Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-19923

Malware in sbrugna...

6.5CVSS6.6AI score0.00425EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/22 6:38 p.m.9 views

CVE-2021-33211

A Directory Traversal vulnerability in the Unzip feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to write files to arbitrary directories via relative paths in ZIP archives...

6.5CVSS6.8AI score0.00425EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:38 p.m.5 views

CVE-2021-33212

A Cross-site scripting XSS vulnerability in the "View in Browser" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SVG image...

5.4CVSS5.4AI score0.0018EPSS
Exploits1References1
Prion
Prionadded 2021/07/14 2:15 p.m.12 views

Server side request forgery (ssrf)

An SSRF vulnerability in the "Upload from URL" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to retrieve HTTP and FTP files from the internal server network by inserting an internal address...

4CVSS6.2AI score0.0025EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2021/07/14 2:15 p.m.13 views

Directory traversal

A Directory Traversal vulnerability in the Unzip feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to write files to arbitrary directories via relative paths in ZIP archives...

4CVSS6.3AI score0.00425EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2021/07/14 1:48 p.m.36 views

CVE-2021-33211

CVE-2021-33211 affects Elements-IT HTTP Commander 5.3.3, due to a path traversal flaw in the Unzip feature. The vulnerability allows remote authenticated users to write files to arbitrary directories by supplying relative paths inside ZIP archives, enabling potential data impact beyond the intend...

6.5CVSS6.2AI score0.00425EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/07/14 1:44 p.m.15 views

CVE-2021-33212

A Cross-site scripting XSS vulnerability in the "View in Browser" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SVG image...

5.3AI score0.0018EPSS
Exploits1References2
CVE
CVEadded 2021/07/14 1:40 p.m.35 views

CVE-2021-33213

The CVE-2021-33213 entry documents an SSRF in Elements-IT HTTP Commander 5.3.3, specifically in the Upload from URL feature. When authenticated, an attacker can supply an internal address to retrieve HTTP/FTP resources from the internal network, exposing internal resources. Root cause: SSRF in th...

6.5CVSS6.2AI score0.0025EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2021/07/14 12:0 a.m.2 views

Elements-IT HTTP Commander 路径遍历漏洞

Elements-IT HTTP Commander is a server-hosted, web-based file management solution from Elements-IT Germany. It provides basic functionality for working with files creating, copying, deleting, etc. and many other additional features, such as integration with cloud services, online editing of Offic...

6.5CVSS6.8AI score0.00425EPSS
Exploits1References2
Rows per page
Query Builder