Lucene search
K

6 matches found

NVD
NVD
added 2026/05/08 7:16 a.m.9 views

CVE-2025-55449

AstrBotDevs AstrBot 3.5.15 has AdvancedSystemforTextResponseandBotOperationsTool as the hardcoded private key used to sign a JWT...

7.3CVSS0.00281EPSS
Exploits2References2
Cvelist
Cvelist
added 2026/05/08 12:0 a.m.39 views

CVE-2025-55449

AstrBotDevs AstrBot 3.5.15 has AdvancedSystemforTextResponseandBotOperationsTool as the hardcoded private key used to sign a JWT...

0.00281EPSS
Exploits2References2
CVE
CVE
added 2026/05/08 12:0 a.m.62 views

CVE-2025-55449

AstrBot 3.5.15 is vulnerable to remote code execution via a hardcoded JWT signing key: Advanced_System_for_Text_Response_and_Bot_Operations_Tool. An attacker can forge a valid admin JWT and upload a malicious plugin through /api/plugin/install-upload, leading to arbitrary command execution (e.g.,...

7.3CVSS5.8AI score0.00281EPSS
Exploits2References2Affected Software1
GithubExploit
GithubExploit
added 2025/12/10 5:31 a.m.232 views

Exploit for CVE-2025-55449

CVE-2025-55449 - AstrBot Remote Code Execution RCE Vulnerabi...

9.3AI score0.00281EPSS
Exploits2
Exploit DB
Exploit DB
added 2010/04/30 12:0 a.m.42 views

HT-MP3Player 1.0 - '.HT3' File Parsing Buffer Overflow (Metasploit)

$Id: htmp3playerht3bof.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS7AI score0.58099EPSS
Exploits3
Packet Storm
Packet Storm
added 2009/12/31 12:0 a.m.36 views

HT-MP3Player 1.0 HT3 File Parsing Buffer Overflow

$Id: htmp3playerht3bof.rb 7724 2009-12-06 05:50:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

9.3CVSS0.7AI score0.58099EPSS
Exploits3
Rows per page
Query Builder