213 matches found
EUVD-2019-10126
Malware in sbrugna...
EUVD-2019-10127
Malware in sbrugna...
EUVD-2025-1501
Malicious code in bioql PyPI...
EUVD-2024-49959
Malicious code in bioql PyPI...
EUVD-2025-1500
Malicious code in bioql PyPI...
EUVD-2025-1502
Malicious code in bioql PyPI...
VulnCheck KEV: CVE-2025-0107
An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls...
CVE-2019-1567
The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings...
📄 Palo Alto Networks Expedition 1.2.90.1 Privilege Escalation
Palo Alto Networks Expedition version 1.2.90.1 proof of concept exploit that allows for an administrative password reset. - Exploit Title: PoC for Admin Account Password Reset of Palo Alto Networks Expedition tool - Shodan Dork: html:"expedition project" - FOFA Dork: "expedition project" &&...
Palo Alto Networks Expedition 1.2.90.1 - Admin Account Takeover
Exploit Title: Palo Alto Networks Expedition 1.2.90.1 - Admin Account Takeover Shodan Dork: html:"expedition project" FOFA Dork: "expedition project" && iconhash="1499876150" Exploit Author: ByteHunter Email: [email protected] Vulnerable Versions: 1.2 1.2.92 Tested on: 1.2.90.1 & 1.2.75 CVE ...
Palo Alto Networks Expedition Command Injection Vulnerability
Palo Alto Networks Expedition is a network security appliance used to provide firewall, intrusion detection, and prevention. The Palo Alto Networks Expedition suffers from a command injection vulnerability that can be exploited by an attacker to run arbitrary operating system commands, which can...
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in its failure to eliminate substitution characters or characters that match each other. This allows attackers to influence the integrity of the protected information.
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of measures to neutralize substitutional or matching symbols. Exploiting this vulnerability allows a remote attacker to influence the integrity of the protected information...
The vulnerability of the Palo Alto Networks Expedition configuration migration tool, related to incorrect external management of file names or file paths, allows a perpetrator to delete any files they desire.
The vulnerability of the Palo Alto Networks Expedition configuration migration tool is related to incorrect external management of file names or file paths. Exploiting this vulnerability allows a malicious actor to delete arbitrary files remotely...
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of protection for website structures, allowing attackers to carry out XSS attacks.
The vulnerability of the Palo Alto Networks Expedition configuration migration tool is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in its inability to remove special elements used in the basic operating system, allowing attackers to execute arbitrary commands.
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of measures taken to neutralize special elements used in the basic operating system. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of protection for the SQL query structure. This allows attackers to extract the contents of the database of the software tool and gain access to write and read arbitrary files.
The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of security measures for SQL query structures. Exploiting this vulnerability allows an attacker to remotely access and manipulate the database content of the software platform, as well as gain...
CVE-2025-0105
An arbitrary file deletion vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to delete arbitrary files accessible to the www-data user on the host filesystem...
CVE-2025-0104
A reflected cross-site scripting XSS vulnerability in Palo Alto Networks Expedition enables attackers to execute malicious JavaScript code in the context of an authenticated Expedition user’s browser if that authenticated user clicks a malicious link that allows phishing attacks and could lead to...
CVE-2025-0107
An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls...
CVE-2025-0106
A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem...