Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2026/04/07 5:3 p.m.6 views

CVE-2026-34977

Aperi'Solve is an open-source steganalysis web platform. Prior to 3.2.1, when uploading a JPEG, a user can specify an optional password to accompany the JPEG. This password is then directly passed into an expect command, which is then subsequently passed into a bash -c command, without any form o...

9.8CVSS5.9AI score0.00775EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/04/06 4:16 p.m.2 views

CVE-2026-34977

Aperi'Solve is an open-source steganalysis web platform. In versions 3.1.3 through 3.2.0, when uploading a JPEG, a user can specify an optional password to accompany the JPEG. This password is then directly passed into an expect command, which is then subsequently passed into a bash -c command,...

9.8CVSS5.9AI score0.00775EPSS
Exploits1References8Affected Software1
osv
osv
added 2026/04/06 4:16 p.m.5 views

CVE-2026-34977 Aperi'Solve Affected by Unauthenticated RCE via JPSeek Analyzer Command

Aperi'Solve is an open-source steganalysis web platform. In versions 3.1.3 through 3.2.0, when uploading a JPEG, a user can specify an optional password to accompany the JPEG. This password is then directly passed into an expect command, which is then subsequently passed into a bash -c command,...

9.3CVSS6AI score0.00775EPSS
Exploits1References9
githubexploit
githubexploit
added 2026/02/18 12:40 a.m.363 views

Exploit for OS Command Injection in Std42 Elfinder

CVE-2019-9194 — elFinder Command Injection PoC Command in...

9.8CVSS6.7AI score0.96633EPSS
Exploits11
euvd
euvd
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-5136

Malware in sbrugna...

8.8CVSS8.6AI score0.02975EPSS
Exploits1References3
zdt
zdt
added 2023/04/07 12:0 a.m.184 views

Rukovoditel 3.3.1 - Remote Code Execution Vulnerability

Exploit Title: Rukovoditel 3.3.1 - Remote Code Execution RCE Version: 3.3.1 Bugs: rce via jpeg file upload Technology: PHP Vendor URL: https://www.rukovoditel.net/ Software Link: https://www.rukovoditel.net/download.php Date of found: 12-03-2023 Author: Mirabbas Ağalarov Tested on: Linux 2...

7.1AI score
Exploits0
cvelist
cvelist
added 2020/07/15 7:4 p.m.32 views

CVE-2020-12854

A remote code execution vulnerability was identified in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can invoke code execution upon uploading a carefully crafted JPEG file as part of the profile avatar...

8.9AI score0.02975EPSS
Exploits1References2
seebug
seebug
added 2014/07/01 12:0 a.m.27 views

Coppermine Photo Gallery 1.0 PHP Code Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7300/info Coppermine Photo Gallery has been reported prone to PHP code injection attacks. Due to a lack of sufficient sanitization performed on user-supplied filenames that are uploaded into the Photo Gallery, an attacker...

7.1AI score
Exploits0
Rows per page
Query Builder