Lucene search
K

32 matches found

Nuclei
Nuclei
added 14 hours ago23 views

CentOS Web Panel - OS Command Injection

The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerability leading to root Remote Code Execution. id: CVE-2021-31324 info: name: CentOS Web Panel - OS Command Injection author: ritikchaddha severity: critical description: | The unprivileged user portal...

10CVSS7.4AI score0.34062EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/11 2:34 p.m.23 views

CVE-2023-31324

A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...

7.1CVSS0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:3 a.m.9 views

CVE-2024-31324

In hide of WindowState.java, there is a possible way to bypass tapjacking/overlay protection by launching the activity in portrait mode first and then rotating it to landscape mode. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed...

7.8CVSS7.4AI score0.00103EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/05/10 6:52 p.m.243 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324 A proof of concept developed to exploit CVE-2...

10CVSS9.7AI score0.99359EPSS
Exploits18
The Hacker News
The Hacker News
added 2025/05/09 4:29 a.m.30 views

Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

A China-linked unnamed threat actor dubbed Chaya004 has been observed exploiting a recently disclosed security flaw in SAP NetWeaver. Forescout Vedere Labs, in a report published Thursday, said it uncovered a malicious infrastructure likely associated with the hacking group weaponizing...

10CVSS9.9AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/05/07 6:23 a.m.306 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

Info ░█▄█░█▀█░█░█░█░█░█░█░▀█▀░█▀█░█▀█░█▀▄░█░█ ░█░█░█▀▀░█░█░...

10CVSS9.5AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/05/01 6:44 p.m.453 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324 Zero-Day SAP Vulnerability & Compromise Assessm...

10CVSS9.2AI score0.99359EPSS
Exploits19
GithubExploit
GithubExploit
added 2025/04/30 1:39 p.m.451 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324-File-Upload A totally unauthenticated file-uplo...

10CVSS9.5AI score0.99359EPSS
Exploits18
NCSC
NCSC
added 2025/04/30 1:12 p.m.10 views

Vulnerabilities fixed in SAP products

SAP has fixed vulnerabilities in several products, including SAP Financial Consolidation, SAP Landscape Transformation, SAP NetWeaver Application Server ABAP, SAP Commerce Cloud, SAP ERP BW, SAP BusinessObjects Business Intelligence Platform, SAP KMC WPC, SAP Solution Manager, SAP S4CORE, and SAP...

10CVSS9.2AI score0.99359EPSS
Exploits31References4
GithubExploit
GithubExploit
added 2025/04/30 6:34 a.m.305 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324 Burp Suite Extension Overview This Python-b...

10CVSS10AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/29 12:16 a.m.371 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324PoC Proof-of-Concept for CVE-2025-31324: Unauth...

10CVSS9.8AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/28 8:32 p.m.266 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324PoC Proof-of-Concept for CVE-2025-31324: Unauth...

10CVSS9.8AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/28 1:19 p.m.264 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

SAP-CVE-2025-31324 POC A tool to detect and exploit a critica...

10CVSS9.8AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/28 1:43 a.m.124 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324-NUCLEI Nuclei template for...

10CVSS7.4AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/28 1:32 a.m.120 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

PoC - CVE-2025-31324 [email protected] Exploit de prueba par...

10CVSS9.4AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/27 4:40 p.m.348 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

Vulnerability and Indicator of Compromise IoC Scanner for CV...

10CVSS9.7AI score0.99359EPSS
Exploits18
GithubExploit
GithubExploit
added 2025/04/27 11:39 a.m.351 views

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324 CVE-2025-31324, SAP Exploit POST /developme...

10CVSS9.4AI score0.99359EPSS
Exploits18
HackRead
HackRead
added 2025/04/26 11:45 a.m.29 views

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

A critical vulnerability CVE-2025-31324 in SAP NetWeaver Visual Composer puts systems at risk of full compromise. Learn how…...

10CVSS7.1AI score0.99359EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2025/04/25 12:0 a.m.31 views

SAP NetWeaver Visual Composer Metadata Uploader Improper Authorization (CVE-2025-31324) (Direct Check)

Binary data sapnetweaverCVE-2025-31324.nbin...

10CVSS7.3AI score0.99359EPSS
Exploits18References4
NVD
NVD
added 2025/04/24 5:15 p.m.43 views

CVE-2025-31324

SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availabili...

10CVSS0.99359EPSS
Exploits18References6
Rows per page
Query Builder