Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Sandbox Security Vulnerabilities

cve
cve

CVE-2023-51386

Sandbox Accounts for Events provides multiple, temporary AWS accounts to a number of authenticated users simultaneously via a browser-based GUI. Authenticated users could potentially read data from the events table by sending request payloads to the events API, collecting information on planned...

3.3CVSS

6.8AI Score

0.0004EPSS

2023-12-22 10:15 PM
10
cve
cve

CVE-2023-50928

"Sandbox Accounts for Events" provides multiple, temporary AWS accounts to a number of authenticated users simultaneously via a browser-based GUI. Authenticated users could potentially claim and access empty AWS accounts by sending request payloads to the account API containing non-existent event.....

9CVSS

7.2AI Score

0.001EPSS

2023-12-22 09:15 PM
11
cve
cve

CVE-2023-5579

A vulnerability was found in yhz66 Sandbox 6.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /im/user/ of the component User Data Handler. The manipulation leads to information disclosure. The exploit has been disclosed to the public and may.....

6.5CVSS

6.9AI Score

0.001EPSS

2023-10-14 12:15 PM
24
cve
cve

CVE-2009-10004

A vulnerability was found in Turante Sandbox Theme up to 1.5.2. It has been classified as problematic. This affects the function sandbox_body_class of the file functions.php. The manipulation of the argument page leads to cross site scripting. It is possible to initiate the attack remotely....

6.1CVSS

6.8AI Score

0.001EPSS

2023-04-10 12:15 AM
12
cve
cve

CVE-2023-0978

A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to...

6.7CVSS

6.9AI Score

0.0004EPSS

2023-03-13 02:15 PM
15
cve
cve

CVE-2008-5694

PHP remote file inclusion vulnerability in lib/jpgraph/jpgraph_errhandler.inc.php in Sandbox 1.4.1 might allow remote attackers to execute arbitrary PHP code via unspecified vectors. NOTE: the issue, if any, may be located in Aditus JpGraph rather than Sandbox. If so, then this should not be...

8.4AI Score

0.008EPSS

2008-12-19 06:30 PM
24
cve
cve

CVE-2005-2449

Race condition in sandbox before 1.2.11 allows local users to create or overwrite arbitrary files via symlink attack on...

6.6AI Score

0.0004EPSS

2005-08-03 04:00 AM
19