Lucene search
K

9791 matches found

GithubExploit
GithubExploit
added 2022/06/13 9:11 p.m.270 views

Exploit for OS Command Injection in Zyxel Usg_Flex_100W_Firmware

CVE-2022-30525 Zyxel Firewall Remote Command Injection A py...

10CVSS9.6AI score0.99938EPSS
Exploits25
ATTACKERKB
ATTACKERKB
added 2022/06/13 6:15 p.m.2 views

CVE-2022-33174

Power Distribution Units running on Powertek firmware multiple brands before 3.30.30 allows remote authorization bypass in the web interface. To exploit the vulnerability, an attacker must send an HTTP packet to the data retrieval interface /cgi/getparam.cgi with the tmpToken cookie set to an emp...

9.8CVSS5.8AI score0.13425EPSS
Exploits1References3
OSV
OSV
added 2022/06/13 6:15 p.m.3 views

CVE-2022-33174

Power Distribution Units running on Powertek firmware multiple brands before 3.30.30 allows remote authorization bypass in the web interface. To exploit the vulnerability, an attacker must send an HTTP packet to the data retrieval interface /cgi/getparam.cgi with the tmpToken cookie set to an emp...

7.5CVSS5.8AI score0.13425EPSS
Exploits1References1
CVE
CVE
added 2022/06/11 1:26 p.m.62 views

CVE-2021-41738

ZeroShell 3.9.5 is affected by a command injection in the /cgi-bin/kerbynet endpoint (IP parameter). An authenticated attacker could execute system commands through this parameter. Affected product/version: ZeroShell 3.9.5. Root cause: command injection via the IP parameter in kerbynet. Impact: p...

8.8CVSS8.7AI score0.01753EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/06/09 12:0 a.m.24 views

Barco Control Room Cross-Site Scripting Vulnerability

Barco Control Room is a visualization and collaboration solution from Barco Belgium. Used to build control rooms, a cross-site scripting vulnerability exists in the Barco Control Room Management Suite web application prior to version 3.14. The vulnerability stems from the URL parameter of the...

6.1CVSS2AI score0.00525EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2022/06/03 12:0 a.m.245 views

Telesquare SDT-CW3B1 1.1.0 - OS Command Injection

!/usr/bin/python3 Exploit Title: Telesquare SDT-CW3B1 1.1.0 - OS Command Injection Date: 24th May 2022 Exploit Author: Bryan Leong Vendor Homepage: http://telesquare.co.kr/ CVE : CVE-2021-46422 Authentication Required: No import requests import argparse import sys from xml.etree import ElementTre...

10CVSS9.6AI score0.9475EPSS
Exploits20
ATTACKERKB
ATTACKERKB
added 2022/06/02 10:0 p.m.4 views

CVE-2022-31486

An authenticated attacker can send a specially crafted route to the “editroute.cgi” binary and have it execute shell commands. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.303...

9CVSS5.7AI score0.01246EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/02 2:15 p.m.3 views

CVE-2022-26972

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint. The URL parameters are not correctly sanitized, leading to reflected XSS...

6.1CVSS5.9AI score0.00525EPSS
Exploits0References3
OSV
OSV
added 2022/06/02 2:15 p.m.3 views

CVE-2022-26972

Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint. The URL parameters are not correctly sanitized, leading to reflected XSS...

6.1CVSS6.4AI score0.00525EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/05/25 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2022-1761)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.02931EPSS
Exploits1References2
NVD
NVD
added 2022/05/24 6:15 p.m.15 views

CVE-2022-1669

A buffer overflow vulnerability has been detected in the firewall function of the device management web portal. The device runs a CGI binary index.cgi to offer a management web application. Once authenticated with valid credentials in this web portal, a potential attacker could submit any "Addres...

8.1CVSS0.00718EPSS
Exploits0References1
OSV
OSV
added 2022/05/24 6:15 p.m.2 views

CVE-2022-1669

A buffer overflow vulnerability has been detected in the firewall function of the device management web portal. The device runs a CGI binary index.cgi to offer a management web application. Once authenticated with valid credentials in this web portal, a potential attacker could submit any "Addres...

8.1CVSS6AI score0.00718EPSS
Exploits0References1
Prion
Prion
added 2022/05/24 6:15 p.m.35 views

Buffer overflow

A buffer overflow vulnerability has been detected in the firewall function of the device management web portal. The device runs a CGI binary index.cgi to offer a management web application. Once authenticated with valid credentials in this web portal, a potential attacker could submit any "Addres...

5.5CVSS8.1AI score0.00718EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/05/24 5:38 p.m.64 views

CVE-2022-1669

CVE-2022-1669 affects Circutor COMPACT DC-S BASIC (CIR_CDC_v1.2.17). A stack-based buffer overflow exists in the firewall function of the provisioning/management portal: an authenticated user can send a long Address value to a strcpy‑based copy without length checks, overflowing the process stack...

8.1CVSS7.4AI score0.00718EPSS
Exploits0References1Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/24 4:54 p.m.30 views

Elastic APM agent for Python client CGI proxy redirection flaw

When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the proxy header. This could result in an attacker redirecting collected APM data to a proxy of their choosing...

7.2CVSS6.7AI score0.0151EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/24 4:54 p.m.22 views

GHSA-22JH-6GX8-F944 Elastic APM agent for Python client CGI proxy redirection flaw

When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the proxy header. This could result in an attacker redirecting collected APM data to a proxy of their choosing...

7.2CVSS6.1AI score0.0151EPSS
Exploits0References5
OSV
OSV
added 2022/05/24 3:15 a.m.3 views

CVE-2022-0734

A cross-site scripting vulnerability was identified in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.35 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.35 through 5.20, and VPN series firmware versions 4.35 through 5.20, that coul...

6.1CVSS5.7AI score0.0836EPSS
Exploits0References1
NVD
NVD
added 2022/05/24 3:15 a.m.24 views

CVE-2022-0734

A cross-site scripting vulnerability was identified in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.35 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.35 through 5.20, and VPN series firmware versions 4.35 through 5.20, that coul...

6.1CVSS0.0836EPSS
Exploits0References1
NVD
NVD
added 2022/05/24 3:15 a.m.14 views

CVE-2022-0910

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware...

6.5CVSS0.00657EPSS
Exploits0References1
Prion
Prion
added 2022/05/24 3:15 a.m.19 views

Authentication flaw

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware...

4CVSS6.5AI score0.00657EPSS
Exploits0References1Affected Software32
Rows per page
Query Builder