14 matches found
CVE-2024-12971
Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command Injection.This issue affects Pandora FMS from 700 to 777.6...
CVE-2024-12971
Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command Injection.This issue affects Pandora FMS from 700 to 777.6...
CVE-2024-12971
creationtimestamp| type| source ---|---|--- 2025-03-17 09:46:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7749 2025-03-17 13:17:08+00:00| seen| https://t.me/cvedetector/20456 2025-03-17 13:51:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lklcf3k33y2w 2025-03-25...
CVE-2024-12971
CVE-2024-12971 affects Pandora FMS versions 700–777.6. The issue is an OS command injection caused by improper neutralization of special elements in commands, enabling execution of arbitrary commands. Public exploitation is demonstrated by a Metasploit module that requires admin access to Pandora...
CVE-2024-12971 QuickShell Authenticated Command Injection
Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command Injection.This issue affects Pandora FMS from 700 to 777.6...
CVE-2020-12971
...
CVE-2019-12971
creationtimestamp| type| source ---|---|--- 2019-07-05 22:59:59+00:00| seen| https://t.me/cveNotify/264...
CVE-2019-12971
BKS EBK Ethernet-Buskoppler Pro before 3.01 allows Unrestricted Upload of a File with a Dangerous Type...
CVE-2019-12971
The CVE-2019-12971 entry concerns the BKS EBK Ethernet-Buskoppler Pro, affected versions before 3.01. The vulnerability is an Unrestricted Upload of a File with a Dangerous Type (CWE-434) that enables remote code execution via an unauthenticated upload path through Samba. Public disclosures (SySS...
CVE-2019-12971
BKS EBK Ethernet-Buskoppler Pro before 3.01 allows Unrestricted Upload of a File with a Dangerous Type...
BKS EBK Ethernet-Buskoppler Pro Shell Upload
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2019-017 Product: BKS EBK Ethernet-Buskoppler Pro Manufacturer: BKS GmbH Affected Versions: 3.01 Vulnerability Type: Unrestricted Upload of File with Dangerous Type CWE-434 Risk Level: High Solution Status: Fixed Manufacturer...
CVE-2017-12971
Cross-site scripting XSS vulnerability in Apache2Triad 1.5.4 allows remote attackers to inject arbitrary web script or HTML via the account parameter to phpsftpd/users.php...
CVE-2017-12971
Apache2Triad 1.5.4 has a Persistent Cross-Site Scripting (XSS) vulnerability (CVE-2017-12971) in which an attacker can inject script/HTML via the account parameter to phpsftpd/users.php. The available sources confirm the affected product and vulnerable component (Apache2Triad 1.5.4) and the vulne...
Apache2Triad 1.5.4 - Multiple Vulnerabilities
Exploit for php platform in category web applications + Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/APACHE2TRIAD-SERVER-STACK-v1.5.4-MULTIPLE-CVE.txt + ISR: ApparitionSec Vendor: =============== apache2triad.net...