Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

OSV
OSVadded 2024/11/18 7:15 a.m.1 views

CVE-2024-11315

The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells...

9.8CVSS6.4AI score
Exploits0References2
Circl
Circladded 2024/11/18 6:53 a.m.11 views

CVE-2024-11315

creationtimestamp| type| source ---|---|--- 2024-11-18 06:53:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113502637834127072 2024-11-18 09:01:16+00:00| seen| https://t.me/cvedetector/11293 2026-06-21 13:37:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mosijlrs4m2y...

9.8CVSS5.8AI score0.01338EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/11/18 6:47 a.m.35 views

CVE-2024-11315 TRCore DVC - Arbitrary File Upload through Path Traversal

The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells...

9.8CVSS0.01338EPSS
Exploits0References2
Cvelist
Cvelistadded 2021/12/20 10:45 p.m.9 views

CVE-2020-11315

...

Exploits0
CVE
CVEadded 2021/12/20 10:45 p.m.32 views

CVE-2020-11315

CVE-2020-11315 entry is rejected/not used; this candidate was in CNA pool and not assigned to issues.

6.7AI score
Exploits0
Cvelist
Cvelistadded 2021/01/25 5:19 p.m.11 views

CVE-2019-11315

...

Exploits0
CVE
CVEadded 2021/01/25 5:19 p.m.24 views

CVE-2019-11315

CVE-2019-11315 is rejected and not used as an active vulnerability entry.

7.4AI score
Exploits0
Openbugbounty
Openbugbountyadded 2020/09/23 4:37 a.m.5 views

11315.com Cross Site Scripting vulnerability OBB-1357207

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
NVD
NVDadded 2018/05/20 1:29 p.m.13 views

CVE-2018-11315

The Local HTTP API in Radio Thermostat CT50 and CT80 1.04.84 and below products allows unauthorized access via a DNS rebinding attack. This can result in remote device temperature control, as demonstrated by a tstat theat request that accesses a device purchased in the Spring of 2018, and sets a...

6.5CVSS6.3AI score0.00802EPSS
Exploits1References3
CVE
CVEadded 2018/05/20 1:0 p.m.36 views

CVE-2018-11315

CVE-2018-11315 affects Radio Thermostat CT50/CT80 Local HTTP API (firmware 1.04.84 and earlier). The vulnerability arises from unauthorized access enabled by DNS rebinding, enabling a remote attacker to issue commands via the Local HTTP API and, as described, potentially control device temperatur...

6.5CVSS6.3AI score0.00802EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder