Lucene search
K

17 matches found

Exploit DB
Exploit DB
added 2025/03/28 12:0 a.m.232 views

Rejetto HTTP File Server 2.3m - Remote Code Execution (RCE)

Exploit Title: Rejetto HTTP File Server 2.3m - Remote Code Execution RCE Fofa Dork: "HttpFileServer" && server=="HFS 2.3m" Date: 2024-09-22 Exploit Author: VeryLazyTech GitHub: https://github.com/verylazytech/CVE-2024-23692 Vendor Homepage: http://rejetto.com/hfs/ Software Link:...

9.8CVSS8.8AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2025/03/06 10:12 a.m.621 views

Exploit for Code Injection in Rejetto Http_File_Server

This is a PoC exploit for CVE-2024-23692, a remote code executio...

9.8CVSS10AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/12/21 7:13 a.m.529 views

Exploit for Code Injection in Rejetto Http_File_Server

HFS2.3poc HFS2.3未经身份验证的远程代码执行CVE-2024-23692 python HFS2.3...

9.8CVSS9.8AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/11/23 3:59 a.m.276 views

Exploit for Code Injection in Rejetto Http_File_Server

CVE-2024-23692-poc CVE-2024-23692 is a template injection vu...

9.8CVSS7.8AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/09/15 12:15 p.m.474 views

Exploit for Code Injection in Rejetto Http_File_Server

POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - C...

9.8CVSS10AI score0.99485EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.59 views

Rejetto HTTP File Server 2.x <= 2.3m RCE (CVE-2024-23692)

The version of Rejetto HTTP File Server installed on the remote host is 2.x up to 2.3m. It is, therefore, affected by a vulnerability: - Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote,...

9.8CVSS9AI score0.99485EPSS
Exploits20References2
The Hacker News
The Hacker News
added 2024/07/23 9:3 a.m.45 views

Ukrainian Institutions Targeted Using HATVIBE and CHERRYSPY Malware

The Computer Emergency Response Team of Ukraine CERT-UA has alerted of a spear-phishing campaign that targeted a scientific research institution in the country with malware known as HATVIBE and CHERRYSPY. The agency attributed the attack to a threat actor it tracks under the name UAC-0063, which...

9.8CVSS6.8AI score0.99485EPSS
Exploits20
The Hacker News
The Hacker News
added 2024/07/04 9:10 a.m.75 views

Microsoft Uncovers Critical Flaws in Rockwell Automation PanelView Plus

Microsoft has revealed two security flaws in Rockwell Automation PanelView Plus that could be weaponized by remote, unauthenticated attackers to execute arbitrary code and trigger a denial-of-service DoS condition. "The remote code execution vulnerability in PanelView Plus involves two custom...

9.8CVSS8.6AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/06/18 3:27 a.m.438 views

Exploit for Code Injection in Rejetto Http_File_Server

CVE-2024-23692-EXP bash bash CVE-2024-...

9.8CVSS9.8AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/06/17 8:46 a.m.466 views

Exploit for Code Injection in Rejetto Http_File_Server

CVE-2024-23692 Usage: go run hfs.go -h !1https://git...

9.8CVSS7.5AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/06/13 1:13 p.m.512 views

Exploit for Code Injection in Rejetto Http_File_Server

TG Join Us: https://t.me/WanLiChangChengWanLiChang Join us f...

9.8CVSS7.5AI score0.99485EPSS
Exploits20
GithubExploit
GithubExploit
added 2024/06/11 7:21 a.m.574 views

Exploit for Code Injection in Rejetto Http_File_Server

CVE-2024-23692 BURP POC GET /?n=%0A&cmd=ipconfig+/all&sea...

9.8CVSS9.7AI score0.99485EPSS
Exploits20
Circl
Circl
added 2024/06/10 12:19 p.m.8 views

CVE-2024-23692

creationtimestamp| type| source ---|---|--- 2024-06-10 12:19:13+00:00| published-proof-of-concept| https://t.me/HackingInsights/2058 2024-06-11 12:26:44+00:00| published-proof-of-concept| https://t.me/paiddpam/2899 2024-06-11 17:39:00+00:00| seen|...

9.8CVSS7.1AI score0.99485EPSS
In wildExploits20References52
OSV
OSV
added 2024/05/31 10:15 a.m.8 views

CVE-2024-23692

Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...

9.8CVSS6.1AI score0.99485EPSS
Exploits20References7
Vulnrichment
Vulnrichment
added 2024/05/31 9:36 a.m.33 views

CVE-2024-23692 Rejetto HTTP File Server 2.3m Unauthenticated RCE

Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...

9.8CVSS9.9AI score0.99485EPSS
Exploits20References3
CVE
CVE
added 2024/05/31 9:36 a.m.338 views

CVE-2024-23692

CVE-2024-23692 affects Rejetto HTTP File Server (HFS) versions up to 2.3m. The vulnerability is a server‑side template injection in the search parameter that is reflected into HFS templates, allowing an unauthenticated attacker to execute arbitrary commands (remote code execution). Exploitation c...

9.8CVSS9.9AI score0.99485EPSS
In wildExploits20References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/31 12:0 a.m.70 views

CVE-2024-23692

Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary commands on the affected system by sending a specially crafted HTTP request. As of the CVE assignment...

9.8CVSS10AI score0.99485EPSS
In wildExploits20References4
Rows per page
Query Builder