Lucene search
K

12 matches found

Nuclei
Nuclei
added 2 days ago31 views

Metabase - Local File Inclusion

Metabase is an open source data analytics platform. In affected versions a local file inclusion security issue has been discovered with the custom GeoJSON map admin-settings-maps-custom maps-add a map support and potential local file inclusion including environment variables. URLs were not...

10CVSS7AI score0.97178EPSS
Exploits5References5
RedhatCVE
RedhatCVE
added 2026/01/09 8:54 a.m.16 views

CVE-2021-41277

Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map admin-settings-maps-custom maps-add a map support and potential local file inclusion including environment variables. URLs were not validated prior to being...

10CVSS6.5AI score0.97178EPSS
Exploits5References1
The Hacker News
The Hacker News
added 2024/11/08 2:2 p.m.100 views

AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services

The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware. "This botnet utilizes remote code execution and credential-stealing methods to maintain persistent...

10CVSS10AI score0.99999EPSS
Exploits367
Tenable Nessus
Tenable Nessus
added 2022/07/29 12:0 a.m.109 views

Metabase LFI (CVE-2021-41277)

Binary data metabaselficve-2021-41277.nbin...

10CVSS8.7AI score0.97178EPSS
Exploits5References2
GithubExploit
GithubExploit
added 2022/03/11 6:39 a.m.406 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase

CVE-2021-41277 MetaBase Arbitrary File Reading This is a...

10CVSS7.3AI score0.97178EPSS
Exploits5
GithubExploit
GithubExploit
added 2021/11/24 5:56 a.m.377 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase

CVE-2021-41277 Metabase GeoJSON map local fil...

10CVSS8.6AI score0.97178EPSS
Exploits5
GithubExploit
GithubExploit
added 2021/11/22 12:49 p.m.847 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase

CVE-2021-41277 MetaBase arbitrary file reading vulnerability,...

10CVSS7.4AI score0.97178EPSS
Exploits5
GithubExploit
GithubExploit
added 2021/11/22 2:51 a.m.309 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase

Metabase-cve-2021-41277 Metabase 任意文件读取 optional arguments:...

10CVSS8.7AI score0.97178EPSS
Exploits5
GithubExploit
GithubExploit
added 2021/11/21 11:38 a.m.262 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Metabase

CVE-2021-41277 PoC Metabase is an open source data analytics...

10CVSS8.7AI score0.97178EPSS
Exploits5
Circl
Circl
added 2021/11/17 10:20 p.m.8 views

CVE-2021-41277

creationtimestamp| type| source ---|---|--- 2021-11-17 22:20:55+00:00| seen| https://t.me/cibsecurity/32567 2021-11-21 13:37:04+00:00| seen| https://t.me/bhhub/640 2021-11-21 13:45:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/4802 2021-11-22 13:37:04+00:00| seen|...

10CVSS7.4AI score0.97178EPSS
In wildExploits5References22
Vulnrichment
Vulnrichment
added 2021/11/17 8:5 p.m.17 views

CVE-2021-41277 GeoJSON URL validation can expose server files and environment variables to unauthorized users

Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map admin-settings-maps-custom maps-add a map support and potential local file inclusion including environment variables. URLs were not validated prior to being...

10CVSS6.8AI score0.97178EPSS
Exploits5References2
Cvelist
Cvelist
added 2021/11/17 8:5 p.m.36 views

CVE-2021-41277 GeoJSON URL validation can expose server files and environment variables to unauthorized users

Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map admin-settings-maps-custom maps-add a map support and potential local file inclusion including environment variables. URLs were not validated prior to being...

10CVSS9.2AI score0.97178EPSS
Exploits5References2
Rows per page
Query Builder