Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1612 matches found

Tenable Nessus
Tenable Nessusadded 2024/09/12 12:0 a.m.17 views

EulerOS 2.0 SP9 : python-pip (EulerOS-SA-2024-2379)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect...

6.5CVSS6.7AI score0.00222EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2024/09/12 12:0 a.m.21 views

EulerOS 2.0 SP10 : python-pip (EulerOS-SA-2024-2428)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect...

8.1CVSS6.8AI score0.0095EPSS
Exploits1References4
OpenVAS
OpenVASadded 2024/09/12 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2024-2428)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS5.6AI score0.0095EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2024/09/12 12:0 a.m.15 views

EulerOS 2.0 SP9 : python-pip (EulerOS-SA-2024-2404)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect...

6.5CVSS6.7AI score0.00222EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2024/09/12 12:0 a.m.19 views

EulerOS 2.0 SP10 : python-pip (EulerOS-SA-2024-2451)

According to the versions of the python-pip packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't remove the HTTP request body when an HTTP redirect...

8.1CVSS6.8AI score0.0095EPSS
Exploits1References4
OpenVAS
OpenVASadded 2024/09/12 12:0 a.m.9 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2024-2404)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.7AI score0.00222EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2024/09/03 6:59 p.m.2 views

urllib3: proxy-authorization request header is not stripped during cross-origin redirects

A flaw was found in urllib3, an HTTP client library for Python. In certain configurations, urllib3 does not treat the Proxy-Authorization HTTP header as one carrying authentication material. This issue results in not stripping the header on cross-origin redirects...

6.5CVSS6.7AI score0.00222EPSS
Exploits1References4
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.170 views

Radware AppDirector Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Radware AppDirector Bruteforce Login Utility', 'Description' = % This module scans for Radware AppDirector's web login portal, and performs login...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.229 views

ES File Explorer Open Port

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ES File Explorer Open Port', 'Description' = %q This module connects to ES File Explorer's HTTP server to run certain commands. The HTTP server i...

8.1CVSS7AI score0.74255EPSS
Exploits8
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.281 views

Sentry Switched CDU Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sentry Switched CDU Bruteforce Login Utility', 'Description' = % This module scans for ServerTech's Sentry Switched CDU Cabinet Power Distributio...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.192 views

Symantec Messaging Gateway 9.5 Log File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Symantec Messaging Gateway 9.5 Log File Download Vulnerability', 'Description' = %q This module will download a file of your choice against...

5CVSS7AI score0.69707EPSS
Exploits4
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.173 views

SAP /sap/bc/soap/rfc SOAP Service RFC_SYSTEM_INFO Function Sensitive Information Gathering

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

5CVSS7.4AI score0.20146EPSS
Exploits2
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.145 views

RIPS Scanner Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'RIPS Scanner Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability in the RIPS Scanner v0.54, allowin...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.450 views

TVT NVMS-1000 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TVT NVMS-1000 Directory Traversal', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability which exists in...

7.5CVSS7AI score0.94261EPSS
Exploits6
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.200 views

Apple TV Image Remote Control

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apple TV Image Remote Control', 'Description' = %q This module will show an image on an AppleTV device for a period of time. Some AppleTV devices...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.493 views

Limesurvey Unauthenticated File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework for extracting files require 'zip' class MetasploitModule 'Limesurvey Unauthenticated File Download', 'Description' = %q This module exploits an unauthenticated file...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.158 views

Linksys WRT120N TmUnblock Stack Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linksys WRT120N tmUnblock Stack Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in the...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.208 views

HTTP Client Automatic Exploiter 2 (Browser Autopwn)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "HTTP Client Automatic Exploiter 2 Browser Autopwn", 'Description' = %q This module will automatically serve browser exploits. Here are the option...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.211 views

Tomcat UTF-8 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Tomcat UTF-8 Directory Traversal Vulnerability', 'Description' = %q This module tests whether a directory traversal vulnerability is present in...

4.3CVSS7AI score0.92704EPSS
Exploits22
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.255 views

MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'digest/md5' require 'zlib' class MetasploitModule 'MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever', 'Description' = %q MongoDB Ops Manag...

5.3CVSS7AI score0.23025EPSS
Exploits2
Rows per page
Query Builder