Lucene search
+L

4 matches found

0day.today
0day.today
added 2023/04/03 12:0 a.m.300 views

Roxy WI v6.1.0.0 - Unauthenticated Remote Code Execution Vulnerability

ADVISORY INFORMATION Exploit Title: Roxy WI v6.1.0.0 - Unauthenticated Remote Code Execution RCE Date of found: 21 July 2022 Application: Roxy WI = v6.1.0.0 Author: Nuri Çilengir Vendor Homepage: https://roxy-wi.org Software Link: https://github.com/hap-wi/roxy-wi.git Advisory:...

10CVSS9.4AI score0.90387EPSS
Exploits15
Exploit DB
Exploit DB
added 2023/04/03 12:0 a.m.273 views

Roxy WI v6.1.0.0 - Unauthenticated Remote Code Execution (RCE)

ADVISORY INFORMATION Exploit Title: Roxy WI v6.1.0.0 - Unauthenticated Remote Code Execution RCE Date of found: 21 July 2022 Application: Roxy WI = v6.1.0.0 Author: Nuri Çilengir Vendor Homepage: https://roxy-wi.org Software Link: https://github.com/hap-wi/roxy-wi.git Advisory:...

10CVSS9.6AI score0.90387EPSS
Exploits15
Circl
Circl
added 2022/07/06 10:14 p.m.185 views

CVE-2022-31126

creationtimestamp| type| source ---|---|--- 2022-07-06 22:14:31+00:00| seen| https://t.me/cibsecurity/45692 2023-04-03 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51227 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-01-26...

10CVSS7.3AI score0.49937EPSS
In wildExploits3References7
CVE
CVE
added 2022/07/06 5:30 p.m.110 views

CVE-2022-31126

CVE-2022-31126 affects Roxy-wi prior to 6.1.1.0. The Nuclei template confirms remote code execution via the vulnerable path, with commands executed through the application logic (ssh_command) in /app/funct.py, enabling an unauthenticated attacker to run arbitrary code on the target. Exploitation ...

10CVSS9.6AI score0.49937EPSS
In wildExploits3References1Affected Software1
Rows per page
Query Builder