Lucene search
K

28 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-5871

Malware in sbrugna...

7.5CVSS6.3AI score0.03559EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-5873

Malware in sbrugna...

5CVSS6.3AI score0.02889EPSS
Exploits3References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2013-5872

Malware in sbrugna...

4.3CVSS6.3AI score0.01761EPSS
Exploits3References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-22022

Malicious code in bioql PyPI...

10CVSS6.6AI score0.01157EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2024-22023

Malicious code in bioql PyPI...

9CVSS6.6AI score0.01889EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:25 a.m.10 views

CVE-2024-24621

Softaculous Webuzo contains an authentication bypass vulnerability through the password reset functionality. Remote, anonymous attackers can exploit this vulnerability to gain full server access as the root user...

10CVSS7.7AI score0.01157EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:22 a.m.8 views

CVE-2024-24623

Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system...

9CVSS7.8AI score0.01889EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:17 a.m.6 views

CVE-2024-24622

Softaculous Webuzo contains a command injection in the password reset functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system...

9CVSS8AI score0.01889EPSS
Exploits0References1
NVD
NVD
added 2024/07/25 10:15 p.m.27 views

CVE-2024-24621

Softaculous Webuzo contains an authentication bypass vulnerability through the password reset functionality. Remote, anonymous attackers can exploit this vulnerability to gain full server access as the root user...

10CVSS0.01157EPSS
Exploits0References1
NVD
NVD
added 2024/07/25 10:15 p.m.27 views

CVE-2024-24623

Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system...

9CVSS0.01889EPSS
Exploits0References1
OSV
OSV
added 2024/07/25 10:15 p.m.6 views

CVE-2024-24621

Softaculous Webuzo contains an authentication bypass vulnerability through the password reset functionality. Remote, anonymous attackers can exploit this vulnerability to gain full server access as the root user...

9.8CVSS5.8AI score0.01157EPSS
Exploits0References1
OSV
OSV
added 2024/07/25 10:15 p.m.6 views

CVE-2024-24623

Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system...

8.8CVSS6.2AI score0.01889EPSS
Exploits0References1
CVE
CVE
added 2024/07/25 9:44 p.m.75 views

CVE-2024-24622

CVE-2024-24622 affects Softaculous Webuzo. The vulnerability is a command injection in the password reset functionality that enables a remote, authenticated attacker to achieve code execution on the system. The provided connected documents confirm the impact but do not include concrete patch vers...

9CVSS9.2AI score0.01889EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/25 9:44 p.m.22 views

CVE-2024-24623 Softaculous Webuzo FTP Management Command Injection

Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system...

9CVSS8.1AI score0.01889EPSS
Exploits0References1
CVE
CVE
added 2024/07/25 9:44 p.m.97 views

CVE-2024-24621

CVE-2024-24621 affects Softaculous Webuzo, describing an authentication bypass through the password-reset flow. The connected documents consistently state that remote, anonymous attackers can exploit this vulnerability to gain full server access as root. The exploitation details are provided (rem...

10CVSS9.9AI score0.01157EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/25 9:44 p.m.46 views

CVE-2024-24621 Softaculous Webuzo Authentication Bypass

Softaculous Webuzo contains an authentication bypass vulnerability through the password reset functionality. Remote, anonymous attackers can exploit this vulnerability to gain full server access as the root user...

10CVSS7.6AI score0.01157EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/25 12:0 a.m.12 views

PT-2024-20481 · Softaculous · Softaculous Webuzo

Name of the Vulnerable Software and Affected Versions: Softaculous Webuzo affected versions not specified Description: The issue allows remote, anonymous attackers to exploit an authentication bypass vulnerability through the password reset functionality, potentially gaining full server access as...

10CVSS7.4AI score0.01157EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/25 12:0 a.m.8 views

PT-2024-20483 · Softaculous · Softaculous Webuzo

Name of the Vulnerable Software and Affected Versions: Softaculous Webuzo affected versions not specified Description: The issue is related to a command injection vulnerability in the FTP management functionality. This allows a remote, authenticated attacker to exploit the vulnerability and gain...

9CVSS7.8AI score0.01889EPSS
Exploits0References6
NVD
NVD
added 2014/12/27 6:59 p.m.17 views

CVE-2013-6043

The login function in Softaculous Webuzo before 2.1.4 provides different error messages for invalid authentication attempts depending on whether the user account exists, which allows remote attackers to enumerate usernames via a series of requests...

5CVSS6.8AI score0.02889EPSS
Exploits3References2
Prion
Prion
added 2014/12/27 6:59 p.m.16 views

Authentication flaw

The login function in Softaculous Webuzo before 2.1.4 provides different error messages for invalid authentication attempts depending on whether the user account exists, which allows remote attackers to enumerate usernames via a series of requests...

5CVSS7.3AI score0.02889EPSS
Exploits3References2Affected Software1
Rows per page
Query Builder