Lucene search
+L

178 matches found

github
github
added 2026/07/02 8:56 p.m.13 views

9router's Hardcoded Default fallback JWT Secret Allows Authentication Bypass

Summary 9router uses a publicly known hardcoded string "9router-default-secret-change-me" as the fallback of JWT secret for all Dashboard session JWTs when the JWTSECRET environment variable is not set. Because this secret is committed in the public repository and unchanged across all releases, a...

10CVSS5.8AI score0.0019EPSS
Exploits1References2Affected Software1
github
github
added 2026/07/02 8:38 p.m.15 views

fast-mcp-telegram: Bearer token path traversal bypasses reserved Telegram session protection

Summary fast-mcp-telegram validates HTTP Bearer tokens by joining the raw token string into a session-file path. The verifier rejects the exact reserved token telegram, but it does not reject path separators or normalize the path before checking whether the session file exists. A remote HTTP clie...

9.4CVSS6.1AI score0.00423EPSS
Exploits0References2Affected Software1
osv
osv
added 2026/07/02 8:38 p.m.6 views

GHSA-RXW2-PC8J-VXWM fast-mcp-telegram: Bearer token path traversal bypasses reserved Telegram session protection

Summary fast-mcp-telegram validates HTTP Bearer tokens by joining the raw token string into a session-file path. The verifier rejects the exact reserved token telegram, but it does not reject path separators or normalize the path before checking whether the session file exists. A remote HTTP clie...

9.4CVSS6.1AI score0.00423EPSS
Exploits0References2
nvd
nvd
added 2026/06/04 2:16 p.m.18 views

CVE-2019-25741

Mobatek MobaXterm 12.1 contains a structured exception handling SEH based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the...

9.8CVSS0.00638EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/06/04 1:22 p.m.7 views

CVE-2019-25741

Mobatek MobaXterm 12.1 contains a structured exception handling SEH based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the...

9.8CVSS6.4AI score0.00638EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2026/06/04 1:22 p.m.9 views

CVE-2019-25741 Mobatek MobaXterm 12.1 Buffer Overflow via Sessions File

Mobatek MobaXterm 12.1 contains a structured exception handling SEH based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the...

9.8CVSS6.4AI score0.00638EPSS
Exploits0References3
euvd
euvd
added 2026/05/28 5:12 p.m.25 views

EUVD-2026-32958

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the fix for CVE-2026-33509 prevents setting storagefolder inside PKGDIR or userdir, but does NOT protect the Flask session directory /tmp/pyLoad/flask. An authenticated attacker can set storagefolder to...

8.8CVSS5.8AI score0.00529EPSS
Exploits1References1
cnnvd
cnnvd
added 2026/05/27 12:0 a.m.11 views

UFO³ 操作系统命令注入漏洞

UFO³ is an open-source cross-device collaboration multi-agent task orchestration tool developed by Microsoft. Versions of UFO³ prior to v3.0.0 contained a vulnerability related to operating system command injection. This vulnerability stemmed from the use of ShellReceiver.runshell, which directly...

7.8CVSS6.1AI score0.01722EPSS
Exploits0References1
githubexploit
githubexploit
added 2026/05/24 6:5 p.m.144 views

Exploit for Improper Neutralization of Null Byte or NUL Character in Wftpserver Wing_Ftp_Server

CVE-2025-47812 — Wing FTP Server Unauth RCE rewrite Python...

10CVSS7.7AI score0.95343EPSS
Exploits23
githubexploit
githubexploit
added 2026/05/24 4:8 p.m.103 views

Exploit for Improper Input Validation in Adobe Commerce

CVE-2025-54236 - SessionReaper Lab Ambiente Docker para demon...

9.1CVSS6.1AI score0.96742EPSS
Exploits9
githubexploit
githubexploit
added 2026/05/24 11:10 a.m.112 views

Exploit for Missing Authentication for Critical Function in Cpanel

CPANEL CVE EXPLOIT English | فارسی PersianREADME...

9.8CVSS6.2AI score0.981EPSS
Exploits64
osv
osv
added 2026/05/13 7:8 p.m.4 views

CVE-2026-22677 Hermes WebUI < 0.51.44 Path Traversal via Session Import Endpoint

Hermes WebUI prior to 0.51.44 contains a path traversal vulnerability in the session import endpoint that allows authenticated attackers to read arbitrary files by importing a crafted session with an unrestricted workspace value. Attackers can supply a blocked filesystem root in the workspace fie...

6CVSS6.1AI score0.00376EPSS
Exploits0References7
osv
osv
added 2026/05/11 2:35 p.m.3 views

CVE-2026-7818 pgAdmin 4: Unsafe deserialization (CWE-502) in file-backed session manager leads to remote code execution

Deserialization of untrusted data CWE-502 in pgAdmin 4 FileBackedSessionManager. The session manager performed unsafe deserialization of session-file contents using Python's standard object-serialization module before performing any HMAC integrity check. Any file dropped into the sessions directo...

7.3CVSS7.7AI score0.00131EPSS
Exploits0References4
githubexploit
githubexploit
added 2026/05/10 12:35 p.m.118 views

Exploit for Missing Authentication for Critical Function in Cpanel

cPanelSniper CVE-2026-41940 — c...

9.8CVSS6.2AI score0.981EPSS
Exploits64
githubexploit
githubexploit
added 2026/05/05 8:2 p.m.116 views

cPanelSniper-

cPanelSniper CVE-2026-41940 — c...

9.8CVSS6.2AI score0.981EPSS
Exploits64
githubexploit
githubexploit
added 2026/05/01 3:37 p.m.106 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940: cPanel/WHM Authentication Bypass Analysis...

9.8CVSS5.8AI score0.981EPSS
Exploits64
cve
cve
added 2026/05/01 1:56 p.m.24 views

CVE-2026-31718

The CVE-2026-31718 entries describe a use-after-free in ksmbd (Linux kernel in-kernel SMB3 server) triggered when a durable file handle survives a session disconnect. The root cause is an asymmetric cleanup of lock state: byte-range locks left on a freed conn-&gt;lock_list after fp-&gt;conn is nu...

9.8CVSS5.7AI score0.00356EPSS
Exploits0References5Affected Software1
githubexploit
githubexploit
added 2026/05/01 12:9 p.m.205 views

Exploit for Missing Authentication for Critical Function in Cpanel

cPanelSniper CVE-2026-41940 — c...

9.8CVSS5.9AI score0.981EPSS
Exploits64
githubexploit
githubexploit
added 2026/05/01 9:40 a.m.85 views

Exploit for Missing Authentication for Critical Function in Cpanel

CVE-2026-41940 Detection & Verification !License: MIThttp...

9.8CVSS5.8AI score0.981EPSS
Exploits64
rapid7blog
rapid7blog
added 2026/04/29 8:0 p.m.15 views

CVE-2026-41940: cPanel & WHM Authentication Bypass

Overview On April 28, 2026, cPanel issued a security update to fix a critical vulnerability affecting the cPanel & WHM and WP Squared products. In the cPanel release notes, the bug was described as "an issue with session loading and saving." CVE-2026-41940, the identifier subsequently assigned on...

9.8CVSS6.4AI score0.981EPSS
Exploits64
Rows per page
Query Builder