Lucene search
K

142 matches found

Packet Storm
Packet Storm
added 2025/07/29 12:0 a.m.122 views

📄 ISPConfig 3.3.0 Cross Site Scripting

ISPConfig version 3.3.0 suffers from a cross site scripting vulnerability in the system status webpage. CVE-2025-52206 Reflected Cross Site Scripting XSS Suggested description ISPConfig 3.3.0 is vulnerable to Cross Site Scripting XSS via the system status webpage...

6.5AI score0.00213EPSS
Exploits1
Metasploit
Metasploit
added 2025/07/09 6:55 p.m.587 views

ISPConfig language_edit.php PHP Code Injection

This module exploits a PHP code injection vulnerability in ISPConfig's languageedit.php file. The vulnerability occurs when the adminallowlangedit setting is enabled, allowing authenticated administrators to inject arbitrary PHP code through the language editor interface. This module will...

7.2CVSS7AI score0.13894EPSS
Exploits14
Packet Storm
Packet Storm
added 2025/07/09 12:0 a.m.173 views

📄 ISPConfig language_edit.php PHP Code Injection

This Metasploit module exploits a PHP code injection vulnerability in the ISPConfig languageedit.php file. The vulnerability occurs when the adminallowlangedit setting is enabled, allowing authenticated administrators to inject arbitrary PHP code through the language editor interface. This...

7.2CVSS7.6AI score0.13894EPSS
Exploits14
GithubExploit
GithubExploit
added 2025/06/14 1:38 p.m.104 views

Exploit for Code Injection in Ispconfig

---- CVE-2023-46818...

7.2CVSS7.3AI score0.13894EPSS
Exploits14
GithubExploit
GithubExploit
added 2025/06/14 1:38 p.m.342 views

Exploit for Code Injection in Ispconfig

---- CVE-2023-46818...

7.2CVSS7.3AI score0.13894EPSS
Exploits14
GithubExploit
GithubExploit
added 2025/05/28 3:18 p.m.350 views

Exploit for Code Injection in Ispconfig

CVE-2023-46818 ISPConfig - PHP Code Injection PoC Exploit Ba...

7.2CVSS7.4AI score0.13894EPSS
Exploits14
RedhatCVE
RedhatCVE
added 2025/05/23 4:2 a.m.7 views

CVE-2023-46818

An issue was discovered in ISPConfig before 3.2.11p1. PHP code injection can be achieved in the language file editor by an admin if adminallowlangedit is enabled...

7.2CVSS7.3AI score0.13894EPSS
Exploits14
RedhatCVE
RedhatCVE
added 2025/05/22 6:30 p.m.7 views

CVE-2021-3021

ISPConfig before 3.2.2 allows SQL injection...

9.8CVSS7.6AI score0.02117EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:54 p.m.6 views

CVE-2020-9398

ISPConfig before 3.1.15p3, when the undocumented reverseproxypanelallowed=sites option is manually enabled, allows SQL Injection...

9.8CVSS7.6AI score0.01266EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:1 a.m.6 views

CVE-2012-2087

ISPConfig 3.0.4.3: the "Add new Webdav user" can chmod and chown entire server from client interface...

9.8CVSS7AI score0.02714EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:42 a.m.12 views

CVE-2013-3629

ISPConfig 3.0.5.2 has Arbitrary PHP Code Execution...

8.8CVSS7.5AI score0.43103EPSS
Exploits5References1
GithubExploit
GithubExploit
added 2025/05/02 4:51 a.m.540 views

Exploit for Code Injection in Ispconfig

CVE-2023-46818 ISPConfig - PHP Code Injection PoC Exploit Ba...

7.2CVSS7.4AI score0.13894EPSS
Exploits14
Packet Storm News
Packet Storm News
added 2025/04/16 12:0 a.m.5 views

ISPConfig Code Injection

ISPConfig versions prior to 3.2.11p1 suffer from a code injection vulnerability...

7.2CVSS7.4AI score0.13894EPSS
Exploits14
GithubExploit
GithubExploit
added 2025/04/13 7:12 p.m.417 views

Exploit for Code Injection in Ispconfig

CVE-2023-46818 Python Exploit 🔥 Description This Python e...

7.2CVSS7.2AI score0.13894EPSS
Exploits14
GithubExploit
GithubExploit
added 2025/04/13 2:55 p.m.572 views

Exploit for Code Injection in Ispconfig

CVE-2023-46818-Exploit This is my own exploit for CVE-2023-468...

7.2CVSS7.8AI score0.13894EPSS
Exploits14
RedhatCVE
RedhatCVE
added 2025/02/04 10:22 p.m.4 views

CVE-2024-53720

Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...

7.1CVSS7.2AI score0.00166EPSS
Exploits0References1
NVD
NVD
added 2024/12/02 2:15 p.m.10 views

CVE-2024-53720

Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...

7.1CVSS0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/02 1:48 p.m.17 views

CVE-2024-53720 WordPress WP-ISPConfig 3 plugin <= 1.5.6 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in ole1986 WP-ISPConfig 3 wp-ispconfig3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through = 1.5.6...

7.1CVSS0.00166EPSS
Exploits0References1
CVE
CVE
added 2024/12/02 1:48 p.m.41 views

CVE-2024-53720

CVE-2024-53720 describes a Cross-Site Request Forgery leading to Stored XSS in the WordPress WP-ISPConfig 3 plugin (vulnerable:

7.1CVSS7.2AI score0.00166EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/02 1:48 p.m.9 views

CVE-2024-53720 WordPress WP-ISPConfig 3 plugin <= 1.5.6 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in ole1986 , MachineITSvcs WP-ISPConfig 3 allows Stored XSS.This issue affects WP-ISPConfig 3: from n/a through 1.5.6...

7.1CVSS6.8AI score0.00166EPSS
Exploits0References1
Rows per page
Query Builder