Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6266 matches found

OSV
OSVadded 2023/04/04 3:15 p.m.13 views

CVE-2020-19695

Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njsobjectproperty parameter of the njs/njsvm.c function...

9.8CVSS9.9AI score
Exploits0References1
OSV
OSVadded 2023/04/04 3:15 p.m.6 views

AZL-26030 CVE-2020-19692 affecting package nginx for versions less than 1.22.1-11

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njsmoduleread in the njsmodule.c file...

9.8CVSS7.7AI score0.01318EPSS
Exploits1References1
OSV
OSVadded 2023/04/04 3:15 p.m.5 views

CVE-2020-19692

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njsmoduleread in the njsmodule.c file...

9.8CVSS8.1AI score
Exploits0References1
Prion
Prionadded 2023/04/04 3:15 p.m.18 views

Buffer overflow

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njsmoduleread in the njsmodule.c file...

7.5CVSS9.6AI score0.01318EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2023/04/04 3:15 p.m.24 views

Buffer overflow

Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njsobjectproperty parameter of the njs/njsvm.c function...

7.5CVSS9.7AI score0.01333EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/04/04 12:0 a.m.6 views

CVE-2020-19695

Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njsobjectproperty parameter of the njs/njsvm.c function...

7.9AI score0.01333EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2023/04/04 12:0 a.m.5 views

CVE-2020-19692

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njsmoduleread in the njsmodule.c file...

7.9AI score0.01318EPSS
Exploits1References1
Cvelist
Cvelistadded 2023/04/04 12:0 a.m.15 views

CVE-2020-19695

Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njsobjectproperty parameter of the njs/njsvm.c function...

9.8AI score0.01333EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/04/04 12:0 a.m.5 views

Nginx 安全漏洞

Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from Nginx, Inc. in the United States. njs is one of the scripting language components that supports extended NGINX functionality. A security vulnerability exists in Nginx NJS. An attacker can exploit this...

9.8CVSS8.8AI score0.01333EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/04/04 12:0 a.m.4 views

Nginx 安全漏洞

Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from Nginx, Inc. in the United States. njs is one of the scripting language components that supports extended NGINX functionality. A security vulnerability exists in Nginx NJS v.0feca92. An attacker can exploi...

9.8CVSS8.8AI score0.01318EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/04/04 12:0 a.m.6 views

PT-2023-11527 · Nginx · Nginx Njs

Name of the Vulnerable Software and Affected Versions: Nginx NJS version 0feca92 Description: A Buffer Overflow issue allows a remote attacker to execute arbitrary code via the njs module read function in the njs module.c file. This enables the attacker to potentially gain control over the system...

9.8CVSS8.3AI score0.01318EPSS
Exploits1References5
CVE
CVEadded 2023/04/04 12:0 a.m.82 views

CVE-2020-19692

CVE-2020-19692 affects Nginx NJS v0feca92. The vulnerability is a Buffer Overflow in the njs_module_read function in njs_module.c, enabling a remote attacker to execute arbitrary code. Public sources describe Nginx NJS as a scripting component for Nginx, with references indicating this issue allo...

9.8CVSS9.6AI score0.01318EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2023/04/04 12:0 a.m.194 views

CVE-2020-19695

CVE-2020-19695 affects Nginx NJS (njs/njs_vm.c) with a buffer overflow in the njs_object_property handling, enabling a remote attacker to execute arbitrary code. Impact is high (network vector, no user interaction), with affected Nginx NJS builds prior to a patched release. Red Hat/Mariner notes ...

9.8CVSS9.7AI score0.01333EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/04/04 12:0 a.m.5 views

PT-2023-11529 · Nginx · Nginx Njs

Name of the Vulnerable Software and Affected Versions: Nginx NJS affected versions not specified Description: A Buffer Overflow issue allows a remote attacker to execute arbitrary code via the njs object property parameter of the njs/njs vm.c function, specifically through the njs object property...

9.8CVSS9.6AI score0.01333EPSS
Exploits1References5
Cvelist
Cvelistadded 2023/04/04 12:0 a.m.28 views

CVE-2020-19692

Buffer Overflow vulnerabilty found in Nginx NJS v.0feca92 allows a remote attacker to execute arbitrary code via the njsmoduleread in the njsmodule.c file...

9.7AI score0.01318EPSS
Exploits1References1
OSV
OSVadded 2023/04/03 7:18 p.m.13 views

GHSA-33PV-VCGH-JFG9 Wagtail vulnerable to denial-of-service via memory exhaustion when uploading large files

Impact A memory exhaustion bug exists in Wagtail's handling of uploaded images and documents. For both images and documents, files are loaded into memory during upload for additional processing. A user with access to upload images or documents through the Wagtail admin interface could upload a fi...

5.9CVSS5AI score0.0107EPSS
Exploits0References11
Exploit DB
Exploit DBadded 2023/03/31 12:0 a.m.152 views

Spitfire CMS 1.0.475 - PHP Object Injection

Exploit Title: Spitfire CMS 1.0.475 - PHP Object Injection Exploit Author: LiquidWorm Vendor: Claus Muus Product web page: http://spitfire.clausmuus.de Affected version: 1.0.475 Summary: Spitfire is a system to manage the content of webpages. Desc: The application is prone to a PHP Object Injecti...

7.4AI score
Exploits0
NVD
NVDadded 2023/03/29 5:15 p.m.16 views

CVE-2023-1550

Insertion of Sensitive Information into log file vulnerability in NGINX Agent. NGINX Agent version 2.0 before 2.23.3 inserts sensitive information into a log file. An authenticated attacker with local access to read agent log files may gain access to private keys. This issue is only exposed when...

5.5CVSS5.1AI score0.00218EPSS
Exploits0References2
OSV
OSVadded 2023/03/29 5:15 p.m.20 views

CVE-2023-1550

Insertion of Sensitive Information into log file vulnerability in NGINX Agent. NGINX Agent version 2.0 before 2.23.3 inserts sensitive information into a log file. An authenticated attacker with local access to read agent log files may gain access to private keys. This issue is only exposed when...

5.5CVSS6.3AI score
Exploits0References2
Prion
Prionadded 2023/03/29 5:15 p.m.21 views

Design/Logic Flaw

Insertion of Sensitive Information into log file vulnerability in NGINX Agent. NGINX Agent version 2.0 before 2.23.3 inserts sensitive information into a log file. An authenticated attacker with local access to read agent log files may gain access to private keys. This issue is only exposed when...

1.7CVSS5.1AI score0.00218EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder