Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Nuclei
Nucleiadded yesterday19 views

SRS - Command Injection

SRS's v5.0.137v5.0.156, v6.0.18v6.0.47 api-server server is vulnerable to a drive-by command injection. id: CVE-2023-34105 info: name: SRS - Command Injection author: iamnoooob,rootxharsh,pdresearch severity: high description: | SRS's v5.0.137v5.0.156, v6.0.18v6.0.47 api-server server is vulnerab...

7.5CVSS7.3AI score0.0876EPSS
Exploits1References2
Circl
Circladded 2025/08/17 12:0 a.m.16 views

CVE-2023-34105

creationtimestamp| type| source ---|---|--- 2025-08-17 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-08-17 2025-08-19 21:02:31+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lwrsq2jwkz2c 2025-10-16 00:00:00+00:00| seen| The Shadowserver...

7.5CVSS7.1AI score0.0876EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:55 a.m.5 views

CVE-2023-34105

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS's api-server server is vulnerable to a drive-by command injection. An attacker may send a request to the /api/v1/snapshots endpoint containing an...

7.5CVSS8AI score0.0876EPSS
Exploits1References1
NVD
NVDadded 2023/06/12 5:15 p.m.14 views

CVE-2023-34105

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS's api-server server is vulnerable to a drive-by command injection. An attacker may send a request to the /api/v1/snapshots endpoint containing an...

7.5CVSS8.2AI score0.0876EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2023/06/12 4:30 p.m.13 views

CVE-2023-34105 SRS has command injection vulnerability in demonstration api-server for HTTP callback.

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS's api-server server is vulnerable to a drive-by command injection. An attacker may send a request to the /api/v1/snapshots endpoint containing an...

7.5CVSS8AI score0.0876EPSS
Exploits1References3
Cvelist
Cvelistadded 2023/06/12 4:30 p.m.23 views

CVE-2023-34105 SRS has command injection vulnerability in demonstration api-server for HTTP callback.

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS's api-server server is vulnerable to a drive-by command injection. An attacker may send a request to the /api/v1/snapshots endpoint containing an...

7.5CVSS8.4AI score0.0876EPSS
Exploits1References3
CVE
CVEadded 2023/06/12 4:30 p.m.86 views

CVE-2023-34105

SRS (Simple Real-time Server) api-server is vulnerable to drive-by command injection on POST /api/v1/snapshots in versions prior to 5.0.157, 5.0-b1, and 6.0.48, potentially leading to Remote Code Execution (RCE). Connected advisories confirm a fix in 5.0.157, 5.0-b1, and 6.0.48. Mitigate by updat...

7.5CVSS8.2AI score0.0876EPSS
In wildExploits1References3Affected Software1
Rows per page
Query Builder