Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

GithubExploit
GithubExploitadded 2024/07/07 4:57 p.m.491 views

Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms

PoC exploit for CVE-2023-4220, a remote code execution vulnerabi...

8.1CVSS8.2AI score0.92488EPSS
Exploits27
Cvelist
Cvelistadded 2024/06/27 6:45 p.m.19 views

CVE-2024-5824 Path Traversal in parisneo/lollms

A path traversal vulnerability in the /setpersonalityconfig endpoint of parisneo/lollms version 9.4.0 allows an attacker to overwrite the configs/config.yaml file. This can lead to remote code execution by changing server configuration properties such as forceacceptremoteaccess and...

7.4CVSS0.01395EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2024/06/13 12:0 a.m.17 views

Autodesk AutoCAD 3DM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of 3...

7.8CVSS7.8AI score0.00371EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/03/05 12:0 a.m.11 views

(0Day) Ashlar-Vellum Cobalt IGS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

7.8CVSS7.2AI score
Exploits0
Zero Day Initiative
Zero Day Initiativeadded 2022/09/14 12:0 a.m.15 views

(0Day) Ansys SpaceClaim JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JT...

7CVSS5.2AI score0.0021EPSS
Exploits0
Prion
Prionadded 2021/05/06 1:15 p.m.38 views

Command injection

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file which indirectly leads to remote code execution as root via AUTH= in a MAIL FROM command...

9CVSS9.3AI score0.05711EPSS
Exploits1References1Affected Software1
exploitpack
exploitpackadded 2015/01/05 7:7 p.m.12 views

Digital-Music-Pad-8.2.3.4.8-(.pls)

Digital Music Pad Version 8.2.3.4.8 SEH overflow Author Abhishek Lyall - abhilyallatgmaildotcom, infoataslitsecuritydotcom Web - http://www.aslitsecurity.com/ Blog - http://www.aslitsecurity.blogspot.com/ Vulnerable version DJ Studio Pro Version 8.2.3.4.8 filename = "POC.pls" windows/exec -...

0.9AI score
Exploits0
Cvelist
Cvelistadded 2008/03/06 12:0 a.m.25 views

CVE-2008-0986

Integer overflow in the BMP::readFromStream method in the libsgl.so library in Google Android SDK m3-rc37a and earlier, and m5-rc14, allows remote attackers to execute arbitrary code via a crafted BMP file with a header containing a negative offset field...

7.6AI score0.15059EPSS
Exploits3References6
Rows per page
Query Builder