Lucene search
K

16 matches found

NVD
NVD
added 2022/02/04 10:15 p.m.21 views

CVE-2022-23330

A remote code execution RCE vulnerability in HelloWorldAddonController.java of jpress v4.2.0 allows attackers to execute arbitrary code via a crafted JAR package...

8.8CVSS0.01926EPSS
Exploits1References1
Prion
Prion
added 2022/02/04 10:15 p.m.16 views

Remote code execution

A remote code execution RCE vulnerability in HelloWorldAddonController.java of jpress v4.2.0 allows attackers to execute arbitrary code via a crafted JAR package...

6.5CVSS8.9AI score0.01926EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/04 9:3 p.m.25 views

CVE-2022-23330

A remote code execution RCE vulnerability in HelloWorldAddonController.java of jpress v4.2.0 allows attackers to execute arbitrary code via a crafted JAR package...

9.2AI score0.01926EPSS
Exploits1References1
CVE
CVE
added 2022/02/04 9:3 p.m.79 views

CVE-2022-23330

CVE-2022-23330 affects jpress v4.2.0, specifically the HelloWorldAddonController.java component. The vulnerability allows remote code execution by supplying a crafted JAR package, enabling an attacker to run arbitrary code on the affected system. The connected Red Hat, NVD, OSV, and related recor...

8.8CVSS8.9AI score0.01926EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/02/04 9:3 p.m.17 views

CVE-2022-23330

A remote code execution RCE vulnerability in HelloWorldAddonController.java of jpress v4.2.0 allows attackers to execute arbitrary code via a crafted JAR package...

8.8CVSS8.3AI score0.01926EPSS
Exploits1References3
OSV
OSV
added 2022/01/19 1:15 p.m.12 views

CVE-2021-45808

jpress v4.2.0 allows users to register an account by default. With the account, user can upload arbitrary files to the server...

8.8CVSS7AI score
Exploits0References3
NVD
NVD
added 2022/01/19 1:15 p.m.17 views

CVE-2021-45808

jpress v4.2.0 allows users to register an account by default. With the account, user can upload arbitrary files to the server...

8.8CVSS0.01648EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/01/19 12:51 p.m.19 views

CVE-2021-45808

jpress v4.2.0 allows users to register an account by default. With the account, user can upload arbitrary files to the server...

8.9AI score0.01648EPSS
Exploits1References2
CVE
CVE
added 2022/01/19 12:51 p.m.43 views

CVE-2021-45808

CVE-2021-45808 affects Jpress v4.2.0. Connected sources describe a file-upload vulnerability enabled by default account registration, allowing upload of arbitrary files to the server and potential remote code execution. No explicit remediation or patch details are provided in the supplied documen...

8.8CVSS8.7AI score0.01648EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/01/13 7:15 p.m.17 views

CVE-2021-45807

jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...

9.8CVSS7AI score
Exploits0References3
NVD
NVD
added 2022/01/13 7:15 p.m.24 views

CVE-2021-45807

jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...

9.8CVSS0.02606EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/01/13 6:22 p.m.27 views

CVE-2021-45807

jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...

9.8AI score0.02606EPSS
Exploits1References2
OSV
OSV
added 2022/01/13 2:15 p.m.17 views

CVE-2021-45806

jpress v4.2.0 admin panel provides a function through which attackers can modify the template and inject some malicious code...

8.8CVSS6.9AI score
Exploits0References3
NVD
NVD
added 2022/01/13 2:15 p.m.19 views

CVE-2021-45806

jpress v4.2.0 admin panel provides a function through which attackers can modify the template and inject some malicious code...

8.8CVSS0.01711EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/01/13 1:47 p.m.26 views

CVE-2021-45806

jpress v4.2.0 admin panel provides a function through which attackers can modify the template and inject some malicious code...

8.9AI score0.01711EPSS
Exploits1References2
CVE
CVE
added 2022/01/13 1:47 p.m.52 views

CVE-2021-45806

CVE-2021-45806 affects jpress v4.2.0: the admin panel exposes a function that allows attackers to modify templates and inject malicious code. The reported impact is malicious code injection via template modification, but the provided documents do not specify the exact root cause, vulnerable compo...

8.8CVSS8.7AI score0.01711EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder