Lucene search
+L

4 matches found

ptsecurity
ptsecurity
added 2025/08/20 12:0 a.m.11 views

PT-2025-34073 · Jantent · Jantent

Name of the Vulnerable Software and Affected Versions: Jantent version 1.1 Description: Incorrect access control in Jantent version 1.1 allows attackers to bypass authentication and access sensitive APIs without a token. Recommendations: At the moment, there is no information about a newer versio...

9.8CVSS6.3AI score0.00397EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/07/02 1:46 p.m.10 views

CVE-2025-34073 stamparm/maltrail <=0.54 Remote Command Execution

An unauthenticated command injection vulnerability exists in stamparm/maltrail Maltrail versions =0.54. A remote attacker can execute arbitrary operating system commands via the username parameter in a POST request to the /login endpoint. This occurs due to unsafe handling of user-supplied input...

10CVSS8.8AI score0.03884EPSS
Exploits1References5
cvelist
cvelist
added 2025/07/02 1:46 p.m.16 views

CVE-2025-34073 stamparm/maltrail <=0.54 Remote Command Execution

An unauthenticated command injection vulnerability exists in stamparm/maltrail Maltrail versions =0.54. A remote attacker can execute arbitrary operating system commands via the username parameter in a POST request to the /login endpoint. This occurs due to unsafe handling of user-supplied input...

10CVSS0.03884EPSS
Exploits1References5
circl
circl
added 2023/08/16 10:1 p.m.13 views

CVE-2025-34073

creationtimestamp| type| source ---|---|--- 2023-08-16 22:01:49+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/http/maltrailrce.rb 2025-07-04 21:02:22+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lt65boaqfs2s 2025-08-15...

10CVSS4.8AI score0.03884EPSS
Exploits1References3
Rows per page
Query Builder