Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:54 a.m.3 views

CVE-2020-23014

APfell 1.4 is vulnerable to authenticated reflected cross-site scripting XSS in /apiui/command through the payloadtypescallback function, which allows an attacker to steal remote admin/user session and/or adding new users to the administration panel...

5.4CVSS5.8AI score0.00573EPSS
Exploits1References1
OSV
OSVadded 2021/01/26 6:15 p.m.10 views

CVE-2020-23014

APfell 1.4 is vulnerable to authenticated reflected cross-site scripting XSS in /apiui/command through the payloadtypescallback function, which allows an attacker to steal remote admin/user session and/or adding new users to the administration panel...

5.4CVSS5.7AI score
Exploits0References2
NVD
NVDadded 2021/01/26 6:15 p.m.8 views

CVE-2020-23014

APfell 1.4 is vulnerable to authenticated reflected cross-site scripting XSS in /apiui/command through the payloadtypescallback function, which allows an attacker to steal remote admin/user session and/or adding new users to the administration panel...

5.4CVSS5.2AI score0.00573EPSS
Exploits1References2
Cvelist
Cvelistadded 2021/01/22 8:44 p.m.12 views

CVE-2020-23014

APfell 1.4 is vulnerable to authenticated reflected cross-site scripting XSS in /apiui/command through the payloadtypescallback function, which allows an attacker to steal remote admin/user session and/or adding new users to the administration panel...

5.3AI score0.00573EPSS
Exploits1References2
CVE
CVEadded 2021/01/22 8:44 p.m.42 views

CVE-2020-23014

CVE-2020-23014 affects APfell 1.4 with an authenticated reflected XSS in /apiui/command_ via payloadtypes_callback. The vulnerability can enable theft of admin/user sessions and addition of new users to the administration panel. Public sources in the connected Red Hat advisory reiterate the issue...

5.4CVSS5.2AI score0.00573EPSS
Exploits1References2Affected Software1
pentestit
pentestitadded 2020/03/08 3:18 a.m.57 views

UPDATE: APfell 1.4

APfell 1.4 was released a few hours ago! If you remember, I briefly mentioned about this tool in my seven month old post titled – List of Open Source C2 Post-Exploitation Frameworks. When this project started out, it was targeted more at MacOS alone. But what excites me about this newer release i...

1.5AI score
Exploits0
Kitploit
Kitploitadded 2018/08/07 10:23 p.m.46 views

Apfell - A macOS, Post-Exploit, Red Teaming Framework

A macOS, post-exploit, red teaming framework built with python3 and JavaScript. It's designed to provide a collaborative and user friendly interface for operators, managers, and reporting throughout mac and linux based red teaming. Details Check out thre blog post on the initial release of the...

7.3AI score
Exploits0References4
Rows per page
Query Builder