Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏜 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏌 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🀖 AI High Score
📰 CVE Feed
show all

6 matches found

Metasploit
Metasploit•added 2023/10/04 7:50 p.m.•407 views

Progress Software WS_FTP Unauthenticated Remote Code Execution

This module exploits an unsafe .NET deserialization vulnerability to achieve unauthenticated remote code execution against a vulnerable WSFTP server running the Ad Hoc Transfer module. All versions of WSFTP Server prior to 2020.0.4 version 8.7.4 and 2022.0.2 version 8.8.2 are vulnerable to this...

10CVSS9AI score0.94436EPSS
Exploits5
Exploit DB
Exploit DB•added 2023/07/19 12:0 a.m.•224 views

PimpMyLog v1.7.14 - Improper access control

Exploit Title: PimpMyLog v1.7.14 - Improper access control Date: 2023-07-10 Exploit Author: thoughtfault Vendor Homepage: https://www.pimpmylog.com/ Software Link: https://github.com/potsky/PimpMyLog Version: 1.5.2-1.7.14 Tested on: Ubuntu 22.04 CVE : N/A Description: PimpMyLog suffers from...

7.4AI score
Exploits0
The Hacker News
The Hacker News•added 2022/10/28 11:1 a.m.•45 views

Researchers Uncover Stealthy Techniques Used by Cranefly Espionage Hackers

A recently discovered hacking group known for targeting employees dealing with corporate transactions has been linked to a new backdoor called Danfuan. This hitherto undocumented malware is delivered via another dropper called Geppei, researchers from Symantec, by Broadcom Software, said in a...

7.8AI score
Exploits0
Kitploit
Kitploit•added 2021/11/20 11:30 a.m.•51 views

pwnSpoof - Generates realistic spoofed log files for common web servers with customisable attack scenarios

pwnSpoof from Punk Security generates realistic spoofed log files for common web servers with customisable attack scenarios. Every log bundle is unique and completely customisable, making it perfect for generating CTF scenarios and for training serials. Can you find the attacker session and build...

7.2AI score
Exploits0References1
Citrix
Citrix•added 2017/05/16 12:0 a.m.•4 views

Client Based Certificate Authentication fails for NS GW with 503 error

The CBA fails with this error : Fetcher : getagclientcert got a fail response 503 - we see the 401 error in the IIS logs below: 10.99.60.190, -, 5/8/2017, 11:22:16, W3SVC1, WIN0215, 10.99.60.31, 170, 1573, 1605, 401, 5, POST, /certsrv/certfnsh.asp, -, 10.99.60.190, -, 5/8/2017, 11:31:44, W3SVC1,...

7AI score
Exploits0
myhack58
myhack58•added 2005/11/19 12:0 a.m.•21 views

To xp_cmdshell March-vulnerability warning-the black bar safety net

To xpcmdshell March - Using MSSQLDatastore expansion madeserviceis the management right In MSSQL having sysadmin permission to the user through the xpcmdshell stored extensions to the system permissions to execute arbitrary system commands, and therefore most of the security attention of the...

8.9AI score
Exploits0
Rows per page
Query Builder