Lucene search
K

16601 matches found

Vulnrichment
Vulnrichment
added 2024/06/10 2:30 p.m.22 views

CVE-2024-35306 OS Command injection in Ajax PHP files through HTTP Request

OS Command injection in Ajax PHP files via HTTP Request, allows to execute system commands by exploiting variables. This issue affects Pandora FMS: from 700 through 777...

8.7CVSS7.8AI score0.00926EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/10 2:30 p.m.25 views

CVE-2024-35306 OS Command injection in Ajax PHP files through HTTP Request

OS Command injection in Ajax PHP files via HTTP Request, allows to execute system commands by exploiting variables. This issue affects Pandora FMS: from 700 through 777...

8.7CVSS0.00926EPSS
Exploits0References1
CVE
CVE
added 2024/06/10 2:30 p.m.58 views

CVE-2024-35306

CVE-2024-35306 describes an OS command injection in Pandora FMS’ Ajax PHP files via HTTP requests, affecting Pandora FMS versions 700–776 (up to but not including 777). Root cause is insufficient sanitization of input variables, enabling an attacker to execute system commands. Impact is potential...

9.8CVSS7.5AI score0.00926EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/06/10 2:28 p.m.92 views

CVE-2024-35305

CVE-2024-35305 concerns an unauthenticated Time-Based SQL Injection in Pandora FMS API exploitable via the HTTP Authorization header. Affected versions are 700 to 776; exploitation can leak or access sensitive data, with high impact to confidentiality, integrity, and availability as reflected in ...

9.8CVSS7.7AI score0.00374EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/10 2:28 p.m.24 views

CVE-2024-35305 Unauth Time-Based SQL Injection via API

Unauth Time-Based SQL Injection in API allows to exploit HTTP request Authorization header. This issue affects Pandora FMS: from 700 through 777...

8.9CVSS8.1AI score0.00374EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/06/08 12:23 p.m.599 views

Exploit for OS Command Injection in Php

PHP RCE PoC CVE-2024-4577: Argument Injection in PHP-CGI...

9.8CVSS9.6AI score0.99987EPSS
Exploits64
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.4 views

PT-2024-35360

Name of the Vulnerable Software and Affected Versions: GNOME libsoup versions prior to 3.6.0 Description: The issue allows HTTP request smuggling in some configurations because '0' characters at the end of header names are ignored. For example, a "Transfer-Encoding0: chunked" header is treated th...

8.4CVSS7.6AI score0.00933EPSS
Exploits3References152
OSV
OSV
added 2024/06/07 10:7 p.m.14 views

GHSA-FQ4P-86HH-42V9 Zend-Diactoros URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

4.7CVSS7.2AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/06/07 10:1 p.m.25 views

Zend-Feed URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.2AI score
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/07 9:52 p.m.15 views

Zend-HTTP URL Rewrite vulnerability

zend-diactoros and, by extension, Expressive, zend-http and, by extension, Zend Framework MVC projects, and zend-feed specifically, its PubSubHubbub sub-component each contain a potential URL rewrite exploit. In each case, marshaling a request URI includes logic that introspects HTTP request...

7.2AI score
Exploits0References5Affected Software1
GithubExploit
GithubExploit
added 2024/06/07 9:51 a.m.582 views

Exploit for OS Command Injection in Php

CVE-2024-4577, Argument Injection in PHP-CGI ./CVE-2024-45...

9.8CVSS9.6AI score0.99987EPSS
Exploits64
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/07 6:46 a.m.30 views

Security Bulletin: IBM Maximo Application Suite uses gunicorn-21.2.0-py3-none-any.whl which is vulnerable to CVE-2024-1135.

Summary IBM Maximo Application Suite uses gunicorn-21.2.0-py3-none-any.whl which is vulnerable to CVE-2024-1135. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-1135 DESCRIPTION: Gunicorn is vulnerable to HTTP request smuggling,...

7.5CVSS7.2AI score0.02996EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/06 9:46 p.m.116 views

Tornado has a CRLF injection in CurlAsyncHTTPClient headers

Summary Tornado’s curlhttpclient.CurlAsyncHTTPClient class is vulnerable to CRLF carriage return/line feed injection in the request headers. Details When an HTTP request is sent using CurlAsyncHTTPClient, Tornado does not reject carriage return \r or line feed \n characters in the request headers...

7.5AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2024/06/06 9:41 p.m.43 views

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') in tornado

Summary When Tornado receives a request with two Transfer-Encoding: chunked headers, it ignores them both. This enables request smuggling when Tornado is deployed behind a proxy server that emits such requests. Pound does this. PoC 0. Install Tornado. 1. Start a simple Tornado server that echoes...

7AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/06/06 9:41 p.m.0 views

GHSA-753J-MPMX-QQ6G Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') in tornado

Summary When Tornado receives a request with two Transfer-Encoding: chunked headers, it ignores them both. This enables request smuggling when Tornado is deployed behind a proxy server that emits such requests. Pound does this. PoC 0. Install Tornado. 1. Start a simple Tornado server that echoes...

5.3CVSS5.9AI score
Exploits0References3
OSV
OSV
added 2024/06/06 6:30 p.m.18 views

GHSA-973G-55HP-3FRW Server-Side Request Forgery in gradio

A Server-Side Request Forgery SSRF vulnerability exists in the gradio-app/gradio and was discovered in version 4.21.0, specifically within the /queue/join endpoint and the saveurltocache function. The vulnerability arises when the path value, obtained from the user and expected to be a URL, is us...

8.6CVSS8.3AI score0.37366EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2024/06/06 6:30 p.m.22 views

Server-Side Request Forgery in gradio

A Server-Side Request Forgery SSRF vulnerability exists in the gradio-app/gradio and was discovered in version 4.21.0, specifically within the /queue/join endpoint and the saveurltocache function. The vulnerability arises when the path value, obtained from the user and expected to be a URL, is us...

8.6CVSS8.3AI score0.37366EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/06/06 6:15 p.m.28 views

CVE-2024-4325

A Server-Side Request Forgery SSRF vulnerability exists in the gradio-app/gradio version 4.21.0, specifically within the /queue/join endpoint and the saveurltocache function. The vulnerability arises when the path value, obtained from the user and expected to be a URL, is used to make an HTTP...

8.6CVSS0.37366EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/06/06 5:55 p.m.22 views

CVE-2024-4325 Server-Side Request Forgery (SSRF) in gradio-app/gradio

A Server-Side Request Forgery SSRF vulnerability exists in the gradio-app/gradio version 4.21.0, specifically within the /queue/join endpoint and the saveurltocache function. The vulnerability arises when the path value, obtained from the user and expected to be a URL, is used to make an HTTP...

8.6CVSS6.7AI score0.37366EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/06 5:55 p.m.38 views

CVE-2024-4325 Server-Side Request Forgery (SSRF) in gradio-app/gradio

A Server-Side Request Forgery SSRF vulnerability exists in the gradio-app/gradio version 4.21.0, specifically within the /queue/join endpoint and the saveurltocache function. The vulnerability arises when the path value, obtained from the user and expected to be a URL, is used to make an HTTP...

8.6CVSS0.37366EPSS
Exploits1References1
Rows per page
Query Builder