Lucene search
K

188 matches found

OSV
OSV
added 2021/04/02 8:15 p.m.4 views

UBUNTU-CVE-2021-28940

Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary. This creates an issue on the /scripts/magpiedebug.php and /scripts/magpiesimple.php page that if you send a specific https url in the RS...

9.8CVSS6AI score0.03299EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/04/02 8:15 p.m.27 views

CVE-2021-28941

Because of no validation on a curl command in MagpieRSS 0.72 in the /extlib/Snoopy.class.inc file, when you send a request to the /scripts/magpiedebug.php or /scripts/magpiesimple.php page, it's possible to request any internal page if you use a https request...

5.3CVSS6.1AI score0.01131EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/04/02 7:8 p.m.18 views

CVE-2021-28941

Because of no validation on a curl command in MagpieRSS 0.72 in the /extlib/Snoopy.class.inc file, when you send a request to the /scripts/magpiedebug.php or /scripts/magpiesimple.php page, it's possible to request any internal page if you use a https request...

5.6AI score0.01131EPSS
Exploits1References2
CVE
CVE
added 2021/04/02 7:8 p.m.71 views

CVE-2021-28941

The CVE-2021-28941 entry concerns MagpieRSS 0.72. The issue, described across multiple sources, is a lack of validation for a curl command in extlib/Snoopy.class.inc, enabling a request to internal pages when targeting /scripts/magpie_debug.php or /scripts/magpie_simple.php via https. Connected d...

5.3CVSS5.3AI score0.01131EPSS
Exploits1References2Affected Software1
Kitploit
Kitploit
added 2021/01/02 8:30 p.m.686 views

Byp4Xx - Simple Bash Script To Bypass "403 Forbidden" Messages With Well-Known Methods Discussed In #Bugbountytips

byp4xx.sh / / / // / / / / / / / // /| |// |// / // / // / // / / /./, / ./ // //|//|| /// A bash script to bypass "403 Forbidden" responses with well-known methods discussed in bugbountytips Installation: git clone https://github.com/lobuhi/byp4xx.git cd byp4xx chmod u+x byp4xx.sh Usage: Start...

7.4AI score
Exploits0References1
Packet Storm
Packet Storm
added 2020/10/19 12:0 a.m.295 views

HiSilicon Video Encoder Malicious Firmware Code Execution

!/usr/bin/env bash Exploit Title: HiSilicon video encoders - RCE via unauthenticated upload of malicious firmware Date: 2020-09-20 Exploit Author: Alexei Kojenov Vendor Homepage: multiple vendors Software Link: N/A Version: vendor-specific Tested on: Linux CVE: CVE-2020-24217 Vendors: URayTech,...

0.3AI score0.40302EPSS
Exploits5
Hacker One
Hacker One
added 2020/07/27 11:47 a.m.62 views

U.S. Dept Of Defense: [██████████.mil] Cisco VPN Service Path Traversal

Hi team. Summary The Cisco VPN Service at ██████.mil is vulnerable to the CVE-2020-3452 vulnerability, which allows path traversing within the web service's file system on the targeted device. Steps to Reproduce Make a GET request to: http...

5CVSS1AI score0.99992EPSS
Exploits24
BDU FSTEC
BDU FSTEC
added 2020/06/17 12:0 a.m.6 views

The vulnerability of a node’s shell for the `curl` command, related to the failure to eliminate special elements used in operating system commands, allows a perpetrator to execute arbitrary commands.

The vulnerability of a node’s command-line interface for the curl command relates to the failure to address the special elements used in operating system commands. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary commands...

10CVSS8.1AI score0.01884EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2020/03/11 9:53 p.m.7 views

USN-4299-1 firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the URL or other browser chrome, obtain sensitive information, bypass Content Security Policy CSP...

9.8CVSS7AI score0.03191EPSS
Exploits2References13
exploitpack
exploitpack
added 2020/03/02 12:0 a.m.83 views

Wing FTP Server 6.2.5 - Privilege Escalation

Wing FTP Server 6.2.5 - Privilege Escalation Exploit Title: Wing FTP Server 6.2.5 - Privilege Escalation Google Dork: intitle:"Wing FTP Server - Web" Date: 2020-03-03 Exploit Author: Cary Hooper Vendor Homepage: https://www.wftpserver.com Software Link:...

6.9CVSS0.6AI score0.00583EPSS
Exploits7
Packet Storm
Packet Storm
added 2020/03/02 12:0 a.m.154 views

Wing FTP Server 6.2.5 Privilege Escalation

Exploit Title: Wing FTP Server 6.2.5 - Privilege Escalation Google Dork: intitle:"Wing FTP Server - Web" Date: 2020-03-03 Exploit Author: Cary Hooper Vendor Homepage: https://www.wftpserver.com Software Link: https://www.wftpserver.com/download/wftpserver-linux-64bit.tar.gz Version: v6.2.5 and...

0.6AI score0.00583EPSS
Exploits7
Exploit DB
Exploit DB
added 2020/03/02 12:0 a.m.246 views

Wing FTP Server 6.2.5 - Privilege Escalation

Exploit Title: Wing FTP Server 6.2.5 - Privilege Escalation Google Dork: intitle:"Wing FTP Server - Web" Date: 2020-03-03 Exploit Author: Cary Hooper Vendor Homepage: https://www.wftpserver.com Software Link: https://www.wftpserver.com/download/wftpserver-linux-64bit.tar.gz Version: v6.2.5 and...

7.8CVSS7.7AI score0.00583EPSS
Exploits7
ThreatPost
ThreatPost
added 2019/12/05 4:31 p.m.65 views

HackerOne Breach Leads to $20,000 Bounty Reward

HackerOne has paid out $20,000 after a high-severity vulnerability was discovered in the bug-bounty platform. The flaw allowed an outside bounty hunter to access customers’ reports and other sensitive information. Disclosed this week in a HackerOne report, the security incident stemmed from a...

7.3AI score
Exploits0References11
wpexploit
wpexploit
added 2019/09/28 12:0 a.m.16 views

Visualizer < 3.3.1 - Blind Server-Side Request Forgery (SSRF)

This plugin suffers from a blind SSRF vulnerability in the /wp-json/visualizer/v1/upload-data endpoint. curl -i -s -X $'POST' \ -H $'Host: 192.168.158.128:8000' \ --data-binary $'"url":"http://db:3306"' \ $'http://192.168.158.128:8000/wp-json/visualizer/v1/upload-data' See the references for...

5.8CVSS1.9AI score0.39137EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2019/07/17 12:0 a.m.98 views

Huawei HG530 Reboot / Restore Authentication Bypass

Huawei HG530 Multiple Unauthenticated reboot and restore Vulnerability =========================== The Huawei HG530 suffers from multiple Unauthenticated reboot and restore vulnerability allows local attackers to reboot the device or to restore to factory Configuration without user interaction...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2019/07/01 12:0 a.m.26 views

PowerPanel Business Edition - Cross-Site Scripting

PowerPanel Business Edition - Cross-Site Scripting Exploit Title: PowerPanel Business Edition - Stored Cross Site Scripting SNMP trap receivers Google Dork: None Date: 6/29/2019 Exploit Author: Joey Lane Vendor Homepage: https://www.cyberpowersystems.com Version: 3.4.0 Tested on: Ubuntu 16.04 CVE...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2019/07/01 12:0 a.m.98 views

ZoneMinder 1.32.3 - Cross-Site Scripting

Exploit Title: ZoneMinder 1.32.3 - Stored Cross Site Scripting filters Google Dork: None Date: 6/29/2019 Exploit Author: Joey Lane Vendor Homepage: https://zoneminder.com Software Link: https://github.com/ZoneMinder/zoneminder/releases Version: 1.32.3 Tested on: Ubuntu 16.04 CVE : Pending...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/06/29 12:0 a.m.73 views

ZoneMinder 1.32.3 Cross Site Scripting

Exploit Title: ZoneMinder 1.32.3 - Stored Cross Site Scripting filters Google Dork: None Date: 6/29/2019 Exploit Author: Joey Lane Vendor Homepage: https://zoneminder.com Software Link: https://github.com/ZoneMinder/zoneminder/releases Version: 1.32.3 Tested on: Ubuntu 16.04 CVE : Pending...

7.4AI score
Exploits0
OSV
OSV
added 2019/04/26 5:29 p.m.8 views

UBUNTU-CVE-2019-9804

In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command into a command shell on macOS will cause the execution of unintended additional bash script commands if the URL was maliciously crafted. This is the result of an issue with the native version of Bash o...

9.8CVSS7.5AI score0.01832EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2018/12/13 12:0 a.m.85 views

Fortify SSC 17.10 / 17.20 / 18.10 User Detail Insecure Direct Object Reference

Details ================ Software: Fortify SSC Software Security Center Version: 17.10, 17.20 & 18.10 Homepage: https://www.microfocus.com Advisory report: https://github.com/alt3kx/CVE-2018-7691 CVE: CVE-2018-7691 CVSS: 6.5 Medium; AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CWE-639 Description...

6.6AI score0.07234EPSS
Exploits4
Rows per page
Query Builder