CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

Snyk•added 3 days ago•4 views

Arbitrary Code Injection

Overview dbgate-api is an Allows run DbGate data-manipulation scripts. Affected versions of this package are vulnerable to Arbitrary Code Injection in the loadReader function in runners.js. The functionName parameter can be injected with arbitrary JavaScript, which is executed with the privileges...

8.8CVSS5.6AI score

Exploits0References2

OSV•added 2021/06/18 6:38 p.m.•18 views

GHSA-HPR6-F4VQ-MXCH Command injection in LocalStack

The dashboard component of StackLift LocalStack allows attackers to inject arbitrary shell commands via the functionName parameter...

9.8CVSS9.5AI score0.00424EPSS

Exploits1References7

NVD•added 2021/05/07 5:15 a.m.•9 views

CVE-2021-32090

The dashboard component of StackLift LocalStack 0.12.6 allows attackers to inject arbitrary shell commands via the functionName parameter...

10CVSS0.00424EPSS

Exploits1References2

Cvelist•added 2021/05/07 3:52 a.m.•9 views

CVE-2021-32090

The dashboard component of StackLift LocalStack 0.12.6 allows attackers to inject arbitrary shell commands via the functionName parameter...

9.8AI score0.00424EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by