Lucene search
K

7 matches found

NVD
NVD
added 2026/06/25 12:17 a.m.7 views

CVE-2026-8659

OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the apihost or apiport parameters during connection configuration due to insufficient input validation...

8.8CVSS0.00833EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 12:7 a.m.33 views

CVE-2026-8659 OS Command Injection in Rapid7 InsightConnect SQLmap Plugin

OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the apihost or apiport parameters during connection configuration due to insufficient input validation...

6CVSS0.00833EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/04/20 12:0 a.m.80 views

📄 Remote Sunrise Helper for Windows 2026.14 Live Screen Capture

Remote Sunrise Helper for Windows version 2026.14 suffers from an unauthenticated live screen capture vulnerability. !/usr/bin/env python3 Exploit Title: Remote Sunrise Helper for Windows 2026.14 - Unauthenticated Live Screen Capture Date: 2026-04-20 Exploit Author: Chokri Hammedi Software:...

5.8AI score
Exploits0
OSV
OSV
added 2020/09/21 2:15 p.m.3 views

CVE-2020-16171

An issue was discovered in Acronis Cyber Backup before 12.5 Build 16342. Some API endpoints on port 9877 under /api/ams/ accept an additional custom Shard header. The value of this header is afterwards used in a separate web request issued by the application itself. This can be abused to conduct...

6.5CVSS6.9AI score0.05505EPSS
Exploits4References2
CNVD
CNVD
added 2019/09/05 12:0 a.m.3 views

ASUS SmartHome Gateway HG100 Denial of Service Vulnerability

ASUS SmartHome Gateway HG100 is a smart home central control gateway device from ASUS, Taiwan, China. A security vulnerability exists in the web api server on port 8080 in the ASUS SmartHome Gateway HG100 using firmware version 1.05.12 and earlier. An attacker could exploit this vulnerability to...

7.8CVSS6.7AI score0.02958EPSS
Exploits0References1
NVD
NVD
added 2018/08/21 1:29 a.m.15 views

CVE-2018-15598

Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable...

7.5CVSS7.7AI score0.02868EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2007/04/10 9:19 p.m.3 views

CVE-2007-1209

Use-after-free vulnerability in the Client/Server Run-time Subsystem CSRSS in Microsoft Windows Vista does not properly handle connection resources when starting and stopping processes, which allows local users to gain privileges by opening and closing multiple ApiPort connections, which leaves a...

7.2CVSS5.5AI score0.02686EPSS
Exploits0References14
Rows per page
Query Builder