Lucene search
K

12 matches found

Circl
Circl
added 2025/10/12 3:0 p.m.7 views

CVE-2017-5941

creationtimestamp| type| source ---|---|--- 2025-10-12 15:00:06+00:00| published-proof-of-concept| Telegram/nHH3EPNLC7cR6YqxoW514LvTLwhWMDWIdjARrLyJXH8zbM...

9.8CVSS8.7AI score0.61025EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/06/18 12:0 a.m.175 views

Node.JS Remote Code Execution

Exploit Title: Node.JS - 'node-serialize' Remote Code Execution 3 Date: 17.06.2021 Exploit Author: Beren Kuday GORUN Vendor Homepage: https://github.com/luin/serialize Software Link: https://github.com/luin/serialize Version: 0.0.4 Tested on: Windows & Ubuntu CVE : 2017-5941 var serialize =...

7.5CVSS9.6AI score0.61025EPSS
Exploits5
0day.today
0day.today
added 2021/06/18 12:0 a.m.413 views

Node.JS - (node-serialize) Remote Code Execution Exploit (3)

Exploit Title: Node.JS - 'node-serialize' Remote Code Execution 3 Exploit Author: Beren Kuday GORUN Vendor Homepage: https://github.com/luin/serialize Software Link: https://github.com/luin/serialize Version: 0.0.4 Tested on: Windows & Ubuntu CVE : 2017-5941 var serialize = require'node-serialize...

9.8CVSS9.6AI score0.61025EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/06/18 12:0 a.m.187 views

Node.JS - 'node-serialize' Remote Code Execution (3)

Exploit Title: Node.JS - 'node-serialize' Remote Code Execution 3 Date: 17.06.2021 Exploit Author: Beren Kuday GORUN Vendor Homepage: https://github.com/luin/serialize Software Link: https://github.com/luin/serialize Version: 0.0.4 Tested on: Windows & Ubuntu CVE : 2017-5941 var serialize =...

7.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2021/02/24 12:0 a.m.9 views

Node.js Remote Code Execution (CVE-2017-5941)

A remote code execution vulnerability exists in Node.js. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.8AI score0.61025EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/02/10 12:0 a.m.233 views

Node.JS Remote Code Execution

Exploit Title: Node.JS - 'node-serialize' Remote Code Execution 2 Exploit Author: UndeadLarva Software Link: https://www.npmjs.com/package/node-serialize Version: 0.0.4 CVE: CVE-2017-5941 import requests import re import base64 import sys url = 'http://192.168.100.133:8000/' change this payload =...

7.5CVSS9.6AI score0.61025EPSS
Exploits5
Exploit DB
Exploit DB
added 2021/02/10 12:0 a.m.284 views

Node.JS - 'node-serialize' Remote Code Execution (2)

Exploit Title: Node.JS - 'node-serialize' Remote Code Execution 2 Exploit Author: UndeadLarva Software Link: https://www.npmjs.com/package/node-serialize Version: 0.0.4 CVE: CVE-2017-5941 import requests import re import base64 import sys url = 'http://192.168.100.133:8000/' change this payload =...

9.8CVSS9.6AI score0.61025EPSS
Exploits5
Openbugbounty
Openbugbounty
added 2020/06/11 3:5 p.m.14 views

logostech.net Cross Site Scripting vulnerability OBB-1192798

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

0.7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/02/11 3:36 p.m.9 views

asics.com Cross Site Scripting vulnerability

Security Researcher Tech4 Helped patch 28 vulnerabilities Received 1 Coordinated Disclosure badges Received 1 recommendations , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting asics.com website and its users. Following coordinated and...

0.2AI score
Exploits0
NVD
NVD
added 2017/02/09 7:59 p.m.30 views

CVE-2017-5941

An issue was discovered in the node-serialize package 0.0.4 for Node.js. Untrusted data passed into the unserialize function can be exploited to achieve arbitrary code execution by passing a JavaScript Object with an Immediately Invoked Function Expression IIFE...

9.8CVSS9.6AI score0.61025EPSS
Exploits5References5
CVE
CVE
added 2017/02/09 7:0 p.m.237 views

CVE-2017-5941

CVE-2017-5941 affects node-serialize version 0.0.4 for Node.js, where untrusted input passed to unserialize() can be crafted as an IIFE to achieve remote code execution. Public writeups (e.g., Packet Storm and Exploit-DB entries) show an RCE payload using the IIFE to spawn a shell via child_proce...

9.8CVSS9.5AI score0.61025EPSS
Exploits5References5Affected Software1
Cvelist
Cvelist
added 2017/02/09 7:0 p.m.36 views

CVE-2017-5941

An issue was discovered in the node-serialize package 0.0.4 for Node.js. Untrusted data passed into the unserialize function can be exploited to achieve arbitrary code execution by passing a JavaScript Object with an Immediately Invoked Function Expression IIFE...

9.7AI score0.61025EPSS
Exploits5References5
Rows per page
Query Builder