Lucene search
K

59 matches found

Positive Technologies
Positive Technologies
added 2023/08/04 12:0 a.m.5 views

PT-2023-22359 · Pyrocms · Pyrocms

Name of the Vulnerable Software and Affected Versions: PyroCMS version 3.9 Description: The issue is a remote code execution flaw that can be exploited through a server-side template injection SSTI flaw, allowing a malicious attacker to send customized commands to the server and execute arbitrary...

9.8CVSS9.8AI score0.4111EPSS
Exploits4References8
Vulnrichment
Vulnrichment
added 2023/02/23 9:23 p.m.7 views

CVE-2023-0755

The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code...

9.8CVSS7.4AI score0.11784EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/02/23 12:0 a.m.4 views

PT-2023-16503 · Microsoft +4 · .Net Sdk +10

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The affected products are vulnerable to an integer overflow or wraparound, which could allow an attacker to crash the server and remotely execute...

9.8CVSS9.6AI score0.02937EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2022/05/13 1:45 a.m.5 views

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +2384 more potentially affected by CVE-2017-3523 via mysql:mysql-connector-java (>=3.0.10 <=5.1.40)

mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.0, =1.1.5.RELEASE, =1.0.1, =0.0.1, =0.3.0, =0.2.0, =0.2.0, =0.4.1 and more Source cves: CVE-2017-3523 Source advisory: OSV:GHSA-2XXH-F8R3-HVVR...

8.5CVSS7.2AI score0.02877EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/02/16 12:0 a.m.6 views

The vulnerability of the Modern Execution Server component for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Modern Execution Server component for Windows operating systems is related to errors in code generation control. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted request...

7.8CVSS7.8AI score0.02544EPSS
Exploits0References5
OSV
OSV
added 2022/01/11 9:15 p.m.1 views

CVE-2022-21888

Windows Modern Execution Server Remote Code Execution Vulnerability...

7.8CVSS7.3AI score0.02544EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/01/11 9:15 p.m.5 views

CVE-2022-21888

Windows Modern Execution Server Remote Code Execution Vulnerability...

9.3CVSS7.2AI score0.02544EPSS
Exploits0References3Affected Software10
NVD
NVD
added 2022/01/11 9:15 p.m.22 views

CVE-2022-21888

Windows Modern Execution Server Remote Code Execution Vulnerability...

9.3CVSS0.02544EPSS
Exploits0References2
Prion
Prion
added 2022/01/11 9:15 p.m.23 views

Remote code execution

Windows Modern Execution Server Remote Code Execution Vulnerability...

9.3CVSS8.8AI score0.02544EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2022/01/11 8:22 p.m.36 views

CVE-2022-21888 Windows Modern Execution Server Remote Code Execution Vulnerability

...

7.8CVSS8.8AI score0.02544EPSS
Exploits0References1
CVE
CVE
added 2022/01/11 8:22 p.m.148 views

CVE-2022-21888

Technical details about CVE-2022-21888 are not publicly provided in the supplied documents. No affected products, versions, or fixes are specified. Monitor for updates from official sources.

9.3CVSS8.8AI score0.02544EPSS
Exploits0References2Affected Software4
CNNVD
CNNVD
added 2022/01/11 12:0 a.m.4 views

Microsoft Windows 代码注入漏洞

Microsoft Windows is a suite of operating systems for personal device use from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Windows Modern Execution Server, which arises from a network system or product not properly filtering specific elements of externally input...

9.3CVSS8.1AI score0.02544EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.4 views

PT-2022-1570 · Microsoft · Windows Modern Execution Server +1

Name of the Vulnerable Software and Affected Versions: Windows Modern Execution Server affected versions not specified Description: The issue is related to errors in code generation management in the Modern Execution Server component of Windows operating systems. It allows remote attackers to...

9.3CVSS9.7AI score0.02544EPSS
Exploits0References9
CNVD
CNVD
added 2021/08/22 12:0 a.m.12 views

DEDECMSV6 has command execution vulnerability

DEDECMSV6 is based on PHP7.x development, scalable and fully open source.DEDECMSV6 has a command execution vulnerability, which can be exploited by attackers to gain control of the server...

4.4AI score
Exploits0
CNVD
CNVD
added 2021/05/30 12:0 a.m.1 views

SEACMS suffers from a command execution vulnerability (CNVD-2021-40233)

SEACMS is a video-on-demand system designed for webmasters with different needs. SEACMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/17 12:0 a.m.6 views

Command execution vulnerability in phpyun backend (CNVD-2021-37948)

phpyun a talent recruitment system built with PHP and MySQL databases. A command execution vulnerability exists in the backend of phpyun, which can be exploited by attackers to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/14 12:0 a.m.3 views

Command execution vulnerability in DHCMS (CNVD-2021-37337)

DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/11 12:0 a.m.2 views

Command execution vulnerability exists in FastAdmin (CNVD-2021-37445)

FastAdmin is an extremely fast backend development framework based on ThinkPHP and Bootstrap. FastAdmin suffers from a command execution vulnerability. An attacker can exploit this vulnerability to gain server privileges...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/05/08 12:0 a.m.8 views

Command Execution Vulnerability in VoIPmonitor

VoIPmonitor is an open source network packet sniffer with a commercial front-end for SIP RTP and RTCP VoIP protocols running on Linux. VoIPmonitor suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

9.8CVSS7.2AI score0.36632EPSS
Exploits5
CNVD
CNVD
added 2020/12/02 12:0 a.m.3 views

Command Execution Vulnerability in SongCMS (CNVD-2020-70579)

SongCMS is a PHP+MySQL, ASP+Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users quickly build and deploy enterprise-level portals. SongCMS has a command execution vulnerability that can be exploited by an attacker to gain...

7.5AI score
Exploits0
Rows per page
Query Builder