CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

354 matches found

Prion•added 2023/12/25 6:15 a.m.•13 views

Remote code execution

On a Wolters Kluwer B.POINT 23.70.00 server running Linux on premises, during the authentication phase, a validated system user can achieve remote code execution via Argument Injection in the server-to-server module...

5.8CVSS8.6AI score0.01113EPSS

Exploits0References1Affected Software1

OSV•added 2023/10/16 5:15 p.m.•2 views

CVE-2023-45690

Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem...

4.9CVSS6.6AI score0.00371EPSS

Exploits2References2

NVD•added 2023/08/10 6:15 p.m.•9 views

CVE-2023-39966

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write vulnerability could lead to direct control of the server. In the api/v1/file.go file, there is a function called SaveContentthat,It recieves JSON data sent by users in the...

9.8CVSS8AI score0.00247EPSS

Exploits1References2

NVD•added 2023/08/10 6:15 p.m.•11 views

CVE-2023-39964

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the api/v1/file.go file, there is a function called LoadFromFile, which directly reads the...

7.5CVSS7.4AI score0.00331EPSS

Exploits1References2

NVD•added 2023/08/10 6:15 p.m.•11 views

CVE-2023-39965

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may caus...

6.5CVSS6.5AI score0.00118EPSS

Exploits1References2

Prion•added 2023/08/10 6:15 p.m.•13 views

Code injection

4CVSS4.7AI score0.00118EPSS

Exploits1References2Affected Software1

Prion•added 2023/08/10 6:15 p.m.•17 views

Design/Logic Flaw

5CVSS7.4AI score0.00331EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/08/10 5:46 p.m.•18 views

CVE-2023-39966 1Panel arbitrary file write vulnerability exists in the background

7.5CVSS9.7AI score0.00247EPSS

Exploits1References2

Vulnrichment•added 2023/08/10 5:46 p.m.•13 views

CVE-2023-39966 1Panel arbitrary file write vulnerability exists in the background

7.5CVSS6.9AI score0.00247EPSS

Exploits1References2

OSV•added 2023/08/10 5:42 p.m.•15 views

CVE-2023-39965 1Panel Unauthorized access in Backend

6.5CVSS5.3AI score0.00118EPSS

Exploits1References4

Vulnrichment•added 2023/08/10 5:39 p.m.•14 views

CVE-2023-39964 1Panel O&M management panel has a background arbitrary file reading vulnerability

7.5CVSS6.8AI score0.00331EPSS

Exploits1References2

CNNVD•added 2023/08/10 12:0 a.m.•3 views

1Panel Security Vulnerability

1Panel is an open source Linux server O&M panel for the Chinese 1panel community. A security vulnerability exists in 1Panel version 1.4.3. An attacker can exploit the vulnerability to download arbitrary files through the API interface...

6.5CVSS6.9AI score0.00118EPSS

Exploits1References3

CNNVD•added 2023/08/10 12:0 a.m.•3 views

1Panel Security Vulnerability

1Panel is an open source Linux server operations and management panel for the Chinese 1panel community. A security vulnerability exists in 1Panel version 1.4.3, which stems from a lack of parameter filtering...

9.8CVSS6.8AI score0.00247EPSS

Exploits1References3

NVD•added 2023/07/18 7:15 p.m.•11 views

CVE-2023-37477

1Panel is an open source Linux server operation and maintenance management panel. An OS command injection vulnerability exists in 1Panel firewall functionality. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger...

8.8CVSS0.00641EPSS

Exploits1References2

Prion•added 2023/07/18 7:15 p.m.•15 views

Command injection

6.5CVSS8.9AI score0.00641EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/07/18 6:25 p.m.•18 views

CVE-2023-37477 Command injection in firewall ip functionality in 1Panel

7.2CVSS9AI score0.00641EPSS

Exploits1References2

GitLab Advisory Database•added 2023/07/18 12:0 a.m.•26 views

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

8.8CVSS8.2AI score0.00641EPSS

Exploits1References5Affected Software1

NVD•added 2023/07/05 9:15 p.m.•16 views

CVE-2023-36458

1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1.3.6, an authenticated attacker can craft a malicious payloads to achieve command injection when entering the container terminal. The vulnerability has been fixed in v1.3.6...

8.8CVSS7.1AI score0.02514EPSS

Exploits1References2

Prion•added 2023/07/05 9:15 p.m.•17 views

Command injection

1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1.3.6, an authenticated attacker can craft a malicious payload to achieve command injection when adding container repositories. The vulnerability has been fixed in v1.3.6...

6.5CVSS8.8AI score0.02514EPSS

Exploits1References2Affected Software1

GitLab Advisory Database•added 2023/07/05 12:0 a.m.•16 views

Improper Neutralization of Special Elements used in a Command ('Command Injection')

8.8CVSS7.3AI score0.02514EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by