Exploit PoC

Traccar tracking system has been discovered with two path traversal vulnerabilities that can be escalated to remote code execution. These vulnerabilities allow an unauthenticated threat actor to exploit and gain a reverse shell.

This vulnerability allows a threat actor to perform multiple activities such as remote command execution, create persistent access to the device, gain command and control, gather device location and much more.

ServiceNow is one of the most widely used platforms by organizations for several purposes including Ticket management, automation workflows, Knowledge bases, HR and employee management and many others. ServiceNow offers cloud-based instances that can be accessed easily

This vulnerability exists due to a os.path.join function in Python which removes the drive letter from path tokens if the drive in the token matches the drive in the built path. However, the path traversal exists on the /modules/messaging/ endpoint in Splunk Enterprise where Splunk Web is enabled.

To provide a short insight, Ollama is a popular open-source project for running AI models that has more than 75,000 starts on GitHub. This project specifically provides a simple process of packaging and deploying AI models. In other words, you can use Ollama to run a local LLM on your machine or a cloud machine.  […]

CVE-2023-52251 (8.8 - High) was publicly disclosed in Jan 2024 and was fixed in Apache Kafka version 0.7.2. CVE-2024-32030 (8.1 - High) was found in November 2023 and was also fixed in Apache Kafka version 0.7.2. Both of these vulnerabilities were associated with remote code execution on an API call to an endpoint. 

This vulnerability exists due to a simple hyphen (not just a simple hyphen it is a "Soft Hyphen"). A normal hyphen has the ASCII code of 0x2D whereas the Soft Hyphen has the ASCII code 0xAD.

This vulnerability was first disclosed on May 6, 2024 which allows unauthenticated attackers to read arbitrary files on the affected instance via Path Traversal. The severity for this vulnerability is yet to be categorized

This vulnerability allows an authenticated attacker with ADB access and Physical access to an Android device to read and write private data of almost any of the applications installed on the device by invoking system APIs. 

SolarWinds patched a High severity vulnerability in Serv-U File Transfer Solution that affects multiple Serv-U products in FTP Server, Gateway and MFT Server versions 15.4. This vulnerability has been assigned with CVE-2024-28995 and severity as 8.6 (High).