CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-15091

Malware in sbrugna...

9.8CVSS9.1AI score0.00751EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-23976

Malicious code in bioql PyPI...

7.5CVSS5.4AI score0.0036EPSS

Exploits1References5

Cvelist•added 2025/08/08 2:32 a.m.•11 views

CVE-2025-8708 Antabot White-Jotter com.gm.wj.config.ShiroConfiguration ShiroConfiguration.java CookieRememberMeManager deserialization

A vulnerability was found in Antabot White-Jotter 0.22. It has been declared as critical. This vulnerability affects the function CookieRememberMeManager of the file ShiroConfiguration.java of the component com.gm.wj.config.ShiroConfiguration. The manipulation with the input EVANNIGHTLYWAOU leads...

5CVSS0.0036EPSS

Exploits1References5

NVD•added 2023/08/11 2:15 p.m.•12 views

CVE-2021-28411

An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges...

9.8CVSS9.6AI score0.00751EPSS

Exploits1References1

OSV•added 2023/08/11 2:15 p.m.•12 views

CVE-2021-28411

An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges...

9.8CVSS7.5AI score

Exploits0References1

Prion•added 2023/08/11 2:15 p.m.•19 views

Information disclosure

An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges...

7.5CVSS9.5AI score0.00751EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/08/11 12:0 a.m.•10 views

CVE-2021-28411

An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges...

7.2AI score0.00751EPSS

Exploits1References1

CVE•added 2023/08/11 12:0 a.m.•38 views

CVE-2021-28411

CVE-2021-28411 affects lerry903 RuoYi 3.4.0. Root cause: an issue in getRememberedSerializedIdentity in CookieRememberMeManager allows remote attackers to escalate privileges. Documents consistently describe privilege elevation risk but do not provide patch details. PT-2023-12126 suggests disabli...

9.8CVSS9.5AI score0.00751EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2023/08/11 12:0 a.m.•5 views

PT-2023-12126 · Lerry903 · Ruoyi

Name of the Vulnerable Software and Affected Versions: lerry903 RuoYi version 3.4.0 Description: An issue was discovered in the getRememberedSerializedIdentity function in the CookieRememberMeManager class, allowing remote attackers to escalate privileges. Recommendations: For version 3.4.0,...

9.8CVSS9.4AI score0.00751EPSS

Exploits1References4

Cvelist•added 2023/08/11 12:0 a.m.•18 views

CVE-2021-28411

An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager class in lerry903 RuoYi version 3.4.0, allows remote attackers to escalate privileges...

9.8AI score0.00751EPSS

Exploits1References1

seebug.org•added 2016/07/25 12:0 a.m.•36 views

Shiro RememberMe 1.2.4 deserialize the result of command execution vulnerability

Author: rungobier 知道创宇404安全实验室概述 Apache Shiro 在 Java 的权限及安全验证框架中占用重要的一席之地，在它编号为550的 issue 中爆出严重的 Java 反序列化漏洞。下面，我们将模拟还原此漏洞的场景以及分析过程。 0x01 漏洞场景还原首先，需要获取 Apache Shiro 存在漏洞的源代码，具体操作如下: git clone https://github.com/apache/shiro.git git checkout shiro-root-1.2.4 cd ./shiro/samples/web...

6.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by