Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.18 views

PT-2026-36830

Name of the Vulnerable Software and Affected Versions NetBox versions 4.3.5 through 4.5.4 Description An issue in the RenderTemplateMixin.get environment params method allows authenticated users with exporttemplate or configtemplate permissions to execute arbitrary code. By specifying malicious...

8.8CVSS6.7AI score0.00782EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2023/10/31 2:45 a.m.4 views

SUSE CVE-2016-4446

The allowexecstack plugin for setroubleshoot allows local users to execute arbitrary commands by triggering an execstack SELinux denial with a crafted filename, related to the commands.getoutput function...

7CVSS7.3AI score0.00475EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2016/06/23 8:52 a.m.4 views

setroubleshoot-plugins: insecure commands.getoutput use in the allow_execstack plugin

A shell command injection flaw was found in the way the setroubleshoot allowexecstack plugin executed external commands. A local attacker able to trigger an execstack SELinux denial could use this flaw to execute arbitrary code with root privileges...

7CVSS7.4AI score0.00475EPSS
Exploits1References4
0day.today
0day.today
added 2014/06/30 12:0 a.m.61 views

Gitlist <= 0.4.0 - Remote Code Execution Exploit

Exploit for multiple platform in category remote exploits from commands import getoutput import urllib import sys """ Exploit Title: Gitlist 2: path = sys.argv2 print '! Using cache location %s' % path payload payload = "PD9zeXN0ZW0oJF9HRVRbJ2NtZCddKTs/Pgo=" sploit; python requests does not like...

7.5CVSS6.5AI score0.8273EPSS
Exploits16
Rows per page
Query Builder