Lucene search
+L

213 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2019-10126

Malware in sbrugna...

4.8CVSS5.1AI score0.01063EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-10127

Malware in sbrugna...

4.8CVSS5.1AI score0.01063EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1501

Malicious code in bioql PyPI...

7CVSS8.8AI score0.0035EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-49959

Malicious code in bioql PyPI...

7CVSS6.6AI score0.00632EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-1500

Malicious code in bioql PyPI...

9.2CVSS9.2AI score0.00606EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-1502

Malicious code in bioql PyPI...

6.9CVSS8.8AI score0.12955EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2025/06/25 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-0107

An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls...

9.8CVSS6AI score0.77653EPSS
In wildExploits0References247
RedhatCVE
RedhatCVE
added 2025/05/22 10:29 a.m.17 views

CVE-2019-1567

The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings...

5.4CVSS6.5AI score0.00622EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2025/04/07 12:0 a.m.308 views

📄 Palo Alto Networks Expedition 1.2.90.1 Privilege Escalation

Palo Alto Networks Expedition version 1.2.90.1 proof of concept exploit that allows for an administrative password reset. - Exploit Title: PoC for Admin Account Password Reset of Palo Alto Networks Expedition tool - Shodan Dork: html:"expedition project" - FOFA Dork: "expedition project" &&...

9.8CVSS10AI score0.91783EPSS
Exploits9
Exploit DB
Exploit DB
added 2025/04/06 12:0 a.m.357 views

Palo Alto Networks Expedition 1.2.90.1 - Admin Account Takeover

Exploit Title: Palo Alto Networks Expedition 1.2.90.1 - Admin Account Takeover Shodan Dork: html:"expedition project" FOFA Dork: "expedition project" && iconhash="1499876150" Exploit Author: ByteHunter Email: [email protected] Vulnerable Versions: 1.2 1.2.92 Tested on: 1.2.90.1 & 1.2.75 CVE ...

9.8CVSS9.8AI score0.91783EPSS
Exploits9
CNVD
CNVD
added 2025/01/24 12:0 a.m.13 views

Palo Alto Networks Expedition Command Injection Vulnerability

Palo Alto Networks Expedition is a network security appliance used to provide firewall, intrusion detection, and prevention. The Palo Alto Networks Expedition suffers from a command injection vulnerability that can be exploited by an attacker to run arbitrary operating system commands, which can...

7.7CVSS7.5AI score0.77653EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.9 views

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in its failure to eliminate substitution characters or characters that match each other. This allows attackers to influence the integrity of the protected information.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of measures to neutralize substitutional or matching symbols. Exploiting this vulnerability allows a remote attacker to influence the integrity of the protected information...

5.3CVSS8AI score0.00474EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.22 views

The vulnerability of the Palo Alto Networks Expedition configuration migration tool, related to incorrect external management of file names or file paths, allows a perpetrator to delete any files they desire.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool is related to incorrect external management of file names or file paths. Exploiting this vulnerability allows a malicious actor to delete arbitrary files remotely...

5.3CVSS8.1AI score0.12955EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.6 views

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of protection for website structures, allowing attackers to carry out XSS attacks.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...

8.5CVSS7.9AI score0.0035EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.11 views

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in its inability to remove special elements used in the basic operating system, allowing attackers to execute arbitrary commands.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of measures taken to neutralize special elements used in the basic operating system. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

7.4CVSS8.3AI score0.77653EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.8 views

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of protection for the SQL query structure. This allows attackers to extract the contents of the database of the software tool and gain access to write and read arbitrary files.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of security measures for SQL query structures. Exploiting this vulnerability allows an attacker to remotely access and manipulate the database content of the software platform, as well as gain...

9.3CVSS8.3AI score0.00606EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/01/11 3:15 a.m.5 views

CVE-2025-0105

An arbitrary file deletion vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to delete arbitrary files accessible to the www-data user on the host filesystem...

9.1CVSS7.4AI score0.12955EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 3:15 a.m.7 views

CVE-2025-0104

A reflected cross-site scripting XSS vulnerability in Palo Alto Networks Expedition enables attackers to execute malicious JavaScript code in the context of an authenticated Expedition user’s browser if that authenticated user clicks a malicious link that allows phishing attacks and could lead to...

6.1CVSS7.4AI score0.0035EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 3:15 a.m.5 views

CVE-2025-0107

An OS command injection vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to run arbitrary OS commands as the www-data user in Expedition, which results in the disclosure of usernames, cleartext passwords, device configurations, and device API keys for firewalls...

9.8CVSS7.4AI score0.77653EPSS
Exploits0References1
NVD
NVD
added 2025/01/11 3:15 a.m.11 views

CVE-2025-0106

A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem...

6.9CVSS0.00474EPSS
Exploits0References1
Rows per page
Query Builder