Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

969 matches found

Positive Technologies
Positive Technologiesadded 2023/10/25 12:0 a.m.1 views

PT-2023-27872 · Google · Android Debug Bridge

Name of the Vulnerable Software and Affected Versions: TPC-110W device affected versions not specified Description: The issue allows an unprivileged user with access to the subnet of the device to gain a root shell on the device itself by exploiting the lack of authentication of the su binary fil...

8.8CVSS8.6AI score0.00125EPSS
Exploits0References3
GithubExploit
GithubExploitadded 2023/09/01 4:17 p.m.361 views

Exploit for Use of a Broken or Risky Cryptographic Algorithm in Vmware Aria_Operations_For_Networks

CVE-2023-34039 POC for CVE-2023-34039 VMWare Aria Operations f...

9.8CVSS9.9AI score0.93171EPSS
Exploits9
Positive Technologies
Positive Technologiesadded 2023/08/16 12:0 a.m.4 views

PT-2023-4589 · Cisco · Cisco Telepresence Video Communication Server +1

Name of the Vulnerable Software and Affected Versions: Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS version 14.0 Description: A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS...

7.7CVSS7.4AI score0.34269EPSS
Exploits1References19
Tenable Nessus
Tenable Nessusadded 2023/08/02 12:0 a.m.10 views

Moxa EDR-810 Web Server ping Command Injection (CVE-2017-12120)

An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation, resulting in a root shell. An attacker can inject OS commands into the ip= parm in the...

9CVSS8.1AI score0.02645EPSS
Exploits4References2
Tenable Nessus
Tenable Nessusadded 2023/08/02 12:0 a.m.12 views

Moxa EDR-810 Web Server Certificate Signing Request Command Injection (CVE-2017-12125)

An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into the CN= parm in the /goform/netWebCSRGen uri t...

9CVSS8.1AI score0.02645EPSS
Exploits2References2
GithubExploit
GithubExploitadded 2023/07/10 10:55 p.m.454 views

Exploit for Race Condition in Qualcomm Apq8053_Firmware

Fork My adaptation for the SM-F926U from the original exploit...

8.4CVSS8.1AI score0.03701EPSS
Exploits1
GithubExploit
GithubExploitadded 2023/07/09 10:6 a.m.584 views

Exploit for Race Condition in Canonical Snapd

CVE-2021-44731-snap-confine-SUID Local Privilege Escalation Ex...

7.8CVSS8.4AI score0.01065EPSS
Exploits4
0day.today
0day.todayadded 2023/06/07 12:0 a.m.285 views

CloudPanel 2.2.2 Privilege Escalation / Path Traversal Exploit

CloudPanel versions 2.0.0 through 2.2.2 suffer from a privilege escalation vulnerability when a traversal is leveraged against clpctlWrapper for which all normal users have sudo access. Title : Privilege Escalation through path traversal CVE ID : CVE-2023-33747 Exploit Author : EagleEye Github :...

7.8CVSS7.3AI score0.00147EPSS
Exploits3
GithubExploit
GithubExploitadded 2023/05/17 8:59 a.m.14 views

Exploit for Missing Authentication for Critical Function in Cisco Spa112_Firmware

RancidCrisco Minimum Viable PoC for CVE-2023-20126 This is th...

9.8CVSS7.4AI score0.69926EPSS
Exploits1
OSV
OSVadded 2023/05/05 3:15 p.m.1 views

CVE-2023-30054

TOTOLINK A7100RU V7.4cu.2313B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload...

9.8CVSS7.3AI score0.03584EPSS
Exploits1References1
NVD
NVDadded 2023/05/05 3:15 p.m.12 views

CVE-2023-30054

TOTOLINK A7100RU V7.4cu.2313B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload...

9.8CVSS9.7AI score0.03584EPSS
Exploits1References1
Prion
Prionadded 2023/05/05 3:15 p.m.13 views

Command injection

TOTOLINK A7100RU V7.4cu.2313B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload...

7.5CVSS9.7AI score0.03584EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/05/05 12:0 a.m.9 views

CVE-2023-30054

TOTOLINK A7100RU V7.4cu.2313B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload...

9.8AI score0.03584EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/05/05 12:0 a.m.1 views

TOTOLINK A7100RU 操作系统命令注入漏洞

TOTOLINK A7100RU is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK A7100RU version V7.4cu.2313B20191024, which stems from a command injection vulnerability in that an attacker can obtain a stable root shell via a specially crafted payload...

9.8CVSS8.4AI score0.03584EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/05/05 12:0 a.m.1 views

PT-2023-22519 · Totolink · Totolink A7100Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A7100RU version 7.4cu.2313 B20191024 Description: The issue is a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload. Recommendations: For TOTOLINK A7100RU version...

9.8CVSS9.5AI score0.03584EPSS
Exploits1References4
Cvelist
Cvelistadded 2023/05/05 12:0 a.m.16 views

CVE-2023-30054

TOTOLINK A7100RU V7.4cu.2313B20191024 has a Command Injection vulnerability. An attacker can obtain a stable root shell through a specially constructed payload...

9.9AI score0.03584EPSS
Exploits1References1
CVE
CVEadded 2023/05/05 12:0 a.m.44 views

CVE-2023-30054

CVE-2023-30054 affects TOTOLINK A7100RU firmware 7.4cu.2313_B20191024. The vulnerability is a Command Injection flaw in the device that can allow an attacker to obtain a stable root shell through a specially crafted payload. The CVSS metrics indicate a critical impact with network access, no user...

9.8CVSS9.6AI score0.03584EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Stormadded 2023/04/03 12:0 a.m.900 views

sudo 1.9.12p1 Privilege Escalation

!/usr/bin/env bash Exploit Title: sudo 1.8.0 to 1.9.12p1 - Privilege Escalation Exploit Author: n3m1.sys CVE: CVE-2023-22809 Date: 2023/01/21 Vendor Homepage: https://www.sudo.ws/ Software Link: https://www.sudo.ws/dist/sudo-1.9.12p1.tar.gz Version: 1.8.0 to 1.9.12p1 Tested on: Ubuntu Server 22.0...

7.8CVSS7.9AI score0.39861EPSS
Exploits20
0day.today
0day.todayadded 2023/04/03 12:0 a.m.312 views

sudo 1.8.0 to 1.9.12p1 - Privilege Escalation Exploit

!/usr/bin/env bash Exploit Title: sudo 1.8.0 to 1.9.12p1 - Privilege Escalation Exploit Author: n3m1.sys CVE: CVE-2023-22809 Date: 2023/01/21 Vendor Homepage: https://www.sudo.ws/ Software Link: https://www.sudo.ws/dist/sudo-1.9.12p1.tar.gz Version: 1.8.0 to 1.9.12p1 Tested on: Ubuntu Server 22.0...

7.8CVSS8.2AI score0.39861EPSS
Exploits20
Exploit DB
Exploit DBadded 2023/04/03 12:0 a.m.1272 views

sudo 1.8.0 to 1.9.12p1 - Privilege Escalation

!/usr/bin/env bash Exploit Title: sudo 1.8.0 to 1.9.12p1 - Privilege Escalation Exploit Author: n3m1.sys CVE: CVE-2023-22809 Date: 2023/01/21 Vendor Homepage: https://www.sudo.ws/ Software Link: https://www.sudo.ws/dist/sudo-1.9.12p1.tar.gz Version: 1.8.0 to 1.9.12p1 Tested on: Ubuntu Server 22.0...

7.8CVSS8.2AI score0.39861EPSS
Exploits20
Rows per page
Query Builder