Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2025/12/30 10:41 p.m.8 views

CVE-2022-50789

Summary: CVE-2022-50789 affects SOUND4 IMPACT/FIRST/PULSE/Eco 2.x and earlier. A command injection exists in the dns.php script allowing local authenticated users to create malicious files in /tmp with a .dns.pid extension; an unauthenticated attacker could trigger command execution via a single ...

8.5CVSS7.2AI score0.0144EPSS
Exploits2References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/12/30 10:41 p.m.1 views

CVE-2022-50789 SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Conditional Command Injection via dns.php

SOUND4 IMPACT/FIRST/PULSE/Eco =2.x contains a command injection vulnerability that allows local authenticated users to create malicious files in the /tmp directory with .dns.pid extension. Unauthenticated attackers can execute the malicious commands by making a single HTTP POST request to the...

8.5CVSS7.2AI score0.0144EPSS
Exploits2References5
Packet Storm
Packet Stormadded 2022/12/15 12:0 a.m.257 views

SOUND4 IMPACT/FIRST/PULSE/Eco 2.x dns.php Command Injection

SOUND4 IMPACT/FIRST/PULSE/Eco =2.x dns.php Conditional Command Injection Vendor: SOUND4 Ltd. Product web page: https://www.sound4.com | https://www.sound4.biz Affected version: FM/HD Radio Processing: Impact/Pulse/First Version 2: 1.1/2.15 Impact/Pulse/First Version 1: 2.1/1.69 Impact/Pulse Eco...

7.4AI score
Exploits0
0day.today
0day.todayadded 2019/02/15 12:0 a.m.26 views

DomainMOD 4.11.01 - (assets/add/dns.php) Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: DomainMOD 4.11.01 - Cross-Site Scripting Exploit Author: Mohammed Abdul Raheem Vendor Homepage: domainmod https://domainmod.org/ Software Link: domainmod https://github.com/DomainMod/DomainMod Version: v4.09.03 to v4.11.01 CVE :...

3.5CVSS5.6AI score0.00255EPSS
Exploits5
Prion
Prionadded 2018/12/06 7:29 p.m.10 views

Default credentials

DomainMOD through 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field...

3.5CVSS4.8AI score0.00255EPSS
Exploits5References2Affected Software1
OSV
OSVadded 2018/12/06 7:29 p.m.11 views

CVE-2018-19914

DomainMOD through 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field...

4.8CVSS5.7AI score
Exploits0References2
Cvelist
Cvelistadded 2018/12/06 7:0 p.m.12 views

CVE-2018-19914

DomainMOD through 4.11.01 has XSS via the assets/add/dns.php Profile Name or notes field...

5.3AI score0.00255EPSS
Exploits5References2
CVE
CVEadded 2018/12/06 7:0 p.m.89 views

CVE-2018-19914

DomainMOD 4.11.01 contains a Cross-Site Scripting (XSS) vulnerability in assets/add/dns.php where the Profile Name or notes fields can inject JavaScript. Impact: arbitrary JavaScript execution in the victim’s browser, potentially with session hijacking, defacement, or information theft. Affected ...

4.8CVSS5.1AI score0.00255EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder