Lucene search
K

57 matches found

Fedora
Fedora
added 2022/07/13 2:0 a.m.26 views

[SECURITY] Fedora 36 Update: golang-github-letsencrypt-pebble-2.3.1-5.fc36

A miniature version of Boulder, Pebble is a small RFC 8555 ACME test server n ot suited for a production certificate authority...

9.3CVSS8.2AI score0.05416EPSS
Exploits4
Snyk
Snyk
added 2022/06/23 9:26 a.m.2 views

Malicious Package

Overview test-server-components is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7AI score
Exploits0References3
GithubExploit
GithubExploit
added 2021/12/10 12:35 p.m.58 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

CVE-2021-44228-Test-Server A small server for verifing if a gi...

10CVSS6.7AI score0.99999EPSS
Exploits351
BDU FSTEC
BDU FSTEC
added 2021/06/09 12:0 a.m.6 views

The vulnerability of the ajaxhelper.php component of the Nagios Fusion software, which is used for visualizing the operational status of IT infrastructure, allows a hacker to gain access to user passwords.

The vulnerability of the ajaxhelper.php component of the Nagios Fusion software, which is used for visualizing the operational status of IT infrastructure, relates to the insecure storage of confidential information. Exploiting this vulnerability could allow an attacker, operating remotely, to ga...

7.8CVSS6.8AI score0.02724EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2021/05/24 1:15 p.m.4 views

CVE-2020-28911

Incorrect Access Control in Nagios Fusion 4.1.8 and earlier allows low-privileged authenticated users to extract passwords used to manage fused servers via the testserver command in ajaxhelper.php...

6.5CVSS5.8AI score0.02724EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/05/24 12:44 p.m.23 views

CVE-2020-28911

Incorrect Access Control in Nagios Fusion 4.1.8 and earlier allows low-privileged authenticated users to extract passwords used to manage fused servers via the testserver command in ajaxhelper.php...

7.2AI score0.02724EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/05/24 12:0 a.m.4 views

Nagios 安全漏洞

Nagios is a set of open source and free network monitoring tools from the American company Nagios. An access control error vulnerability exists in Nagios Fusion version 4.1.8 and earlier, which can be exploited by an attacker to extract the password used to manage the Fusion server via the...

6.5CVSS6.9AI score0.02724EPSS
Exploits1References5
0day.today
0day.today
added 2020/10/07 12:0 a.m.39 views

BACnet Test Server 1.01 - Remote Denial of Service Exploit

Title: BACnet Test Server 1.01 - Remote Denial of Service PoC Author: LiquidWorm Vendor: https://www.bac-test.com Product link: https://sourceforge.com/projects/bacnetserver CVE: N/A !/usr/bin/perl BACnet Test Server 1.01 Remote Denial of Service Exploit Vendor: BACnet Interoperability Test...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/10/07 12:0 a.m.655 views

BACnet Test Server 1.01 Remote Denial Of Service

!/usr/bin/perl BACnet Test Server 1.01 Remote Denial of Service Exploit Vendor: BACnet Interoperability Test Services, Inc. Product web page: https://www.bac-test.com https://sourceforge.com/projects/bacnetserver Affected version: 1.01 BACnet Stack Version 0.5.7 Summary: This is a simple BACnet...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/10/07 12:0 a.m.726 views

BACnet Test Server 1.01 - Remote Denial of Service (PoC)

Title: BACnet Test Server 1.01 - Remote Denial of Service PoC Date: 2020-10-07 Author: LiquidWorm Vendor: https://www.bac-test.com Product link: https://sourceforge.com/projects/bacnetserver CVE: N/A !/usr/bin/perl BACnet Test Server 1.01 Remote Denial of Service Exploit Vendor: BACnet...

7AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2020/10/06 12:0 a.m.200 views

BACnet Test Server 1.01 Remote Denial of Service Exploit

Summary This is a simple BACnet Server aimed at developers who want to explore or test their BACnet Client implementations of the ASHRAE BACnet protocol. It is based on Steve Karg's fine implementation of the BACnet Stack. Description The BACNet Test Server is vulnerable to a denial of service Do...

8.7CVSS5.8AI score0.00431EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:8 a.m.18 views

Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects RIT and RTCP in Rational Test Workbench, RTCP and RIT Agent in Rational Test Virtualization Server, and RIT Agent in Rational Performance Test Server (CVE-2015-7575)

Summary The MD5 “SLOTH” vulnerability on TLS 1.2 affects Rational Integration Tester and Rational Test Control Panel in Rational Test Workbench, Rational Test Control Panel and RIT Agent in Rational Test Virtualization Server, and RIT Agent in Rational Performance Test Server Vulnerability Detail...

5.9CVSS0.0288EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:7 a.m.32 views

Security Bulletin: Vulnerability in Apache Commons affects RIT and RTCP in Rational Test Workbench, RTCP and RIT Agent in Rational Test Virtualization Server, and RIT Agent in Rational Performance Test Server (CVE-2015-7450)

Summary An Apache Commons Collections vulnerability for handling Java object deserialization was addressed by Rational Integration Tester in Rational Test Workbench, Rational Test Control Panel in Rational Test Workbench and Rational Test Virtualization Server, and RIT Agent in Rational Test...

10CVSS0.5AI score0.97655EPSS
Exploits10Affected Software3
CNVD
CNVD
added 2018/06/01 12:0 a.m.5 views

Quest KACE System Management Appliance Command Injection Vulnerability

The Quest KACE System Management Appliance provides comprehensive system management for all network-connected devices. A command injection vulnerability exists in the '/common/ajaxemailconnectiontest.php' script in Quest KACE System Management Appliance 8.0.318. An authenticated user can exploit...

9CVSS8AI score0.42917EPSS
Exploits3References1
myhack58
myhack58
added 2016/12/20 12:0 a.m.36 views

CVE-2016-8610: to cause a denial of service“SSL-Death Alert”vulnerability patch analysis-vulnerability warning-the black bar safety net

Recently, one for OpenSSL Red AlertSSL Death Alertvulnerability security patch caught our attention. Other serious security vulnerabilities, this vulnerability also caught our attention, because according to the vulnerability discoverer said, there is this vulnerability of OpenSSL Web servermay b...

0.39657EPSS
Exploits1
exploitpack
exploitpack
added 2010/11/09 12:0 a.m.15 views

Joomla! Component JQuarks4s 1.0.0 - Blind SQL Injection

Joomla! Component JQuarks4s 1.0.0 - Blind SQL Injection JQuarks4s Joomla Component 1.0.0 Blind SQL Injection Vulnerability Name JQuarks4s Vendor http://www.iptechinside.com/labs/projects/listfiles/jquarks-for-surveys Versions Affected 1.0.0 Author Salvatore Fresta aka Drosophila Website...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2000/10/17 12:0 a.m.31 views

iis-unicode.txt

Recently I received an email from Par Osterberg that directed my attention to a post in the Packetstorm forums: http://209.143.242.119/cgi-bin/cbmc/forums.cgi?authkey=anonymous&uname=anonymous&datopic=Windows&mesgcheck=defined&gum=474&editoron= An anonymous person posts that they can run arbitrar...

0.1AI score
Exploits0
Rows per page
Query Builder