Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 9:9 p.m.4 views

CVE-2021-45232

In Apache APISIX Dashboard before 2.10.1, the Manager API uses two frameworks and introduces framework droplet on the basis of framework gin, all APIs and authentication middleware are developed based on framework droplet, but some API directly use the interface of framework gin thus bypassing th...

9.8CVSS7AI score0.93704EPSS
Exploits5
Tenable Nessus
Tenable Nessusadded 2022/04/28 12:0 a.m.40 views

Apache APISIX Dashboard < 2.10.1 Authentication Bypass

The version of Apache APISIX Dashboard installed on the remote host is prior to 2.10.1. It is, therefore, affected by an authentication bypass vulnerability. An unauthenticated, remote attacker could exploit this to bypass authentication. Note that Nessus has not tested for these issues but has...

9.8CVSS8.4AI score0.93704EPSS
Exploits5References2
GithubExploit
GithubExploitadded 2022/01/08 8:16 a.m.474 views

Exploit for Missing Authentication for Critical Function in Apache Apisix_Dashboard

Apache APISIX Dashboard: Unauthorized access to the interface...

9.8CVSS7.3AI score0.93704EPSS
Exploits5
GithubExploit
GithubExploitadded 2022/01/05 4:13 a.m.822 views

Exploit for Missing Authentication for Critical Function in Apache Apisix_Dashboard

CVE-2021-45232-RCE CVE-2021-45232-RCE – Multi-threaded batch...

9.8CVSS7.3AI score0.93704EPSS
Exploits5
GithubExploit
GithubExploitadded 2021/12/31 2:12 a.m.465 views

Exploit for Missing Authentication for Critical Function in Apache Apisix_Dashboard

CVE-2021-45232 RCE POC Screenshots !P...

9.8CVSS9.3AI score0.93704EPSS
Exploits5
Circl
Circladded 2021/12/29 5:57 a.m.3 views

CVE-2021-45232

creationtimestamp| type| source ---|---|--- 2021-12-29 05:57:49+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1243 2021-12-29 07:24:12+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1573 2021-12-29 13:42:55+00:00| published-proof-of-concept|...

9.8CVSS8.6AI score0.93704EPSS
Exploits5References5
GithubExploit
GithubExploitadded 2021/12/28 1:8 p.m.409 views

Exploit for Missing Authentication for Critical Function in Apache Apisix_Dashboard

CVE-2021-45232-POC !https://github.com/bad...

9.8CVSS9.6AI score0.93704EPSS
Exploits5
OSV
OSVadded 2021/12/27 3:15 p.m.21 views

CVE-2021-45232

In Apache APISIX Dashboard before 2.10.1, the Manager API uses two frameworks and introduces framework droplet on the basis of framework gin, all APIs and authentication middleware are developed based on framework droplet, but some API directly use the interface of framework gin thus bypassing th...

9.8CVSS6.9AI score
Exploits0References2
CVE
CVEadded 2021/12/27 3:6 p.m.154 views

CVE-2021-45232

In Apache APISIX Dashboard before version 2.10.1, the Manager API is implemented using two frameworks (gin and the droplet-based framework) with all APIs and authentication middleware built on droplet, while some APIs directly call gin interfaces, bypassing authentication. This leads to an authen...

9.8CVSS9.6AI score0.93704EPSS
Exploits5References2Affected Software1
Cvelist
Cvelistadded 2021/12/27 3:6 p.m.14 views

CVE-2021-45232 security vulnerability on unauthorized access.

In Apache APISIX Dashboard before 2.10.1, the Manager API uses two frameworks and introduces framework droplet on the basis of framework gin, all APIs and authentication middleware are developed based on framework droplet, but some API directly use the interface of framework gin thus bypassing th...

9.8AI score0.93704EPSS
Exploits5References2
Rows per page
Query Builder