Lucene search
K

229 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.132 views

Axigen Arbitrary File Read And Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Axigen Arbitrary File Read and Delete', 'Description' = %q This module exploits a directory traversal vulnerability in the WebAdmin interface of...

6.4CVSS7AI score0.83632EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.176 views

Solaris LPD Arbitrary File Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Solaris LPD Arbitrary File Delete', 'Description' = %q This module uses a vulnerability in the Solaris line printer daemon to delete arbitrary...

5CVSS7AI score0.29182EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.153 views

Novell File Reporter Agent Arbitrary File Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell File Reporter Agent Arbitrary File Delete', 'Description' = %q NFRAgent.exe in Novell File Reporter allows remote attackers to delete...

5CVSS7.4AI score0.16676EPSS
Exploits5
Patchstack
Patchstack
added 2024/08/16 6:42 p.m.6 views

WordPress InPost for WooCommerce plugin <= 1.4.0 - Unauthenticated Arbitrary File Read/Delete vulnerability

Unauthenticated Arbitrary File Read/Delete vulnerability discovered by 1337Wannabe in WordPress Plugin InPost for WooCommerce versions = 1.4.0...

10CVSS7AI score0.00983EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/16 6:42 p.m.9 views

WordPress InPost PL plugin <= 1.4.4 - Unauthenticated Arbitrary File Read/Delete vulnerability

Unauthenticated Arbitrary File Read/Delete vulnerability discovered by 1337Wannabe in WordPress Plugin InPost PL versions = 1.4.4...

10CVSS7AI score0.00983EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/06/13 12:15 p.m.24 views

CVE-2024-34116

Creative Cloud Desktop versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to load and execute malicious libraries, leading to arbitrary file delete...

7.1CVSS0.00298EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 11:26 a.m.161 views

CVE-2024-34116

Adobe Creative Cloud Desktop (Windows/macOS) versions 6.1.0.587 and earlier are affected by an Uncontrolled Search Path Element vulnerability that can allow loading and executing malicious libraries, potentially resulting in arbitrary file deletion and a security feature bypass. Exploitation requ...

7.1CVSS7AI score0.00298EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/05/28 3:47 p.m.43 views

GHSA-G3HR-P86P-593H OpenAPI Generator Online - Arbitrary File Read/Delete

Impact Attackers can exploit the vulnerability to read and delete files and folders from an arbitrary, writable directory as anyone can set the output folder when submitting the request via the outputFolder option. Patches The issue was fixed via...

8.3CVSS8AI score0.03592EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/05/28 3:47 p.m.38 views

OpenAPI Generator Online - Arbitrary File Read/Delete

Impact Attackers can exploit the vulnerability to read and delete files and folders from an arbitrary, writable directory as anyone can set the output folder when submitting the request via the outputFolder option. Patches The issue was fixed via...

8.3CVSS6.7AI score0.03592EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/27 4:11 p.m.18 views

CVE-2024-35219 OpenAPI Generator Online - Arbitrary File Read/Delete

OpenAPI Generator allows generation of API client libraries SDK generation, server stubs, documentation and configuration automatically given an OpenAPI Spec. Prior to version 7.6.0, attackers can exploit a path traversal vulnerability to read and delete files and folders from an arbitrary,...

8.3CVSS6.6AI score0.03592EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2024/05/12 9:53 a.m.617 views

Exploit for CVE-2024-27460

CVE-2024-27460 - Plantronics Desktop Hub LPE Arbitrary File D...

7.8CVSS7.2AI score0.05374EPSS
Exploits4
NVD
NVD
added 2024/05/08 4:15 p.m.25 views

CVE-2024-24908

Dell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary File Delete via Path Traversal vulnerability. A remote attacker with high privileges could potentially exploit this vulnerability to deletion of arbitrary files stored on the server filesystem...

6.5CVSS6.5AI score0.00627EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/08 3:48 p.m.24 views

CVE-2024-24908

Dell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary File Delete via Path Traversal vulnerability. A remote attacker with high privileges could potentially exploit this vulnerability to deletion of arbitrary files stored on the server filesystem...

6.5CVSS6.7AI score0.00627EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/08 3:48 p.m.16 views

CVE-2024-24908

Dell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary File Delete via Path Traversal vulnerability. A remote attacker with high privileges could potentially exploit this vulnerability to deletion of arbitrary files stored on the server filesystem...

6.5CVSS7AI score0.00627EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/08 12:0 a.m.379 views

Veritas NetBackup Arbitrary File Delete (VTS24-001)

The Veritas NetBackup application installed on the remote Windows host is prior to 9.1.0.1, 10.0.0.1, 10.1.1, prior to 10.2.0.1, prior to 10.3.0.1 or prior to 10.4. It is, therefore, affected by an arbitrary file delete vulnerability. An issue was discovered in Veritas NetBackup before 10.4. The...

7.7CVSS5.8AI score0.00168EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

A10 Networks Thunder ADC 安全漏洞

A10 Networks Thunder ADC is an application distribution/load balancer from A10 Networks that provides high performance. A10 Networks Thunder ADC has a security vulnerability that originates from failure to properly validate user-supplied paths before using them, a directory traversal and arbitrar...

8.8CVSS8.3AI score0.02066EPSS
Exploits1References4
NVD
NVD
added 2024/04/30 2:15 p.m.12 views

CVE-2024-23773

An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file delete vulnerability exists in the KSchedulerSvc.exe component. Local attackers can delete any file of their choice with NT Authority\SYSTEM privileges...

7.8CVSS6.6AI score0.00444EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/30 12:0 a.m.27 views

CVE-2024-23773

An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file delete vulnerability exists in the KSchedulerSvc.exe component. Local attackers can delete any file of their choice with NT Authority\SYSTEM privileges...

6.9AI score0.00444EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/30 12:0 a.m.14 views

CVE-2024-23773

An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file delete vulnerability exists in the KSchedulerSvc.exe component. Local attackers can delete any file of their choice with NT Authority\SYSTEM privileges...

7AI score0.00444EPSS
Exploits0References2
NVD
NVD
added 2024/04/15 6:15 p.m.10 views

CVE-2024-22014

An issue discovered in 360 Total Security Antivirus through 11.0.0.1061 for Windows allows attackers to gain escalated privileges via Symbolic Link Follow to Arbitrary File Delete...

8.8CVSS6.8AI score0.00762EPSS
Exploits1References1
Rows per page
Query Builder