Lucene search
K

2481 matches found

Packet Storm
Packet Storm
added 2023/11/14 12:0 a.m.632 views

F5 BIG-IP TMUI AJP Smuggling Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/apachejp' class MetasploitModule 'F5 BIG-IP TMUI AJP Smuggling RCE', 'Description' = %q This module exploits a flaw in F5's BIG-IP Traffic Management...

9.8CVSS7.1AI score0.96515EPSS
Exploits17
0day.today
0day.today
added 2023/11/10 12:0 a.m.585 views

F5 BIG-IP TMUI AJP Smuggling Remote Code Execution Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/apachejp' class MetasploitModule 'F5 BIG-IP TMUI AJP Smuggling RCE', 'Description' = %q This module exploits a flaw in F5's BIG-IP Traffic Management...

9.8CVSS7.4AI score0.96515EPSS
Exploits17
Metasploit
Metasploit
added 2023/11/08 7:50 p.m.628 views

Cisco IOX XE unauthenticated OS command execution

This module leverages both CVE-2023-20198 and CVE-2023-20273 against vulnerable instances of Cisco IOS XE devices which have the Web UI exposed. An attacker can execute arbitrary OS commands with root privileges. This module leverages CVE-2023-20198 to create a new admin user, then authenticating...

10CVSS8.8AI score0.99571EPSS
Exploits27
RedHat Linux
RedHat Linux
added 2023/11/08 2:26 p.m.5 views

Foreman: Arbitrary code execution through templates

An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system...

9.1CVSS6.3AI score0.01382EPSS
Exploits0References4
OSV
OSV
added 2023/11/07 8:15 p.m.6 views

CVE-2023-4956

A flaw was found in Quay. Clickjacking is when an attacker uses multiple transparent or opaque layers to trick a user into clicking on a button or link on another page when they intend to click on the top-level page. During the pentest, it has been detected that the config-editor page is vulnerab...

4.3CVSS5.7AI score0.00479EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/11/07 12:0 a.m.42 views

CVE-2023-33480

RemoteClinic 2.0 contains a critical vulnerability chain that can be exploited by a remote attacker with low-privileged user credentials to create admin users, escalate privileges, and execute arbitrary code on the target system via a PHP shell. The vulnerabilities are caused by a lack of input...

9.3AI score0.0193EPSS
Exploits1References1
OSV
OSV
added 2023/11/06 11:15 a.m.3 views

CVE-2023-4996

Netskope was made aware of a security vulnerability in its NSClient product for version 100 & prior where a malicious non-admin user can disable the Netskope client by using a specially-crafted package. The root cause of the problem was a user control code when called by a Windows ServiceControll...

8.8CVSS5.8AI score0.0038EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/06 12:0 a.m.7 views

Proofpoint Enterprise Protection Cross-Site Scripting Vulnerability

Proofpoint Enterprise Protection is an application from Proofpoint USA. It provides functionality to protect email. A security vulnerability exists in Proofpoint Enterprise Protection that stems from a stored cross-site scripting XSS vulnerability in AdminUI...

6.1CVSS5.6AI score0.00342EPSS
Exploits0References2
Metasploit
Metasploit
added 2023/11/02 7:50 p.m.673 views

F5 BIG-IP TMUI AJP Smuggling RCE

This module exploits a flaw in F5's BIG-IP Traffic Management User Interface TMUI that enables an external, unauthenticated attacker to create an administrative user. Once the user is created, the module uses the new account to execute a command payload. Both the exploit and check methods...

9.8CVSS9.6AI score0.96515EPSS
Exploits17
Veracode
Veracode
added 2023/11/02 7:49 a.m.22 views

Account Takeover

authentik is vulnerable to potential account takeover. authentik uses a blueprint to create default admin user, which also optionally sets an admin password from environment variable. When the default admin is deleted, it is possible for an attacker to set the password for admin user without...

9.8CVSS7.1AI score0.00654EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2023/10/31 4:15 p.m.32 views

CVE-2023-46249

authentik is an open-source Identity Provider. Prior to versions 2023.8.4 and 2023.10.2, when the default admin user has been deleted, it is potentially possible for an attacker to set the password of the default admin user without any authentication. authentik uses a blueprint to create the...

9.8CVSS9.5AI score0.00654EPSS
Exploits0References5
Prion
Prion
added 2023/10/31 4:15 p.m.28 views

Design/Logic Flaw

authentik is an open-source Identity Provider. Prior to versions 2023.8.4 and 2023.10.2, when the default admin user has been deleted, it is potentially possible for an attacker to set the password of the default admin user without any authentication. authentik uses a blueprint to create the...

7.5CVSS9.4AI score0.00654EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/10/31 3:20 p.m.23 views

CVE-2023-46249 authentik potential installation takeover when default admin user is deleted

authentik is an open-source Identity Provider. Prior to versions 2023.8.4 and 2023.10.2, when the default admin user has been deleted, it is potentially possible for an attacker to set the password of the default admin user without any authentication. authentik uses a blueprint to create the...

9.6CVSS9.3AI score0.00654EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/10/31 3:20 p.m.16 views

CVE-2023-46249 authentik potential installation takeover when default admin user is deleted

authentik is an open-source Identity Provider. Prior to versions 2023.8.4 and 2023.10.2, when the default admin user has been deleted, it is potentially possible for an attacker to set the password of the default admin user without any authentication. authentik uses a blueprint to create the...

9.6CVSS7.1AI score0.00654EPSS
Exploits0References5
CVE
CVE
added 2023/10/31 3:20 p.m.60 views

CVE-2023-46249

CVE-2023-46249 affects authentik (open-source Identity Provider). Before 2023.8.4 and 2023.10.2, if the default admin user is deleted, an attacker may set the default admin password without authentication via the initial-setup flow and a blueprint that can read an environment variable. The issue ...

9.8CVSS9.5AI score0.00654EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2023/10/31 3:20 p.m.34 views

CVE-2023-46249 authentik potential installation takeover when default admin user is deleted

authentik is an open-source Identity Provider. Prior to versions 2023.8.4 and 2023.10.2, when the default admin user has been deleted, it is potentially possible for an attacker to set the password of the default admin user without any authentication. authentik uses a blueprint to create the...

9.6CVSS9.7AI score0.00654EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/10/30 11:53 p.m.14 views

CVE-2023-46138 JumpServer default admin user email leak password reset

JumpServer is an open source bastion host and maintenance security audit system that complies with 4A specifications. Prior to version 3.8.0, the default email for initial user admin is [email protected], and users reset their passwords by sending an email. Currently, the domain mycompany.com h...

3.7CVSS7AI score0.00316EPSS
Exploits0References2
Hacker One
Hacker One
added 2023/10/30 9:12 p.m.15 views

A.S. Watson Group : Access to internal info via Graphql on https://tng-api.watsons.com.my

Vulnerability description not provided...

7.1AI score
Exploits0
GithubExploit
GithubExploit
added 2023/10/30 12:17 a.m.67 views

Exploit for Improper Input Validation in Atlassian Confluence_Data_Center

Confluence Hack CVE-2023-22515 exploit.py Exploit to creat...

10CVSS9.9AI score0.99156EPSS
Exploits39
NVD
NVD
added 2023/10/26 5:15 p.m.57 views

CVE-2023-5624

Under certain conditions, Nessus Network Monitor was found to not properly enforce input validation. This could allow an admin user to alter parameters that could potentially allow a blindSQL injection...

7.2CVSS7.1AI score0.00484EPSS
Exploits0References1
Rows per page
Query Builder