Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/07 12:16 a.m.17 views

CVE-2021-47667

An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo 5.24-3 through 6.x before 6.10-7 allows unauthenticated remote attackers to execute arbitrary commands via shell metacharacters in the tmpname parameter when dropping off a file via a POST /dropoff request...

10CVSS8.6AI score0.29766EPSS
Exploits0References3
Circl
Circl
added 2025/04/05 5:37 a.m.11 views

CVE-2021-47667

creationtimestamp| type| source ---|---|--- 2025-04-05 05:37:47+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10596 2025-04-05 07:48:35+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114284253318328281 2025-04-05 07:48:35+00:00| seen|...

10CVSS4.8AI score0.29766EPSS
Exploits0References6
NVD
NVD
added 2025/04/05 5:15 a.m.16 views

CVE-2021-47667

An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo 5.24-3 through 6.x before 6.10-7 allows unauthenticated remote attackers to execute arbitrary commands via shell metacharacters in the tmpname parameter when dropping off a file via a POST /dropoff request...

10CVSS0.29766EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/05 12:0 a.m.9 views

CVE-2021-47667

An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo 5.24-3 through 6.x before 6.10-7 allows unauthenticated remote attackers to execute arbitrary commands via shell metacharacters in the tmpname parameter when dropping off a file via a POST /dropoff request...

10CVSS10AI score0.29766EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/05 12:0 a.m.67 views

CVE-2021-47667

An OS command injection vulnerability in lib/NSSDropoff.php in ZendTo 5.24-3 through 6.x before 6.10-7 allows unauthenticated remote attackers to execute arbitrary commands via shell metacharacters in the tmpname parameter when dropping off a file via a POST /dropoff request...

10CVSS0.29766EPSS
Exploits0References1
Rows per page
Query Builder