Lucene search
K

22 matches found

Circl
Circl
added 2025/11/25 9:12 a.m.3 views

CVE-2025-13382

creationtimestamp| type| source ---|---|--- 2025-11-25 09:12:34+00:00| seen| https://gist.github.com/Darkcrai86/498dbaf17458b99c2bef2bd3d5a33248...

4.3CVSS5.8AI score0.00198EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 a.m.6 views

CVE-2019-13382

UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid presentation file in %PROGRAMDATA%\TechSmith\TechSmith Recorder\QueuedPresentations and then creating a symbolic link in %PROGRAMDATA%\Techsmith\TechSmith Recorder\InvalidPresentations that points to an arbitra...

9.3CVSS7AI score0.01561EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/15 8:7 p.m.14 views

CVE-2024-13382 Calculated Fields Form < 5.2.64 - Admin+ Stored XSS

The Calculated Fields Form WordPress plugin before 5.2.64 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

0.00266EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/04/02 8:0 p.m.9 views

WordPress Calculated Fields Form plugin < 5.2.64 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Calculated Fields Form versions 5.2.64...

4.8CVSS7.4AI score0.00266EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2022/02/15 12:0 a.m.19 views

Magnolia CMS has an unspecified vulnerability (CNVD-2022-13382)

Magnolia CMS is an application of the Swiss company Magnolia. Magnolia CMS, a website building framework, is provided with a security vulnerability that can be exploited by attackers to execute arbitrary code via a crafted YAML file...

7.8CVSS6.5AI score0.01473EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2020/11/19 12:0 a.m.967 views

Fortinet FortiOS 6.0.4 Password Modification

Exploit Title: Fortinet FortiOS 6.0.4 - Unauthenticated SSL VPN User Password Modification Google Dork: intitle:"Please Login" "Use FTM Push" Date: 15/11/2020 Exploit Author: Ricardo Longatto Details: This exploit allow change users password from SSLVPN web portal Vendor Homepage:...

5CVSS0.81691EPSS
Exploits2
Exploit DB
Exploit DB
added 2020/11/19 12:0 a.m.863 views

Fortinet FortiOS 6.0.4 - Unauthenticated SSL VPN User Password Modification

Exploit Title: Fortinet FortiOS 6.0.4 - Unauthenticated SSL VPN User Password Modification Google Dork: intitle:"Please Login" "Use FTM Push" Date: 15/11/2020 Exploit Author: Ricardo Longatto Details: This exploit allow change users password from SSLVPN web portal Vendor Homepage:...

9.1CVSS8.4AI score0.81691EPSS
Exploits2
Circl
Circl
added 2020/07/04 3:40 p.m.9 views

CVE-2020-13382

creationtimestamp| type| source ---|---|--- 2020-07-04 15:40:00+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/opensischainexec.rb 2025-02-06 03:13:44+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:23+00:00| seen|...

9.1CVSS7.2AI score0.52814EPSS
Exploits6References1
NVD
NVD
added 2020/07/01 3:15 p.m.21 views

CVE-2020-13382

openSIS through 7.4 has Incorrect Access Control...

9.1CVSS0.52814EPSS
Exploits6References3
CVE
CVE
added 2020/07/01 2:20 p.m.91 views

CVE-2020-13382

OpenSIS

9.1CVSS9.2AI score0.52814EPSS
Exploits6References3Affected Software1
0day.today
0day.today
added 2020/06/30 12:0 a.m.201 views

openSIS 7.4 Incorrect Access Control Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------- openSIS = 7.4 Incorrect Access Control Vulnerabilities ------------------------------------------------------- - Software Link: https://opensis.com/ - Affected Versions: Version 7.4 and...

6.4CVSS0.4AI score0.52814EPSS
Exploits6
Packet Storm
Packet Storm
added 2020/06/30 12:0 a.m.206 views

openSIS 7.4 Incorrect Access Control

------------------------------------------------------- openSIS = 7.4 Incorrect Access Control Vulnerabilities ------------------------------------------------------- - Software Link: https://opensis.com/ - Affected Versions: Version 7.4 and prior versions. - Vulnerabilities Description: The...

0.4AI score0.52814EPSS
Exploits6
NVD
NVD
added 2019/07/26 1:15 p.m.27 views

CVE-2019-13382

UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid presentation file in %PROGRAMDATA%\TechSmith\TechSmith Recorder\QueuedPresentations and then creating a symbolic link in %PROGRAMDATA%\Techsmith\TechSmith Recorder\InvalidPresentations that points to an arbitra...

9.3CVSS7.7AI score0.01561EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/07/26 12:25 p.m.33 views

CVE-2019-13382

UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid presentation file in %PROGRAMDATA%\TechSmith\TechSmith Recorder\QueuedPresentations and then creating a symbolic link in %PROGRAMDATA%\Techsmith\TechSmith Recorder\InvalidPresentations that points to an arbitra...

7.7AI score0.01561EPSS
Exploits1References3
CVE
CVE
added 2019/07/26 12:25 p.m.352 views

CVE-2019-13382

The CVE describes a local privilege escalation in SnagIT. UploaderService in SnagIT 2019.1.2 allows an attacker to elevate privileges by placing an invalid presentation file in %PROGRAMDATA%\TechSmith\TechSmith Recorder\QueuedPresentations and then creating a symbolic link in %PROGRAMDATA%\Techsm...

9.3CVSS7.6AI score0.01561EPSS
In wildExploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.56 views

Fortinet FortiOS (Mac OS X) 5.4.1 < 5.4.11 / 5.6.x < 5.6.9 / 6.0.x < 6.0.5 SSL VPN Security Bypass (FG-IR-18-389) (deprecated)

The plugin was deprecated due to checking hosts for FortiClient instead of FortiOS. Use fortiosFG-IR-18-389.nasl plugin ID 125888 instead. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2020/11/18. Deprecated by fortiosFG-IR-18-389.nasl include"compat.inc"; if description scriptid12589...

9.1CVSS7.7AI score0.81691EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/06/14 12:0 a.m.63 views

Fortinet FortiOS 5.4.1 < 5.4.11 / 5.6.x < 5.6.9 / 6.0.x < 6.0.5 SSL VPN Security Bypass (FG-IR-18-389)

The remote host is running a version of FortiOS 5.4.1 prior to 5.4.11, 5.6.x prior to 5.6.9 or 6.0.x prior to 6.0.5. It is, therefore, affected by a security bypass vulnerability in the SSL VPN web portal, due to an error when processing HTTP requests. A remote, unauthenticated attacker can explo...

9.1CVSS7.8AI score0.81691EPSS
Exploits2References2
Circl
Circl
added 2019/06/05 12:26 a.m.17 views

CVE-2018-13382

creationtimestamp| type| source ---|---|--- 2019-06-05 00:26:12+00:00| seen| https://t.me/cibsecurity/4683 2019-08-14 01:53:52+00:00| exploited| https://t.me/Pen7esting/339 2022-06-08 19:35:04+00:00| published-proof-of-concept| https://t.me/truesecator/3042 2022-06-13 12:18:44+00:00| seen|...

9.1CVSS7.1AI score0.81691EPSS
Exploits2References8
NVD
NVD
added 2019/06/04 9:29 p.m.32 views

CVE-2018-13382

An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated attacker to modify the password of an SSL VPN web portal user via...

9.1CVSS9.3AI score0.81691EPSS
Exploits2References3
Cvelist
Cvelist
added 2019/06/04 8:33 p.m.40 views

CVE-2018-13382

An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated attacker to modify the password of an SSL VPN web portal user via...

9.1CVSS9.3AI score0.81691EPSS
Exploits2References2
Rows per page
Query Builder