CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Kaspersky•added 2019/09/23 12:0 a.m.•33 views

KLA11565 DoS vulnerability in MS Windows

Unspecified vulnerability was found in MS Windows. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2019-1255 Related products Microsoft-Windows Windows-Defender CVE list CVE-2019-1255 unknown KB list Solution Install necessary updates from the KB...

7.5CVSS7.6AI score0.0387EPSS

Exploits0References4

Prion•added 2019/09/21 8:15 p.m.•11 views

Cross site request forgery (csrf)

An issue was discovered in idreamsoft iCMS V7.0. admincp.php?app=members&do=del allows CSRF...

5.8CVSS6.5AI score0.00472EPSS

Exploits1References1Affected Software1

CNVD•added 2019/08/28 12:0 a.m.•1 views

ClonOS WEB control panel SQL Injection Vulnerability

ClonOS is an open source platform based on FreeBSD. The platform is mainly used for the creation and management of virtual environments. web control panel is one of the web-based ClonOS control panel. An SQL injection vulnerability exists in the clonos.php file in versions of WEB control panel...

9.8CVSS8.2AI score0.01371EPSS

OSV•added 2019/08/26 3:15 p.m.•3 views

CVE-2019-15571

The WEB control panel before 2019-04-30 for ClonOS allows SQL injection in clonos.php...

9.8CVSS7.4AI score0.01371EPSS

NVD•added 2019/08/26 3:15 p.m.•18 views

CVE-2019-15571

The WEB control panel before 2019-04-30 for ClonOS allows SQL injection in clonos.php...

9.8CVSS9.9AI score0.01371EPSS

Prion•added 2019/08/26 3:15 p.m.•21 views

Sql injection

The WEB control panel before 2019-04-30 for ClonOS allows SQL injection in clonos.php...

7.5CVSS9.8AI score0.01371EPSS

Exploits0References1Affected Software1

CVE•added 2019/08/26 2:28 p.m.•35 views

CVE-2019-15571

CVE-2019-15571: SQL injection in ClonOS WEB control panel (clonos.php) before 2019-04-30. Affects web component; CVSS indicates NETWORK access, no authentication, and impacts on confidentiality, integrity, and availability (all PARTIAL/HIGH for CVSS3). No remediation details are provided in the s...

9.8CVSS9.8AI score0.01371EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/08/26 2:28 p.m.•19 views

CVE-2019-15571

The WEB control panel before 2019-04-30 for ClonOS allows SQL injection in clonos.php...

9.9AI score0.01371EPSS

ICS•added 2019/08/20 12:0 a.m.•96 views

Zebra Industrial Printers

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Low skill level to exploit Vendor: Zebra Equipment: Industrial Printers Vulnerability: Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to send specially crafted packets...

7.5CVSS7.6AI score0.01703EPSS

Exploits0References5

NVD•added 2019/08/15 9:15 p.m.•14 views

CVE-2019-12792

A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root...

9CVSS9AI score0.04859EPSS

NVD•added 2019/08/15 9:15 p.m.•13 views

CVE-2019-12791

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form...

9CVSS8.9AI score0.06497EPSS

OSV•added 2019/08/15 9:15 p.m.•17 views

CVE-2019-12791

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form...

8.8CVSS7.3AI score

Exploits0References2

OSV•added 2019/08/15 9:15 p.m.•13 views

CVE-2019-12792

A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root...

8.8CVSS7.7AI score

Exploits0References2

Prion•added 2019/08/15 9:15 p.m.•12 views

Command injection

A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root...

9CVSS8.9AI score0.04859EPSS

Prion•added 2019/08/15 9:15 p.m.•14 views

Directory traversal

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form...

9CVSS8.8AI score0.06497EPSS

Cvelist•added 2019/08/15 8:39 p.m.•18 views

CVE-2019-12792

A command injection vulnerability in UploadHandler.php in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root...

9AI score0.04859EPSS

CVE•added 2019/08/15 8:39 p.m.•121 views

CVE-2019-12792

CVE-2019-12792 describes a command injection vulnerability in the UploadHandler.php component of Vesta Control Panel 0.9.8-24 , allowing a logged-in regular user to escalate privileges to root. The connected Red Hat and OSV/NVD entries confirm the same description. The documents do not provide de...

9CVSS8.9AI score0.04859EPSS

Cvelist•added 2019/08/15 8:34 p.m.•17 views

CVE-2019-12791

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form...

8.9AI score0.06497EPSS

CVE•added 2019/08/15 8:34 p.m.•126 views

CVE-2019-12791

A vulnerability (CVE-2019-12791) affects Vesta Control Panel 0.9.8-24. The v-list-user script’s directory traversal allows a regular registered user to escalate to root via the password reset form. Impact is documented as a privilege escalation with potential full compromise of the host (root). T...

9CVSS8.8AI score0.06497EPSS