Lucene search
K

202 matches found

GithubExploit
GithubExploit
added 2025/03/16 11:59 a.m.365 views

Exploit for Deserialization of Untrusted Data in Apache Tomcat

利用条件 + DefaultServlet 写入功能启用:需在 web.xml 中配置 readonly=false...

9.8CVSS9.3AI score0.99945EPSS
Exploits46
Wallarm Lab
Wallarm Lab
added 2025/03/14 3:38 a.m.247 views

One PUT Request to Own Tomcat: CVE-2025-24813 RCE is in the Wild

A devastating new remote code execution RCE vulnerability, CVE-2025-24813, is now actively exploited in the wild. Attackers need just one PUT API request to take over vulnerable Apache Tomcat servers. The exploit, originally published by a Chinese forum user iSee857, is already available online:...

9.8CVSS6.4AI score0.99945EPSS
Exploits46
OSV
OSV
added 2025/03/10 6:31 p.m.2 views

GHSA-83QJ-6FR2-VHQG Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT

Path Equivalence: 'file.Name' Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from 10.1.0-M1 through...

9.8CVSS7.3AI score0.99945EPSS
Exploits46References15
ATTACKERKB
ATTACKERKB
added 2025/03/10 12:0 a.m.20 views

CVE-2025-24813

Path Equivalence: ‘file.Name’ Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from 10.1.0-M1 through...

10CVSS9.6AI score0.99945EPSS
In wildExploits46References3
Cvelist
Cvelist
added 2025/02/24 7:24 a.m.23 views

CVE-2025-1412 Session Persistence After User-to-Bot Conversion

Mattermost versions 9.11.x = 9.11.6, 10.4.x = 10.4.1 fail to invalidate all active sessions when converting a user to a bot, with allows the converted user to escalate their privileges depending on the permissions granted to the bot...

3.1CVSS0.00237EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/24 7:24 a.m.4 views

CVE-2025-1412 Session Persistence After User-to-Bot Conversion

Mattermost versions 9.11.x = 9.11.6, 10.4.x = 10.4.1 fail to invalidate all active sessions when converting a user to a bot, with allows the converted user to escalate their privileges depending on the permissions granted to the bot...

3.1CVSS7.3AI score0.00237EPSS
Exploits0References1
0day.today
0day.today
added 2025/02/15 12:0 a.m.206 views

ABB Cylon FLXeon 9.3.4 Session Persistence Vulnerability

ABB Cylon FLXeon version 9.3.4 has an issue where user sessions on controllers remain active for up to seven days, even after a client-side logout. ABB Cylon FLXeon 9.3.4 Session Persistence Vulnerability Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: FLXeon Series FB...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2025/02/13 12:0 a.m.268 views

ABB Cylon FLXeon 9.3.4 Session Persistence

ABB Cylon FLXeon version 9.3.4 has an issue where user sessions on controllers remain active for up to seven days, even after a client-side logout. ABB Cylon FLXeon 9.3.4 Session Persistence Vulnerability Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: FLXeon Series FB...

7.3AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2025/02/13 12:0 a.m.265 views

ABB Cylon FLXeon 9.3.4 Session Persistence Vulnerability

Summary BACnet® Smart Building Controllers. ABB's BACnet portfolio features a series of BACnet® IP and BACnet MS/TP field controllers for ASPECT® and INTEGRA™ building management solutions. ABB BACnet controllers are designed for intelligent control of HVAC equipment such as central plant, boiler...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/11/13 12:0 a.m.6 views

PT-2024-35375 · Jenkins · Jenkins Openid Connect Authentication Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins OpenId Connect Authentication Plugin versions 4.418.vccc7061f5b 6d and earlier Description: The issue arises because the plugin does not invalidate the previous session on login, allowing attackers to potentially use social engineerin...

8.8CVSS7.4AI score0.00613EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 8 : jbossweb (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tomcat: deserialization flaw in session persistence storage leading to RCE CVE-2020-9484 Note that Nessus has not...

7CVSS7.5AI score0.56636EPSS
Exploits15References1
Positive Technologies
Positive Technologies
added 2024/05/30 12:0 a.m.6 views

PT-2024-40534 · Packagist · Typo3/Cms-Core

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue allows existing sessions for a user account to remain active even after the user changes their password. To exploit this, an attacker would need a valid user account, either...

6.5CVSS6.9AI score
Exploits0References6
OSV
OSV
added 2024/05/14 3:39 p.m.2 views

CVE-2024-35049

SurveyKing v1.3.1 was discovered to keep users' sessions active after logout. Related to an incomplete fix for CVE-2022-25590...

9.1CVSS5.8AI score0.0073EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.4 views

SurveyKing 安全漏洞

SurveyKing is a powerful questionnaire system and exam system for javahuang individual developers. A security vulnerability exists in SurveyKing v1.3.1, which stems from the ability to keep a session active after a user logs out...

9.1CVSS6.7AI score0.0073EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2023/09/16 12:0 a.m.7 views

The vulnerability of the Redmine project and task management web application relates to incorrect session expiration times, allowing attackers to continue existing user sessions after two-factor authentication is enabled.

The vulnerability of the Redmine project and task management web application is related to an incorrect session expiration time. Exploiting this vulnerability allows a malicious actor to continue existing user sessions after two-factor authentication is enabled...

7.8CVSS7.2AI score0.01017EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/08/30 9:3 p.m.42 views

CVE-2023-41041 User session is still usable after logout in graylog2-server

Graylog is a free and open log management platform. In a multi-node Graylog cluster, after a user has explicitly logged out, a user session may still be used for API requests until it has reached its original expiry time. Each node maintains an in-memory cache of user sessions. Upon a cache-miss,...

2.6CVSS4.2AI score0.00411EPSS
Exploits1References4
OSV
OSV
added 2023/08/03 5:24 p.m.6 views

CLSA-2023-1691083477 Fix CVE(s): CVE-2021-25329, CVE-2022-23181, CVE-2020-9484

SECURITY UPDATE: Remote Code Execution via session persistence - debian/patches/CVE-2020-9484.patch: Improve validation of storage location when using FileStore. - CVE-2020-9484 SECURITY UPDATE: Fix for CVE-2020-9484 was incomplete - debian/patches/CVE-2021-25329-pre1.patch: Fix some edge cases...

7CVSS6.9AI score0.56636EPSS
Exploits15References1
Positive Technologies
Positive Technologies
added 2023/07/27 12:0 a.m.4 views

PT-2023-26469 · Kirby · Kirby

Name of the Vulnerable Software and Affected Versions: Kirby versions prior to 3.5.8.3 Kirby versions prior to 3.6.6.3 Kirby versions prior to 3.7.5.2 Kirby versions prior to 3.8.4.1 Kirby versions prior to 3.9.6 Description: The issue affects all Kirby sites with user accounts, unless Kirby's AP...

7.3CVSS7AI score0.0072EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2023/05/30 2:22 a.m.2 views

SUSE CVE-2023-32318

Nextcloud server provides a home for data. A regression in the session handling between Nextcloud Server and the Nextcloud Text app prevented a correct destruction of the session on logout if cookies were not cleared manually. After successfully authenticating with any other account the previous...

7.2CVSS6.6AI score0.00209EPSS
Exploits0References3
OSV
OSV
added 2023/03/01 8:15 a.m.4 views

CVE-2023-22771

An insufficient session expiration vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability allows an attacker to keep a session running on an affected device after the removal of the impacted account...

2.4CVSS5.8AI score0.00443EPSS
Exploits0References1
Rows per page
Query Builder