Lucene search
K

44982 matches found

Cvelist
Cvelist
added 2025/12/26 9:49 p.m.26 views

CVE-2025-68668 n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node

n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute arbitrary commands...

9.9CVSS0.12685EPSS
Exploits4References1
CVE
CVE
added 2025/12/26 9:49 p.m.121 views

CVE-2025-68668

CVE-2025-68668 affects n8n 1.x (1.0.0 up to

9.9CVSS7.3AI score0.12685EPSS
Exploits4References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/26 9:49 p.m.5 views

CVE-2025-68668 n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node

n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute arbitrary commands...

9.9CVSS7.3AI score0.12685EPSS
Exploits4References1
OSV
OSV
added 2025/12/26 9:49 p.m.5 views

CVE-2025-68668 n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node

n8n is an open source workflow automation platform. From version 1.0.0 to before 2.0.0, a sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute arbitrary commands...

9.9CVSS7.5AI score0.12685EPSS
Exploits4References4
EUVD
EUVD
added 2025/12/26 6:30 p.m.7 views

EUVD-2005-4893

Cacti versions prior to 0.8.6-d contain a remote command execution vulnerability in the graphview.php script. An authenticated user can inject arbitrary shell commands via the graphstart GET parameter, which is improperly handled during graph rendering. This flaw allows attackers to execute...

8.8CVSS6.7AI score0.01781EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2025/12/26 6:18 p.m.20 views

n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node

Impact A sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute arbitrary commands on the host system running n8n, using the same privileges as the n8n process...

9.9CVSS7.7AI score0.12685EPSS
Exploits4References4Affected Software1
EUVD
EUVD
added 2025/12/26 6:18 p.m.4 views

EUVD-2025-205454

n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node...

9.9CVSS6.7AI score0.12685EPSS
Exploits4References3
OSV
OSV
added 2025/12/26 6:18 p.m.1 views

GHSA-62R4-HW23-CC8V n8n Vulnerable to Arbitrary Command Execution in Pyodide based Python Code Node

Impact A sandbox bypass vulnerability exists in the Python Code Node that uses Pyodide. An authenticated user with permission to create or modify workflows can exploit this vulnerability to execute arbitrary commands on the host system running n8n, using the same privileges as the n8n process...

9.9CVSS7.6AI score0.12685EPSS
Exploits4References4
OSV
OSV
added 2025/12/26 2:9 p.m.3 views

MAL-2025-192941 Malicious code in bola511 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adc760a1f5b29980f41bbd685a2472e4f835f234b483c17520a81c1c881ca420 The package bola511 was found to contain malicious code. Source: ossf-package-analysis eea756cc3e9de36a5fb64a18448c1134945c9e97ac25b152267025711e7004...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/26 9:45 a.m.177 views

Exploit for CVE-2025-9074

CVE-2025-9074 Docker Container Command Execution Tool A power...

9.3CVSS6.1AI score0.01594EPSS
Exploits15
NVD
NVD
added 2025/12/26 5:16 a.m.24 views

CVE-2025-52600

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the...

7.2CVSS0.00369EPSS
Exploits0References1
OSV
OSV
added 2025/12/26 5:16 a.m.6 views

CVE-2025-52600

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the...

7.2CVSS5.9AI score0.00369EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/26 4:33 a.m.7 views

Malicious code in aiogram-3 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3d8dac0d1eb98dbfc0fe46cabeadb550699f5e41b5d033ded073f7572f450bf7 During installation or importing the module, the package starts a reverse shell to hardcoded locatiom --- Category: MALICIOUS - The campaign has clearly...

7.7AI score
Exploits0References1
Cvelist
Cvelist
added 2025/12/26 4:20 a.m.17 views

CVE-2025-52600 Improper Input Validation

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the...

5.2CVSS0.00369EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/26 4:20 a.m.4 views

EUVD-2025-205420

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in camera video analytics that Improper input validation. This vulnerability could allow an attacker to execute specific commands on the...

5.2CVSS6.4AI score0.00369EPSS
Exploits0References2
CVE
CVE
added 2025/12/26 4:20 a.m.27 views

CVE-2025-52600

CVE-2025-52600 affects Hanwha Vision cameras; vulnerability in camera video analytics due to improper input validation could allow a remote attacker to execute commands on the host PC. Patch firmware has been released by the manufacturer. Connected Nessus/NVD entries reiterate the same descriptio...

7.2CVSS6.5AI score0.00369EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/26 12:0 a.m.5 views

Hanwha Vision Camera 安全漏洞

Hanwha Vision Camera is a series of cameras from Hanwha Vision, a South Korean company. A security vulnerability exists in Hanwha Vision Camera that stems from improper input validation in the camera's video analytics, which could lead to an attacker executing specific commands on the user's host...

7.2CVSS6.4AI score0.00369EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.4 views

PT-2025-53446

Name of the Vulnerable Software and Affected Versions Camera Video Analytics Software affected versions not specified Description A flaw exists in camera video analytics software related to improper input validation. This could allow an attacker to execute commands on a user’s host PC...

5.2CVSS6.7AI score0.00369EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/25 7:41 p.m.6 views

Malicious code in bettermode-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ade97c888752f20137524d28c5b49359ed4187da5edcecb60ead623f40aba3c The package bettermode-common was found to contain malicious code. Source: ghsa-malware...

7AI score
Exploits0References1
NVD
NVD
added 2025/12/24 8:15 p.m.4 views

CVE-2025-3232

A remote unauthenticated attacker may be able to bypass authentication by utilizing a specific API route to execute arbitrary OS commands...

8.7CVSS0.00511EPSS
Exploits0References3
Rows per page
Query Builder