Lucene search
K

9263 matches found

GithubExploit
GithubExploit
added 2022/01/27 2:31 a.m.418 views

Exploit for Off-by-one Error in Sudo_Project Sudo

CVE-2021-3156 toc Vulnerability profile Vulnerabilit...

7.8CVSS7.2AI score0.99295EPSS
Exploits81
Gitee
Gitee
added 2022/01/26 10:17 p.m.13 views

Exploit for OS Command Injection in Docker

The repository is a proof-of-concept PoC exploit for CVE-2019-5736, a container escape vulnerability in Docker. The PoC is written in Go and is designed to overwrite the /bin/sh binary in a container with a malicious interpreter path, allowing for code execution on the host system. The exploit...

9.3CVSS7.9AI score0.9857EPSS
Exploits33
GithubExploit
GithubExploit
added 2022/01/26 5:49 p.m.221 views

Exploit for Out-of-bounds Write in Polkit_Project Polkit

CVE-2021-4034 - Docker Container Deliberately Vulnerable Versi...

7.8CVSS7.5AI score0.94921EPSS
Exploits151
GithubExploit
GithubExploit
added 2022/01/26 4:27 p.m.331 views

Exploit for Integer Overflow or Wraparound in Linux Linux_Kernel

Container running cve-2022-0185 crash POC !seccomp or busth...

8.4CVSS7.1AI score0.25151EPSS
Exploits11
GithubExploit
GithubExploit
added 2022/01/26 2:59 p.m.223 views

Exploit for Out-of-bounds Write in Polkit_Project Polkit

CVE-2021-4034...

7.8CVSS7.6AI score0.94921EPSS
Exploits151
GithubExploit
GithubExploit
added 2022/01/26 11:2 a.m.459 views

Exploit for Path Traversal in Apache Http_Server

CVE-2021-41773-exercise A flaw was found in a change made to p...

7.5CVSS9.5AI score0.99992EPSS
Exploits148
GithubExploit
GithubExploit
added 2022/01/26 10:58 a.m.695 views

Exploit for Out-of-bounds Write in Polkit_Project Polkit

CVE-2021-4034 PolKit Local Lift Analysis toc Vulnerabil...

7.8CVSS7.2AI score0.94921EPSS
Exploits151
CNVD
CNVD
added 2022/01/26 12:0 a.m.20 views

TeslaMate Elevation of Privilege Vulnerability

TeslaMate is an open source project, a self-hosted data logger for Tesla. versions prior to TeslaMate 1.25.1 contain an elevation of privilege vulnerability that stems from Tesla's use of the default Docker configuration, which allows an attacker to use Grafana login access to obtain a token for...

9.8CVSS3.6AI score0.0227EPSS
Exploits0References1
Kitploit
Kitploit
added 2022/01/25 11:30 a.m.26 views

FACT - A Tool To Collect, Process And Visualise Forensic Data From Clusters Of Machines Running In The Cloud Or On-Premise

FACT is a tool to collect, process and visualise forensic data from clusters of machines running in the cloud or on-premise. Deployment For a basic single-node deployment, we recommend using Docker and Docker Compose. First, read docker-compose.yaml for configuration and requirements. Then, start...

7.2AI score
Exploits0References8
GithubExploit
GithubExploit
added 2022/01/24 10:16 p.m.288 views

Exploit for Integer Overflow or Wraparound in Haproxy

CVE-2021-40346 Integer overflow on header request internal re...

7.5CVSS8AI score0.56083EPSS
Exploits5
ATTACKERKB
ATTACKERKB
added 2022/01/24 7:15 p.m.18 views

CVE-2022-23126

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

9.8CVSS5.8AI score0.0227EPSS
Exploits0References7
OSV
OSV
added 2022/01/24 7:15 p.m.15 views

CVE-2022-23126

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

9.8CVSS6.7AI score
Exploits0References5
Prion
Prion
added 2022/01/24 7:15 p.m.18 views

Open redirect

TeslaMate before 1.25.1 when using the default Docker configuration allows attackers to open doors of Tesla vehicles, start Keyless Driving, and interfere with vehicle operation en route. This occurs because an attacker can leverage Grafana login access to obtain a token for Tesla API calls...

7.5CVSS9.2AI score0.0227EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2022/01/24 6:7 p.m.149 views

CVE-2022-23126

TeslaMate prior to 1.25.1 (default Docker config) is vulnerable: an attacker can leverage Grafana login access to obtain a Tesla API token, enabling door opening, initiating Keyless Driving, and interference with vehicle operation en route. Affected component: the TeslaMate Docker deployment; roo...

9.8CVSS9.2AI score0.0227EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2022/01/24 6:5 p.m.41 views

CVE-2022-20617

An OS command execution vulnerability was found in the Jenkins Docker Commons plugin. Due to a lack of sanitization in the name of an image or a tag, an attacker with Item/Configure permission or the ability to control the contents of a previously configured job’s SCM repository may be able to...

8.8CVSS1.9AI score0.02277EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/01/24 12:0 a.m.5 views

TeslaMate 授权问题漏洞

TeslaMate is an open source project, a self-hosted data logger for Tesla. versions prior to TeslaMate 1.25.1 contain an elevation of privilege vulnerability that stems from Tesla's use of the default Docker configuration, which allows an attacker to use Grafana login access to obtain a token for...

9.8CVSS5.7AI score0.0227EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/01/24 12:0 a.m.29 views

GLSA-202107-23 : Docker: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202107-23 Docker: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Docker. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...

6.8CVSS7AI score0.03287EPSS
Exploits0References3
Kitploit
Kitploit
added 2022/01/23 11:30 a.m.28 views

Second-Order - Subdomain Takeover Scanner

Scans web applications for second-order subdomain takeover by crawling the app, and collecting URLs and other data that match certain rules, or respond in a certain way. Installation From binary Download a prebuilt binary from the releases page and unzip it. From source Go version 1.17 is...

7.3AI score
Exploits0References7
GithubExploit
GithubExploit
added 2022/01/22 1:35 p.m.1514 views

Exploit for SQL Injection in Phpipam

CVE-2022-23046 The original discovery and manual PoC is from...

7.2CVSS7.1AI score0.25243EPSS
Exploits7
Kitploit
Kitploit
added 2022/01/22 11:30 a.m.121 views

Pwndora - Massive IPv4 Scanner, Find And Analyze Internet-Connected Devices In Minutes, Create Your Own IoT Search Engine At Home

Pwndora is a massive and fast IPv4 address range scanner, integrated with multi-threading. Using sockets, it analyzes which ports are open, and collects more information about targets, each result is stored in Elasticsearch. You can integrate with Kibana to be able to visualize and manipulate dat...

6.9AI score
Exploits0References5
Rows per page
Query Builder