Lucene search
K

53 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/15 11:25 p.m.5 views

CVE-2021-47794

ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FTP accounts with shell injection payloads. Attackers can exploit the FTP account creation endpoint by injecting a reverse shell command that establishes a network connection to a...

8.8CVSS6.5AI score0.00906EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 11:11 a.m.5 views

CVE-2016-10813

cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains SEC-118...

5.4CVSS6.1AI score0.00636EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-3446

Malware in sbrugna...

10CVSS9.5AI score0.02465EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2006-0108

Malware in sbrugna...

4.6CVSS6.4AI score0.00423EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-1807

Malware in sbrugna...

5.4CVSS5.5AI score0.00636EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-18118

Malware in sbrugna...

6.1CVSS6.3AI score0.3956EPSS
Exploits2References4
NVD
NVD
added 2025/06/12 3:15 p.m.11 views

CVE-2025-49197

The application uses a weak password hash function, allowing an attacker to crack the weak password hash to gain access to an FTP user account...

7.5CVSS0.00252EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/06/12 2:23 p.m.3 views

CVE-2025-49197 Deprecated TLS version supported

The application uses a weak password hash function, allowing an attacker to crack the weak password hash to gain access to an FTP user account...

6.5CVSS6.7AI score0.00252EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/06/12 12:0 a.m.4 views

PT-2025-25323 · Sick Ag · Sick Media Server

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The application uses a weak password hash function, allowing an attacker to crack the weak password hash to gain access to an FTP user account. Recommendations: At the moment, there is no...

6.5CVSS6.5AI score0.00252EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.5 views

CVE-2020-8001

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

10CVSS7.2AI score0.01621EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.247 views

Microsoft IIS FTP Server LIST Stack Exhaustion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft IIS FTP Server LIST Stack Exhaustion', 'Description' = %q This module triggers Denial of Service condition in the Microsoft Internet...

5CVSS7.4AI score0.82265EPSS
Exploits9
OSV
OSV
added 2023/03/31 11:5 a.m.5 views

OESA-2023-1193 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However,...

9.8CVSS8.9AI score0.02195EPSS
Exploits5References6
0day.today
0day.today
added 2021/08/30 12:0 a.m.130 views

ZesleCP 3.1.9 - Remote Code Execution (Authenticated) Exploit

Title: ZesleCP 3.1.9 - Remote Code Execution RCE Authenticated Author: Numan Türle Vendor Homepage: https://zeslecp.com/ Software Link: https://zeslecp.com/ Version: =3.1.9 https://www.youtube.com/watch?v=5lTDTEBVq-0 !/usr/bin/python3 -- coding: utf-8 -- ZesleCP - Remote Code Execution...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2021/08/27 12:0 a.m.142 views

ZesleCP 3.1.9 Remote Code Execution

Title: ZesleCP 3.1.9 - Remote Code Execution RCE Authenticated Date: 27.08.2021 Author: Numan Türle Vendor Homepage: https://zeslecp.com/ Software Link: https://zeslecp.com/ Version: =3.1.9 https://www.youtube.com/watch?v=5lTDTEBVq-0 !/usr/bin/python3 -- coding: utf-8 -- ZesleCP - Remote Code...

Exploits0
NVD
NVD
added 2020/01/27 1:15 a.m.17 views

CVE-2020-8001

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

10CVSS9.4AI score0.01621EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/01/27 12:37 a.m.24 views

CVE-2020-8001

The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account...

9.4AI score0.01621EPSS
Exploits1References1
NVD
NVD
added 2019/08/01 7:15 p.m.15 views

CVE-2016-10813

cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains SEC-118...

5.4CVSS5.3AI score0.00636EPSS
Exploits0References2
Prion
Prion
added 2019/08/01 7:15 p.m.17 views

Design/Logic Flaw

cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains SEC-118...

3.5CVSS6.2AI score0.00636EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/08/01 6:54 p.m.74 views

CVE-2016-10813

CVE-2016-10813 affects cPanel prior to 57.9999.54, where an input handling flaw during FTP account creation under addon domains allows self-XSS. Root cause: insufficient input validation in the addon domains FTP creation flow. Impact: client-side script execution under the victim’s browser; no se...

5.4CVSS5.3AI score0.00636EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/01 6:54 p.m.16 views

CVE-2016-10813

cPanel before 57.9999.54 allows self XSS during ftp account creation under addon domains SEC-118...

5.3AI score0.00636EPSS
Exploits0References1
Rows per page
Query Builder