Totolink

It is an offensive tool for routers. Exploit module/toolkit targ...

isf

This is a Python-based exploitation framework called ISF Industrial Exploitation Framework that is similar to Metasploit. It is designed for industrial control system ICS exploitation and is used for testing and demonstrating vulnerabilities in ICS devices. The framework is based on the open-sour...

pathbrute

This is an exploit module/toolkit targeting web servers, specifically designed to brute force directories and files names. The tool, named "pathbrute," uses wordlists from Exploit databases and Metasploit to identify interesting content on servers, including potentially vulnerable websites. It ca...

The vulnerability in the command-line interface of the microprogramming software for digital optical network systems Infinera G42 allows a intruder to gain unauthorized access to protected information.

The vulnerability of the command-line interface of the microprogramming software for digital optical network systems Infinera G42 is related to insufficient validation of input data. Exploiting this vulnerability may allow a remote attacker to gain unauthorized access to protected information...

The vulnerability of the command-line interface (CLI) of Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows attackers to increase their privileges.

The vulnerability of the command-line interface CLI of Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2025-7397

A vulnerability in the ascgshell, of Brocade ASCG before 3.3.0 stores any command executed in the Command Line Interface CLI in plain text within the command history. A local authenticated user that can access sensitive information like passwords within the CLI history leading to unauthorized...

CVE-2025-24477

A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.4 through 7.2.12 allows an attacker to escalate its privileges via a specially crafted CLI command...

Fortinet FortiOS 安全漏洞

Fortinet FortiOS is Fortinet's network security operating system used to provide firewall, VPN, intrusion prevention, and other security features. Fortinet FortiOS suffers from a buffer overflow vulnerability that stems from insufficient boundary checking of specially crafted CLI commands. An...

The vulnerability of the CLI component of the Brocade Fabric OS operating system allows a hacker to disclose protected information.

The vulnerability of the CLI component of the Brocade Fabric OS operating system is related to an incorrect limitation on the path name to the restricted-access directory. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

HPE Networking Instant On Access Points 安全漏洞

HPE Networking Instant On Access Points is a wireless network access point from HPE America. A security vulnerability exists in HPE Networking Instant On Access Points that stems from the presence of authenticated command injection in the command line interface, which could lead to the execution ...

CVE-2025-27026

A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3 allows an authenticated administrator to make other management interfaces unavailable via local and network interfaces. The CLI deactivation via the WebGUI does not only stop CLI interface but...

CVE-2025-5731

A flaw was found in Infinispan CLI. A sensitive password, decoded from a Base64-encoded Kubernetes secret, is processed in plaintext and included in a command string that may expose the data in an error message when a command is not found...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the execute function in the CliRuntimeRunner.java file, which is included in a command string and may be exposed in an error message if a command is not found. An attacker can obtain sensitive credential...

metasploit-framework

This repository is an offensive tool for Metasploit Framework. The primary CVE ID is not explicitly mentioned, but it is likely related to the Metasploit Framework itself. The target product/service or framework is Metasploit Framework, a penetration testing platform. The vulnerability class/vect...

The vulnerability of the command-line interface (CLI) of the PAN-OS operating system allows a hacker to bypass existing security restrictions and execute arbitrary commands.

The vulnerability of the command-line interface CLI of the PAN-OS operating system is related to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows an attacker to bypass existing security restrictions and execute arbitrary commands...

[SECURITY] Fedora 42 Update: gh-2.74.0-1.fc42

A command-line interface to GitHub for use in your terminal or your scripts. gh is a tool designed to enhance your workflow when working with GitHub. It provides a seamless way to interact with GitHub repositories and perform vari ous actions right from the command line, eliminating the need to...

📄 WatchGuard 12.11 Memory Corruption

WatchGuard version 12.11 memory corruption proof of concept exploit. ─$ cat watchguard12.11postauthclibof.py !/usr/bin/env python3 watchguard12.11postauthclibof.py this is a poc for post authorized stack overflow found in 'cli' binary. Tue Feb 4 06:12:20 EST 2025 by code610 More: networkdevice=...

InspireMusic 代码问题漏洞

InspireMusic is an open source music, song, and audio generation tool from FunAudioLLM. A code issue vulnerability exists in InspireMusic that stems from a deserialization issue in the file inspiremusic/cli/model.py...

CVE-2024-7477

A SQL injection vulnerability was found which could allow a command line interface CLI user with administrative privileges to execute arbitrary queries against the Avaya Aura System Manager database. Affected versions include 10.1.x.x and 10.2.x.x. Versions prior to 10.1 are end of manufacturer...

CVE-2024-23669

An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI...