		4843 \| 0
SSV-97818	2019-02-21		WinRAR 代码执行漏洞		6021 \| 0
SSV-97817	2019-02-20		WordPress 5.0.0 Remote Code Execution		7363 \| 0
SSV-97816	2019-02-20		Windows DHCP Server远程代码执行漏洞（CVE-2019-0626）		5830 \| 0
SSV-97814	2019-02-19		mIRC <7.55 RCE using argument injection through custom URI protocol handlers (CVE-2019-6453)		3827 \| 0
SSV-97809	2019-02-15		Nexus Repository Manager 3 访问控制缺失及远程代码执行漏洞(CVE-2019-7238)		6318 \| 0
SSV-97807	2019-02-15		Jenkins Multiple Security Bypass Vulnerabilities		6868 \| 0
SSV-97796	2019-02-12		Libreoffice - Remote Code Execution (CVE-2018-16858)		4145 \| 0
SSV-97795	2019-02-12		runc容器逃逸漏洞 (CVE-2019-5736)		5776 \| 0
SSV-97782	2019-01-25		Magento – RCE & Local File Read with low privilege admin rights		4468 \| 0
SSV-97780	2019-01-25		Security research: ThingsPro Suite – IIoT gateway and device manager by Moxa		4053 \| 0
SSV-97769	2019-01-14		Xterm.js远程代码执行漏洞 (CVE-2019-0542)		3928 \| 0
SSV-97767	2019-01-11		Thinkphp 5.0.x 远程代码执行漏洞		14541 \| 1
SSV-97756	2018-12-28		LimeSurvey 2.72.3 - Persistent XSS to Code Execution		4149 \| 0
SSV-97754	2018-12-28		PrestaShop 1.7.2.4 Code Execution		4144 \| 0
SSV-97753	2018-12-27		Pydio 8.2.1 Unauthenticated Remote Code Execution		3890 \| 0
SSV-97752	2018-12-27		phpBB 3.2.3 Phar Deserialization to RCE		4957 \| 0
SSV-97749	2018-12-26		Nuxeo 认证绕过和RCE漏洞 (CVE-2018-16341)		4813 \| 0
SSV-97748	2018-12-26		Netatalk Out-of-bounds Write (CVE-2018-1160)		3850 \| 0
SSV-97728	2018-12-17		empire(帝国)CMS 最新版(v7.5)一处后台getshell		9885 \| 0
SSV-97720	2018-12-12		SQLite远程代码执行漏洞		5313 \| 0
SSV-97718	2018-12-11		ShopSn v2.3.6 getshell		4460 \| 0
SSV-97705	2018-12-07		GitHub Desktop RCE (OSX)		3847 \| 0
SSV-97694	2018-11-30		Live Networks LIVE555 streaming media RTSPServer lookForHeader code execution vulnerability (CVE-2018-4013)		3173 \| 0
SSV-97689	2018-11-28		PHPCMS 2008 代码注入漏洞 (CVE-2018-19127)		6914 \| 0
SSV-97684	2018-11-21		Atlantis Word Processor rich text format uninitialized TAutoList RCE(CVE-2018-4040)		3195 \| 0
SSV-97683	2018-11-21		Atlantis Word Processor Huffman table code length RCE(CVE-2018-4039)		3123 \| 0
SSV-97682	2018-11-21		Atlantis Word Processor open document format unchecked NewAnsiString length RCE(CVE-2018-4038)		3163 \| 0
SSV-97675	2018-11-15		Atlassian Jira Authenticated Upload Code Execution		4185 \| 0
SSV-97674	2018-11-13		Link-Net LW-N605R 12.20.2.1486 - Remote Code Execution (CVE-2018-16752)		3913 \| 3
SSV-97672	2018-11-12		Microsoft .NET Framework Remote Code Execution Vulnerability (CVE-2018-8421)		4317 \| 0
SSV-97668	2018-11-08		WordPress Design Flaw Leads to WooCommerce RCE		4103 \| 0
SSV-97666	2018-11-08		Paramiko < 2.4.1 - Remote Code Execution (CVE-2018-7750)		4106 \| 0
SSV-97665	2018-11-08		Red Hat JBoss EAP RichFaces Remote Code Execution (CVE-2018-14667)		4121 \| 0
SSV-97658	2018-11-06		Gogs/Gitea 远程代码执行漏洞（CVE-2018-18925/6）		5887 \| 0
SSV-97657	2018-11-06		Advantech WebAccess Multiple Vulnerabilities		3929 \| 0
SSV-97654	2018-11-05		Netgear NTV200-100NAS Code Execution Vulnerability		3507 \| 0
SSV-97651	2018-11-05		Axentra Hipserv NAS OS RCE via XXE & SSRF(CVE-2018-18471)		3634 \| 0
SSV-97649	2018-11-02		BleedingBit蓝牙芯片远程代码执行漏洞		4189 \| 0
SSV-97647	2018-11-02		Yi Technology Home Camera 27US cloudAPI SSID Code Execution Vulnerability		3835 \| 0
SSV-97643	2018-11-01		Yi Technology Home Camera 27US TimeSync Code Execution Vulnerability		3911 \| 0
SSV-97640	2018-11-01		Yi Technology Home Camera 27US QR Code trans_info Code Execution Vulnerability		3772 \| 0
SSV-97639	2018-11-01		Yi Technology Home Camera 27US Firmware 7z CRC Collision Vulnerability		3698 \| 0
SSV-97638	2018-11-01		Yi Technology Home Camera 27US QR Code Base64 Code Execution Vulnerability		3744 \| 0
SSV-97636	2018-11-01		Yi Technology Home Camera 27US Firmware Update Code Execution Vulnerability(CVE-2018-3890)		3305 \| 0
SSV-97634	2018-10-31		Apple's XNU operating system kernel RCE(CVE-2018-4407)		5262 \| 0
SSV-97621	2018-10-19		WebLogic 反序列化远程命令执行漏洞(CVE-2018-3191)		8764 \| 1
SSV-97617	2018-10-19		Drupal Contextual Links validation Remote Code Execution		4242 \| 0
SSV-97616	2018-10-19		Drupal DefaultMailSystem::mail Remote Code Execution		4062 \| 0
SSV-97613	2018-10-17		WebLogic 反序列化远程命令执行漏洞(CVE-2018-3245)		9540 \| 0
SSV-97604	2018-10-12		Microsoft Edge Remote Code Execution		5413 \| 0
SSV-97597	2018-10-10		Remote Code Execution via XMeye P2P Cloud		3822 \| 0
SSV-97590	2018-10-09		Microsoft COM for Windows RCE Vulnerability		4058 \| 0
SSV-97589	2018-10-09		Cisco Prime Infrastructure File Inclusion and RCE		4433 \| 0
SSV-97583	2018-10-08		phpyun v4.6 后台代码执行可getshell		5160 \| 0
SSV-97575	2018-09-27		Phpmywind v5.5代码执行（2）		5025 \| 1
SSV-97573	2018-09-27		phpmywind v5.5 后台配置文件代码执行getshell		4972 \| 0
SSV-97570	2018-09-25		HPE Intelligent Management Center (iMC) PLAT Java RMI RCE		3848 \| 0
SSV-97564	2018-09-25		Schneider Electric InduSoft Web Studio and InTouch Machine Edition RCE		3596 \| 0
SSV-97559	2018-09-21		Cisco Prime Data Center Network Manager RCE		4301 \| 0
SSV-97554	2018-09-21		Western Digital TV Media Player and Live Hub Unauthenticated RCE		3401 \| 0
SSV-97547	2018-09-20		AVEVA InduSoft Web Studio and InTouch Machine Edition RCE		3506 \| 0
SSV-97541	2018-09-19		REMOTE CODE EXECUTION VIA PHP UNSERIALIZE IN MOODLE (CVE-2018-14630)		4004 \| 0
SSV-97538	2018-09-19		Multiple NUUO NVRMini2 Vulnerabilities		3666 \| 0
SSV-97537	2018-09-18		Apache Syncope 2.0.7 - Remote Code Execution		3601 \| 0
SSV-97530	2018-09-14		Adobe ColdFusion 反序列化漏洞(CVE-2018-15958, CVE-2018-15959)		4635 \| 0
SSV-97528	2018-09-12		Logicspice FAQ Script 2.9.7 - Remote Code Execution		3617 \| 0
SSV-97526	2018-09-12		seacms v6.64 后台可写入一句话		4370 \| 0
SSV-97516	2018-09-07		大米CMSv6.0.1 后台可写入一句话		4782 \| 0
SSV-97514	2018-09-03		yccms3.3 代码执行（二）		4652 \| 0
SSV-97513	2018-09-03		yccms3.3 代码执行漏洞		4623 \| 0
SSV-97510	2018-08-30		Discuz! 1.5-2.5 后台命令执行漏洞(CVE-2018-14729)		8173 \| 0
SSV-97508	2018-08-29		Electron WebPreferences Remote Code Execution Finding(CVE-2018-15685)		4831 \| 0
SSV-97501	2018-08-28		EmpireCMS后台任意代码执行		8265 \| 0
SSV-97467	2018-08-08		OpenEMR < 5.0.1 - Remote Code Execution		4019 \| 0

1
2
3
4
5
6
7
8
9
10
...
25