CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-9338

Malware in sbrugna...

7.5CVSS7.5AI score0.00419EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-9337

Malware in sbrugna...

9CVSS7AI score0.0056EPSS

Exploits0References3

NVD•added 2020/08/25 8:15 a.m.•8 views

CVE-2020-17385

Cellopoint CelloOS v4.1.10 Build 20190922 does not validate URL inputted properly, which allows unauthorized user to launch Path Traversal attack and access arbitrate file on the system...

7.5CVSS7.5AI score0.00419EPSS

Exploits0References1

NVD•added 2020/08/25 8:15 a.m.•8 views

CVE-2020-17384

Cellopoint CelloOS v4.1.10 Build 20190922 does not validate URL inputted properly. With the cookie of the system administrator, attackers can inject and remotely execute arbitrary command to manipulate the system...

9CVSS7.4AI score0.0056EPSS

Exploits0References1

Prion•added 2020/08/25 8:15 a.m.•11 views

Design/Logic Flaw

Cellopoint Cellos v4.1.10 Build 20190922 does not validate URL inputted properly. With cookie of an authenticated user, attackers can temper with the URL parameter and access arbitrary file on system...

4CVSS6.5AI score0.00239EPSS

Exploits0References1Affected Software1

Prion•added 2020/08/25 8:15 a.m.•10 views

Information disclosure

Cellopoint Cellos v4.1.10 Build 20190922 does not validate URL inputted properly. With the cookie of the system administrator, attackers can inject and remotely execute arbitrary command to manipulate the system...

9CVSS7.3AI score0.0056EPSS

Exploits0References1Affected Software1

Prion•added 2020/08/25 8:15 a.m.•9 views

Path traversal

Cellopoint Cellos v4.1.10 Build 20190922 does not validate URL inputted properly, which allows unauthorized user to launch Path Traversal attack and access arbitrate file on the system...

5CVSS7.5AI score0.00419EPSS

Exploits0References1Affected Software1

CVE•added 2020/08/25 7:35 a.m.•41 views

CVE-2020-17384

Affected product: Cellopoint CelloOS v4.1.10 Build 20190922. Root cause: improper validation of URL input, enabling remote command execution. Exploitation requires the attacker to possess the system administrator’s cookie, leading to arbitrary command execution on the system. CVSS data indicates ...

9CVSS7.4AI score0.0056EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2020/08/25 12:0 a.m.•2 views

PT-2020-14936 · Cellopoint · Cellopoint Cellos

Name of the Vulnerable Software and Affected Versions: Cellopoint Cellos version 4.1.10 Build 20190922 Description: The issue allows unauthorized users to launch a Path Traversal attack due to improper validation of URL input, enabling access to arbitrary files on the system. Recommendations: For...

7.5CVSS7.5AI score0.00419EPSS

Exploits0References3

Positive Technologies•added 2020/08/25 12:0 a.m.•2 views

PT-2020-14935 · Cellopoint · Cellopoint Cellos

Name of the Vulnerable Software and Affected Versions: Cellopoint Cellos version 4.1.10 Build 20190922 Description: The issue arises from improper validation of URL input. An attacker can exploit this by injecting and remotely executing arbitrary commands to manipulate the system, provided they...

9CVSS7.4AI score0.0056EPSS

Exploits0References3

Positive Technologies•added 2020/08/25 12:0 a.m.•1 views

PT-2020-14937 · Cellopoint · Cellopoint Cellos

Name of the Vulnerable Software and Affected Versions: Cellopoint Cellos version 4.1.10 Build 20190922 Description: The issue concerns improper validation of URL input. An attacker can manipulate the URL parameter using the cookie of an authenticated user to access arbitrary files on the system...

6.5CVSS6.4AI score0.00239EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by