CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CNNVD•added 2025/08/13 12:0 a.m.•1 views

Palo Alto Networks PAN-OS 安全漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks, Inc. for its firewall appliances. A security vulnerability exists in Palo Alto Networks PAN-OS, which stems from a MACsec protocol implementation issue that could result in the connection association key being expos...

5.6CVSS6.6AI score0.0002EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 4:53 p.m.•4 views

CVE-2020-9043

The wpCentral plugin before 1.5.1 for WordPress allows disclosure of the connection key...

9CVSS6.9AI score0.28562EPSS

Exploits2References1

VulnCheck KEV•added 2022/12/05 12:0 a.m.•1 views

VulnCheck KEV: CVE-2020-9043

The wpCentral plugin before 1.5.1 for WordPress allows disclosure of the connection key...

9CVSS7.3AI score0.28562EPSS

Exploits2References1

Kitploit•added 2021/10/26 11:30 a.m.•22 views

Mediator - An Extensible, End-To-End Encrypted Reverse Shell With A Novel Approach To Its Architecture

Mediator is an end-to-end encrypted reverse shell in which the operator and the shell connect to a "mediator" server that bridges the connections. This removes the need for the operator/handler to set up port forwarding in order to listen for the connection. Mediator also allows you to create...

7.5AI score

Exploits0References4

Cvelist•added 2021/04/05 6:27 p.m.•15 views

CVE-2021-24164 Ninja Forms < 3.4.34.1 - Authenticated OAuth Connection Key Disclosure

In the Ninja Forms Contact Form WordPress plugin before 3.4.34.1, low-level users, such as subscribers, were able to trigger the action, wpajaxnfoauth, and retrieve the connection url needed to establish a connection. They could also retrieve the clientid for an already established OAuth connecti...

5AI score0.00168EPSS

Exploits2References2

wpexploit•added 2021/02/16 12:0 a.m.•176 views

Ninja Forms < 3.4.34.1 - Authenticated OAuth Connection Key Disclosure

Low-level users, such as subscribers, were able to trigger the action, wpajaxnfoauth, and retrieve the connection url needed to establish a connection. They could also retrieve the clientid for an already established OAuth connection. Usage: php poc.php subscriber password $wpuser, 'pwd' = $wppas...

0.9AI score0.00168EPSS

Exploits2References1

Patchstack•added 2021/02/16 12:0 a.m.•10 views

WordPress Ninja Forms Contact Form plugin <= 3.4.33 - Authenticated OAuth Connection Key Disclosure vulnerability

Authenticated OAuth Connection Key Disclosure vulnerability found by Chloe Chamberland in WordPress Ninja Forms Contact Form plugin versions = 3.4.33. Solution Update the WordPress Ninja Forms Contact Form plugin to the latest available version at least 3.4.34...

2.9AI score

Exploits0References2Affected Software1