CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Metasploit•added 2026/04/02 7:2 p.m.•165 views

HTTPS Fetch, Windows Command Shell, Reverse TCP Stager (RC4 Stage Encryption DNS, Metasm)

Fetch and execute an x86 payload from an HTTPS server. Spawn a piped command shell staged. Connect back to the attacker Module Options msf use payload/cmd/windows/https/x86/shell/reversetcprc4dns msf payloadreversetcprc4dns show actions ...actions... msf payloadreversetcprc4dns set ACTION msf...

Metasploit•added 2026/04/02 7:2 p.m.•196 views

HTTPS Fetch, Windows Command Shell, Hidden Bind TCP Inline

Fetch and execute an x86 payload from an HTTPS server. Listen for a connection from certain IP and spawn a command shell. The shellcode will reply with a RST packet if the connections is not coming from the IP defined in AHOST. This way the port will appear as "closed" helping us to hide the...

Metasploit•added 2026/04/02 7:2 p.m.•128 views

HTTP Fetch, Windows Command Shell, Hidden Bind TCP Stager

Fetch and execute an x86 payload from an HTTP server. Spawn a piped command shell staged. Listen for a connection from a hidden port and spawn a command shell to the allowed host. Module Options msf use payload/cmd/windows/http/x86/shell/bindhiddentcp msf payloadbindhiddentcp show actions...

Metasploit•added 2026/04/02 7:2 p.m.•120 views

HTTP Fetch, Hidden Bind Ipknock TCP Stager

Fetch and execute an x86 payload from an HTTP server. Listen for a connection. First, the port will need to be knocked from the IP defined in KHOST. This IP will work as an authentication method you can spoof it with tools like hping. After that you could get your shellcode from any IP. The socke...

Metasploit•added 2026/04/02 7:2 p.m.•176 views

HTTP Fetch, Windows Command Shell, Bind TCP Inline

Fetch and execute an x86 payload from an HTTP server. Listen for a connection and spawn a command shell Module Options msf use payload/cmd/windows/http/x86/shellbindtcp msf payloadshellbindtcp show actions ...actions... msf payloadshellbindtcp set ACTION msf payloadshellbindtcp show options ...sh...

RedhatCVE•added 2026/03/26 3:11 p.m.•4 views

CVE-2026-32000

OpenClaw versions prior to 2026.2.19 contain a command injection vulnerability in the Lobster extension tool execution that uses Windows shell fallback with shell: true after spawn failures. Attackers can inject shell metacharacters in command arguments to execute arbitrary commands when subproce...

7.8CVSS6.3AI score0.00053EPSS

Exploits0References1

EUVD•added 2026/03/24 12:30 a.m.•3 views

EUVD-2026-14590

OpenClaw 2026.1.21 before 2026.2.19 contains a command injection vulnerability in the Lobster extension's Windows shell fallback mechanism that allows local operators to execute arbitrary commands. When spawn failures trigger shell fallback with shell: true, tool-provided arguments are interprete...

7.3CVSS6.1AI score

Cvelist•added 2026/03/23 9:36 p.m.•17 views

CVE-2026-32908

...

CVE•added 2026/03/23 9:36 p.m.•4 views

CVE-2026-32908

OpenClaw 2026.1.21 before 2026.2.19 contains a local command injection in the Lobster extension’s Windows shell fallback. When spawn failures trigger shell fallback with shell: true, tool-provided arguments are interpreted by cmd.exe, enabling arbitrary commands via workflow-controlled parameters...

6.1AI score

Positive Technologies•added 2026/03/23 12:0 a.m.•2 views

PT-2026-27240

7CVSS6.1AI score

Exploits0References5

Information Security Automation•added 2026/03/22 9:0 a.m.•10 views

March "In the Trend of VM" (#25): once again, vulnerabilities are only in Microsoft products

March "In the Trend of VM" 25: once again, vulnerabilities are only in Microsoft products. I present the traditional monthly roundup of trending vulnerabilities according to Positive Technologies. As in February, it turned out to be quite compact and focused on a single vendor. 🗞 Post on Habr rus...

8.8CVSS7.2AI score0.20196EPSS

Exploits8

EUVD•added 2026/03/19 3:30 a.m.•3 views

EUVD-2026-13029

OpenClaw versions 2026.1.21 prior to 2026.2.19 contain a command injection vulnerability in the Lobster extension's Windows shell fallback mechanism that allows attackers to inject arbitrary commands through tool-provided arguments. When spawn failures trigger shell fallback with shell: true,...

7CVSS6AI score0.00039EPSS

OSV•added 2026/03/19 3:30 a.m.•4 views

GHSA-5RP4-CWGH-GVWQ Duplicate Advisory: OpenClaw: WebSocket shared-auth connections could self-declare elevated scopes

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-7fcc-cw49-xm78. This link is maintained to preserve external references. Original Description OpenClaw versions prior to 2026.2.19 contain a command injection vulnerability in the Lobster extension tool executio...

6.3CVSS6.3AI score0.00053EPSS

EUVD•added 2026/03/19 3:30 a.m.•2 views

EUVD-2026-13039

7.8CVSS6.2AI score0.00053EPSS

Github Security Blog•added 2026/03/19 3:30 a.m.•6 views

Duplicate Advisory: OpenClaw: WebSocket shared-auth connections could self-declare elevated scopes

7.8CVSS6.1AI score0.00053EPSS

Exploits0References5Affected Software1

OSV•added 2026/03/19 3:30 a.m.•2 views

GHSA-8PX5-2GFR-7PH6 Duplicate Advisory: OpenClaw has Windows Lobster shell fallback command injection in constrained fallback path

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fg3m-vhrr-8gj6. This link is maintained to preserve external references. Original Description OpenClaw versions 2026.1.21 prior to 2026.2.19 contain a command injection vulnerability in the Lobster extension's...

5.8CVSS6AI score0.00039EPSS