Lucene search
K

13 matches found

Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.4 views

PT-2026-29569

Name of the Vulnerable Software and Affected Versions CrnMaster versions prior to 2.2.0 Description CrnMaster is a Cronjob management UI. Prior to version 2.2.0, an authentication bypass exists in the middleware. When the middleware’s session-validation fetch fails, unauthenticated requests with ...

9.8CVSS5.9AI score0.00443EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2025/12/16 12:0 a.m.152 views

📄 Hestia Control Panel 1.9.3 Code Execution

Hestia Control Panel version 1.9.3 code injection proof of concept exploit written in PHP that leverages cronjobs. ============================================================================================================================================= | Title : Hestia Control Panel 1.9.3 PHP...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2025/09/23 12:0 a.m.358 views

📄 FreePBX SQL Injection / Remote Code Execution

This Metasploit module exploits an unauthenticated SQL injection flaw in FreePBX prior to versions 15.0.66, 16.0.89, and 17.0.3. The vulnerability lies in the /admin/ajax.php endpoint, which is accessible without authentication. Additionally, the database user created by FreePBX can schedule...

10CVSS9.2AI score0.93286EPSS
Exploits20
Akamai Blog
Akamai Blog
added 2025/05/11 10:20 a.m.8 views

WebAssembly Jobs and CronJobs in Kubernetes with SpinKube & the Spin Command Trigger

Learn how to run WebAssembly workloads as Kubernetes Jobs and CronJobs using SpinKube and the Spin command trigger...

5.8AI score
Exploits0
Kitploit
Kitploit
added 2019/08/31 1:0 p.m.318 views

0xsp Mongoose v1.7 - Linux/Windows Privilege Escalation intelligent Enumeration Toolkit

Using 0xsp mongoose you will be able to scan targeted operating system for any possible way for privilege escalation attacks, starting from collecting information stage until reporting information through 0xsp Web Application API. user will be able to scan different Linux / windows Operation...

7.5AI score
Exploits0References1
Kitploit
Kitploit
added 2019/07/01 1:6 p.m.33 views

0xsp-Mongoose - Privilege Escalation Enumeration Toolkit (ELF 64/32), Fast, Intelligent Enumeration With Web API Integration

Using 0xsp mongoose you will be able to scan a targeted operating system for any possible way for privilege escalation attacks, starting from collecting information stage until reporting information through 0xsp Web Application API. user will be able to scan different Linux os system at the same...

7.4AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/05/02 1:15 p.m.2 views

glusterfs: Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled

A privilege escalation flaw was found in gluster snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.3AI score0.05374EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2018/04/18 4:29 p.m.34 views

CVE-2018-1088

A privilege escalation flaw was found in gluster 3.x snapshot scheduler. Any gluster client allowed to mount gluster volumes could also mount shared gluster storage volume and escalate privileges by scheduling malicious cronjob via symlink...

8.1CVSS7.1AI score0.05374EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2017/04/01 12:0 a.m.65 views

NTP Privilege Escalation

Source: http://www.halfdog.net/Security/2015/NtpCronjobUserNtpToRootPrivilegeEscalation/ Introduction Problem description: The cronjob script bundled with ntp package is intended to perform cleanup on statistics files produced by NTP daemon running with statistics enabled. The script is run as ro...

7.4CVSS0.8AI score0.01254EPSS
Exploits3
Exploit DB
Exploit DB
added 2016/01/21 12:0 a.m.59 views

NTP - Local Privilege Escalation

Source: http://www.halfdog.net/Security/2015/NtpCronjobUserNtpToRootPrivilegeEscalation/ Introduction Problem description: The cronjob script bundled with ntp package is intended to perform cleanup on statistics files produced by NTP daemon running with statistics enabled. The script is run as ro...

7.4AI score
Exploits0
Oracle linux
Oracle linux
added 2012/03/01 12:0 a.m.20 views

vixie-cron security, bug fix, and enhancement update

4:4.1-81 - 455664 adoptions of crontab orphans, forgot add buffer for list of orphans - Related: rhbz455664 4:4.1-80 - 654961 crond process ignores the changes of user's home directory needs bigger changes of code. The fix wasn't applied, detail in comment11. - Related: rhbz249512 4:4.1-79 -...

3.3CVSS0.1AI score0.00346EPSS
Exploits0
NVD
NVD
added 2009/12/04 7:30 p.m.25 views

CVE-2009-3304

GForge 4.5.14, 4.7 rc2, and 4.8.2 allows local users to overwrite arbitrary files via a symlink attack on authorizedkeys files in users' home directories, related to deb-specific/sshdumpupdate.pl and cronjobs/cvs-cron/sshcreate.php...

3.3CVSS6.2AI score0.00314EPSS
Exploits0References3
Prion
Prion
added 2008/06/30 6:24 p.m.15 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Contenido CMS 4.8.4 allow remote attackers to execute arbitrary PHP code via a URL in the 1 contenidopath parameter to a contenido/backendsearch.php; the 2 cfgpathcontenido parameter to b movearticles.php, c moveoldstats.php, d...

7.5CVSS7.8AI score0.02382EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder