Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

OSV
OSVadded 2026/02/08 9:15 a.m.0 views

CVE-2026-2145

A vulnerability was identified in cym1102 nginxWebUI up to 4.3.7. The impacted element is an unknown function of the file /adminPage/conf/check of the component Web Management Interface. Such manipulation of the argument nginxDir leads to cross site scripting. The attack can be executed remotely...

5.4CVSS4AI score
Exploits0References6
CVE
CVEadded 2026/02/08 9:2 a.m.5 views

CVE-2026-2145

CVE-2026-2145 affects cym1102 nginxWebUI up to version 4.3.7. The vulnerability lies in an unknown function handling the nginxDir argument in the /adminPage/conf/check component of the Web Management Interface, enabling remote cross-site scripting (XSS). Public exploits exist. Proof-of-concept ex...

5.4CVSS3.4AI score0.00018EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologiesadded 2026/02/08 12:0 a.m.4 views

PT-2026-6971

Name of the Vulnerable Software and Affected Versions cym1102 nginxWebUI versions through 4.3.7 Description A cross site scripting issue exists in cym1102 nginxWebUI. The issue is related to manipulation of the nginxDir argument within an unknown function of the file /adminPage/conf/check, part o...

5.1CVSS4.5AI score0.00018EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-32313

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01122EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-32314

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00069EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-32310

Malicious code in bioql PyPI...

7.5CVSS4.9AI score0.00047EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-32312

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00062EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/23 10:13 a.m.5 views

CVE-2024-3740

A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9.9. This issue affects the function exec of the file /adminPage/conf/reload. The manipulation of the argument nginxExe leads to deserialization. The attack may be initiated remotely. The exploit has...

6.5CVSS6.9AI score0.00069EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/23 10:13 a.m.4 views

CVE-2024-3736

A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been declared as problematic. Affected by this vulnerability is the function upload of the file /adminPage/main/upload. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been...

4.3CVSS7AI score0.00047EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/23 10:13 a.m.3 views

CVE-2024-3737

A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been rated as critical. Affected by this issue is the function findCountByQuery of the file /adminPage/www/addOver. The manipulation of the argument dir leads to path traversal. The attack may be launched remotely. The exploit ha...

6.5CVSS6.9AI score0.00148EPSS
Exploits1
OSV
OSVadded 2024/04/13 9:15 p.m.2 views

CVE-2024-3740

A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9.9. This issue affects the function exec of the file /adminPage/conf/reload. The manipulation of the argument nginxExe leads to deserialization. The attack may be initiated remotely. The exploit has...

9.8CVSS7.1AI score
Exploits0References5
NVD
NVDadded 2024/04/13 9:15 p.m.6 views

CVE-2024-3740

A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9.9. This issue affects the function exec of the file /adminPage/conf/reload. The manipulation of the argument nginxExe leads to deserialization. The attack may be initiated remotely. The exploit has...

9.8CVSS6.5AI score0.00069EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2024/04/13 8:31 p.m.10 views

CVE-2024-3740 cym1102 nginxWebUI reload exec deserialization

A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9.9. This issue affects the function exec of the file /adminPage/conf/reload. The manipulation of the argument nginxExe leads to deserialization. The attack may be initiated remotely. The exploit has...

6.5CVSS6.9AI score0.00069EPSS
Exploits1References5
Cvelist
Cvelistadded 2024/04/13 8:31 p.m.8 views

CVE-2024-3740 cym1102 nginxWebUI reload exec deserialization

A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI up to 3.9.9. This issue affects the function exec of the file /adminPage/conf/reload. The manipulation of the argument nginxExe leads to deserialization. The attack may be initiated remotely. The exploit has...

6.5CVSS6.7AI score0.00069EPSS
Exploits1References5
CVE
CVEadded 2024/04/13 8:31 p.m.63 views

CVE-2024-3740

The CVE-2024-3740 entry affects cym1102 nginxWebUI up to version 3.9.9. The issue resides in the exec function of /adminPage/conf/reload, where deserialization is triggered by manipulating the nginxExe argument, enabling potential remote code execution. The vulnerability details are supported by ...

9.8CVSS6.8AI score0.00069EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2024/04/13 7:15 p.m.1 views

CVE-2024-3739

A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This vulnerability affects unknown code of the file /adminPage/main/upload. The manipulation of the argument file leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed...

9.8CVSS7.9AI score
Exploits0References4
CVE
CVEadded 2024/04/13 6:31 p.m.56 views

CVE-2024-3739

The CVE-2024-3739 entry concerns cym1102 nginxWebUI up to 3.9.9. Affects unknown code in /adminPage/main/upload; manipulating the file parameter triggers OS command injection. Exploitation is remote and the vulnerability has been publicly disclosed. Multiple sources (NVD/NVD-derived, Red Hat, CNV...

9.8CVSS7.6AI score0.01122EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2024/04/13 6:31 p.m.11 views

CVE-2024-3739 cym1102 nginxWebUI upload os command injection

A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This vulnerability affects unknown code of the file /adminPage/main/upload. The manipulation of the argument file leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed...

6.5CVSS7.3AI score0.01122EPSS
Exploits1References4
NVD
NVDadded 2024/04/13 6:15 p.m.7 views

CVE-2024-3738

A vulnerability classified as critical has been found in cym1102 nginxWebUI up to 3.9.9. This affects the function handlePath of the file /adminPage/conf/saveCmd. The manipulation of the argument nginxPath leads to improper certificate validation. It is possible to initiate the attack remotely. T...

9.8CVSS7.3AI score0.00062EPSS
Exploits1References4
OSV
OSVadded 2024/04/13 6:15 p.m.3 views

CVE-2024-3738

A vulnerability classified as critical has been found in cym1102 nginxWebUI up to 3.9.9. This affects the function handlePath of the file /adminPage/conf/saveCmd. The manipulation of the argument nginxPath leads to improper certificate validation. It is possible to initiate the attack remotely. T...

9.8CVSS7.2AI score
Exploits0References4
Rows per page
Query Builder