Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0004

Malware in sbrugna...

7.5CVSS7.6AI score0.01162EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0005

Malware in sbrugna...

8.8CVSS8.8AI score0.01252EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0006

Malware in sbrugna...

5.3CVSS5.5AI score0.01279EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-0007

Malware in sbrugna...

7.5CVSS7.6AI score0.01287EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0003

Malware in sbrugna...

6.5CVSS6.5AI score0.00696EPSS
Exploits1References4
Prion
Prion
added 2018/03/13 9:29 p.m.17 views

Information disclosure

Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and system enumeration as well as data from the /etc/ajenti/config.yml file. This attack appears to be exploitable via network connectivity to the web application...

5CVSS7.4AI score0.01287EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/03/13 9:0 p.m.29 views

CVE-2018-1000126

Ajenti version 2 contains an Information Disclosure vulnerability in Line 176 of the code source that can result in user and system enumeration as well as data from the /etc/ajenti/config.yml file. This attack appears to be exploitable via network connectivity to the web application...

7.5AI score0.01287EPSS
Exploits1References1
OSV
OSV
added 2018/03/13 3:29 p.m.22 views

PYSEC-2018-110

Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter...

7.5CVSS5.1AI score0.01162EPSS
Exploits1References3
Prion
Prion
added 2018/03/13 3:29 p.m.19 views

Input validation

Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. This attack appear to be exploitable via By sending a malformed JSON, the tool responds with a traceback error that leaks a path of the...

5CVSS5.3AI score0.01279EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/03/13 3:29 p.m.26 views

PYSEC-2018-109

Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. This attack appear to be exploitable via By knowing how the requisition is made, and sending it as a normal user, the server, in...

6.5CVSS4.3AI score0.00696EPSS
Exploits1References3
Prion
Prion
added 2018/03/13 3:29 p.m.14 views

Input validation

Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter...

5CVSS7.5AI score0.01162EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/03/13 3:29 p.m.23 views

CVE-2018-1000082

Ajenti version version 2 contains a Cross ite Request Forgery CSRF vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the...

8.8CVSS9AI score0.01252EPSS
Exploits1References1
Prion
Prion
added 2018/03/13 3:29 p.m.13 views

Authorization

Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. This attack appear to be exploitable via By knowing how the requisition is made, and sending it as a normal user, the server, in...

4CVSS6.4AI score0.00696EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2018/03/13 3:29 p.m.13 views

Cross site request forgery (csrf)

Ajenti version version 2 contains a Cross ite Request Forgery CSRF vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the...

6.8CVSS9AI score0.01252EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/03/13 3:29 p.m.29 views

CVE-2018-1000081

Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter...

7.5CVSS7.5AI score0.01162EPSS
Exploits1References1
NVD
NVD
added 2018/03/13 3:29 p.m.22 views

CVE-2018-1000080

Ajenti version version 2 contains a Insecure Permissions vulnerability in Plugins download that can result in The download of any plugins as being a normal user. This attack appear to be exploitable via By knowing how the requisition is made, and sending it as a normal user, the server, in...

6.5CVSS6.4AI score0.00696EPSS
Exploits1References1
OSV
OSV
added 2018/03/13 3:29 p.m.24 views

PYSEC-2018-111

Ajenti version version 2 contains a Cross ite Request Forgery CSRF vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the...

8.8CVSS6.1AI score0.01252EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/03/13 3:0 p.m.23 views

CVE-2018-1000083

Ajenti version version 2 contains a Improper Error Handling vulnerability in Login JSON request that can result in The requisition leaks a path of the server. This attack appear to be exploitable via By sending a malformed JSON, the tool responds with a traceback error that leaks a path of the...

5.3AI score0.01279EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/03/13 3:0 p.m.25 views

CVE-2018-1000082

Ajenti version version 2 contains a Cross ite Request Forgery CSRF vulnerability in the command execution panel of the tool used to manage the server. that can result in Code execution on the server . This attack appear to be exploitable via Being a CSRF, victim interaction is needed, when the...

9AI score0.01252EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/03/13 3:0 p.m.28 views

CVE-2018-1000081

Ajenti version version 2 contains a Input Validation vulnerability in ID string on Get-values POST request that can result in Server Crashing. This attack appear to be exploitable via An attacker can freeze te server by sending a giant string to the ID parameter...

7.5AI score0.01162EPSS
Exploits1References1
Rows per page
Query Builder