Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:11 p.m.8 views

CVE-2022-36455

TOTOLink A3600R V4.1.2cu.5182B20201102 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

7.8CVSS8AI score0.01086EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:12 p.m.8 views

CVE-2021-36455

SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php...

8.8CVSS8.2AI score0.01104EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:37 p.m.7 views

CVE-2020-36455

An issue was discovered in the slock crate through 2020-11-17 for Rust. Slock unconditionally implements Send and Sync...

8.1CVSS6.9AI score0.01311EPSS
Exploits1
Circl
Circl
added 2024/07/15 4:50 p.m.8 views

CVE-2024-36455

creationtimestamp| type| source ---|---|--- 2024-07-15 16:50:57+00:00| seen| https://t.me/cvedetector/873...

9.4CVSS4.8AI score0.00475EPSS
Exploits0References1
NVD
NVD
added 2024/07/15 2:15 p.m.17 views

CVE-2024-36455

An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request...

9.4CVSS0.00475EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/15 1:19 p.m.21 views

CVE-2024-36455 Symantec Privileged Access Manager Remote Command Execution vulnerability

An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request...

9.4CVSS0.00475EPSS
Exploits0References1
Circl
Circl
added 2022/08/25 6:23 p.m.7 views

CVE-2022-36455

creationtimestamp| type| source ---|---|--- 2022-08-25 18:23:21+00:00| seen| https://t.me/cibsecurity/48718...

7.8CVSS7.5AI score0.01086EPSS
Exploits1References1
OSV
OSV
added 2022/08/25 3:15 p.m.4 views

CVE-2022-36455

TOTOLink A3600R V4.1.2cu.5182B20201102 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

7.8CVSS5.8AI score0.01086EPSS
Exploits1References1
CVE
CVE
added 2022/08/25 2:6 p.m.65 views

CVE-2022-36455

TOTOLink A3600R firmware 4.1.2cu.5182_B20201102 contains a command injection vulnerability in the /cstecgi.cgi endpoint where the username parameter is unsafely handled. The root cause is improper input handling in this API, enabling an attacker with local access to execute arbitrary commands wit...

7.8CVSS7.8AI score0.01086EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/08/25 2:6 p.m.24 views

CVE-2022-36455

TOTOLink A3600R V4.1.2cu.5182B20201102 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi...

8.1AI score0.01086EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2021/08/08 5:14 a.m.23 views

CVE-2020-36455

An issue was discovered in the slock crate through 2020-11-17 for Rust. Slock unconditionally implements Send and Sync...

8.1CVSS2AI score0.01311EPSS
Exploits1References2
CVE
CVE
added 2021/08/08 5:14 a.m.110 views

CVE-2020-36455

The CVE-2020-36455 issue affects the Rust crate slock. The vulnerability stems from Slock unconditionally implementing Send and Sync, allowing non-Send types to be sent across threads. This can enable data races and memory corruption as various OSV/NVD entries describe the same core problem, with...

8.1CVSS7.9AI score0.01311EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/08/06 3:25 p.m.84 views

CVE-2021-36455

CVE-2021-36455 affects Naviwebs Navigate CMS 2.9. The vulnerability is a SQL Injection in the quicksearch parameter of lib/packages/comments/comments.php, caused by insufficient input filtering. Documents confirm the affected product/version and root cause; no explicit exploitation details are pr...

8.8CVSS9.1AI score0.01104EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder