Lucene search
K

1153 matches found

Cvelist
Cvelist
added 2021/01/21 5:9 p.m.34 views

CVE-2020-8567 Kubernetes Secrets Store CSI Driver plugin directory traversals

Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods...

4.9CVSS6.5AI score0.0137EPSS
Exploits0References2
0day.today
0day.today
added 2020/06/08 12:0 a.m.83 views

Cisco UCS Director Cloupia Script Remote Code Execution Exploit

This Metasploit module exploits an authentication bypass and directory traversals in Cisco UCS Director versions prior to 6.7.4.0 to leak the administrator's REST API key and execute a Cloupia script containing an arbitrary root command. Note that the primary functionality of this module is to...

9.8CVSS0.4AI score0.88374EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/06/05 12:0 a.m.484 views

Cisco UCS Director Cloupia Script Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco UCS Director Cloupia Script RCE', 'Description' = %q This module exploits an authentication bypass and directory traversals in Cisco UCS...

7.5CVSS0.88374EPSS
Exploits5
Metasploit
Metasploit
added 2020/06/03 3:13 a.m.49 views

Cisco UCS Director Cloupia Script RCE

This module exploits an authentication bypass and directory traversals in Cisco UCS Director 'Cisco UCS Director Cloupia Script RCE', 'Description' = %q This module exploits an authentication bypass and directory traversals in Cisco UCS Director 6.7.4.0 to leak the administrator's REST API key an...

9.8CVSS0.4AI score0.88374EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2017/08/23 12:0 a.m.37 views

FreeBSD : salt -- Maliciously crafted minion IDs can cause unwanted directory traversals on the Salt-master (3531141d-a708-477c-954a-2a0549e49ca9)

SaltStack reports : Correct a flaw in minion id validation which could allow certain minions to authenticate to a master despite not having the correct credentials. To exploit the vulnerability, an attacker must create a salt-minion with an ID containing characters that will cause a directory...

9.8CVSS7.2AI score0.04629EPSS
Exploits0References4
Veracode
Veracode
added 2017/03/28 4:33 a.m.32 views

Directory Traversal

JavaServer Faces is vulnerable to directory traversals. A malicious user can access arbitrary files through a Uniform Resource Identifier or a through the library name...

5CVSS6.1AI score0.32441EPSS
Exploits0References11Affected Software1
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.328 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

9CVSS1.6AI score0.59312EPSS
Exploits84References50Affected Software34
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.156 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.10986EPSS
Exploits14References34Affected Software13
securityvulns
securityvulns
added 2015/07/27 12:0 a.m.162 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.20829EPSS
Exploits25References17Affected Software11
securityvulns
securityvulns
added 2015/07/14 12:0 a.m.103 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.8CVSS1.6AI score0.105EPSS
Exploits16References12Affected Software10
securityvulns
securityvulns
added 2015/07/05 12:0 a.m.112 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.17314EPSS
Exploits12References25Affected Software6
securityvulns
securityvulns
added 2015/06/21 12:0 a.m.90 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.5CVSS1.6AI score0.10818EPSS
Exploits12References7Affected Software5
securityvulns
securityvulns
added 2015/06/14 12:0 a.m.97 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.6AI score0.17681EPSS
Exploits14References15Affected Software10
securityvulns
securityvulns
added 2015/06/08 12:0 a.m.756 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.6AI score0.13405EPSS
Exploits44References29Affected Software18
securityvulns
securityvulns
added 2015/05/18 12:0 a.m.105 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

4.3CVSS1.6AI score0.02111EPSS
Exploits3References6Affected Software6
securityvulns
securityvulns
added 2015/05/12 12:0 a.m.173 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.6AI score0.99974EPSS
Exploits50References28Affected Software20
securityvulns
securityvulns
added 2015/05/11 12:0 a.m.359 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.6AI score0.65927EPSS
Exploits39References44Affected Software32
securityvulns
securityvulns
added 2015/03/23 12:0 a.m.269 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.75029EPSS
Exploits17References29Affected Software24
securityvulns
securityvulns
added 2015/02/23 12:0 a.m.344 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.59254EPSS
Exploits47References23Affected Software19
securityvulns
securityvulns
added 2015/02/02 12:0 a.m.232 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.02789EPSS
Exploits28References13Affected Software7
Rows per page
Query Builder