Lucene search
K

65 matches found

GithubExploit
GithubExploit
added 2026/06/06 5:54 p.m.90 views

zoneminder-rce-poc

just wait and see Proof of concept for an OS command injectio...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.5 views

NewStart CGSL MAIN 6.06 : python3.11-setuptools Vulnerability (NS-SA-2025-0242)

The remote NewStart CGSL host, running version MAIN 6.06, has python3.11-setuptools packages installed that are affected by a vulnerability: - A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These...

8.8CVSS7.9AI score0.01939EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/25 9:14 p.m.3 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the DownloadFile and DownloadFileWithHeaders functions. An attacker can cause the server to make arbitrary HTTP requests to internal network resources by supplying crafted URLs during the migration...

6.4CVSS6.5AI score0.00272EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : python3.11-setuptools-65.5.1-2.el9_4.1 (AXSA:2024-8653:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8653:01 advisory. pypa/setuptools: Remote code execution via download functions in the packageindex module in pypa/setuptools CVE-2024-6345 Tenable has extracted the preceding...

8.8CVSS8.6AI score0.01939EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

TencentOS Server 2: python-setuptools (TSSA-2024:0503)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0503 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

8.8CVSS7.6AI score0.01939EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2330

Malicious code in bioql PyPI...

8.8CVSS7AI score0.01939EPSS
Exploits0References5
CVE
CVE
added 2025/08/25 4:2 p.m.14 views

CVE-2025-9409

CVE-2025-9409 affects lostvip-com ruoyi-go up to version 2.1. The vulnerability is in modules/system/controller/CommonController.go, DownloadTmp/DownloadUpload, where manipulating the fileName parameter enables a path traversal attack. It is exploitable remotely, with publicly released exploits. ...

6.5CVSS4.7AI score0.00693EPSS
Exploits0References6Affected Software1
SUSE Linux
SUSE Linux
added 2025/02/03 8:56 a.m.7 views

Security update for python-setuptools

This update for python-setuptools fixes the following issues: CVE-2024-6345: Fixed code execution via download functions in the packageindex module in pypa/setuptools bsc1228105 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

7CVSS7.8AI score0.01939EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/11/11 12:0 a.m.9 views

Huawei EulerOS: Security Advisory for python-setuptools (EulerOS-SA-2024-2894)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.01939EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/11/11 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for python-setuptools (EulerOS-SA-2024-2820)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.1AI score0.01939EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/11/04 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for python-setuptools (EulerOS-SA-2024-2791)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.01939EPSS
Exploits0References2
Amazon
Amazon
added 2024/10/31 12:0 a.m.6 views

Important: python3.11-setuptools

Issue Overview: A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptibl...

8.8CVSS8.8AI score0.01939EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/10/16 12:6 p.m.4 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/16 6:53 a.m.6 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/16 6:42 a.m.4 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/16 6:29 a.m.4 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/16 6:29 a.m.5 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.10 views

RHEL 8 : resource-agents (RHSA-2024:8172)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8172 advisory. The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several service...

8.8CVSS7.4AI score0.01939EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/23 1:52 a.m.5 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
Amazon
Amazon
added 2024/09/18 12:0 a.m.60 views

Important: python2-setuptools

Issue Overview: A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptibl...

8.8CVSS8.4AI score0.01939EPSS
Exploits0
Rows per page
Query Builder