CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

LogonTracer <=1.2.0 - Remote Command Injection

LogonTracer 1.2.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors. id: CVE-2018-16167 info: name: LogonTracer =1.2.0 - Remote Command Injection author: gy741 severity: critical description: LogonTracer 1.2.0 and earlier allows remote attackers to execu...

10CVSS7.6AI score0.87006EPSS

Exploits3References5

NVD•added 2026/04/27 12:16 a.m.•1 views

CVE-2026-33566

There is a cypher injection issue in LogonTracer prior to v2.0.0. If specially crafted Windows event log data is loaded, the contents of the database may be altered...

5.1CVSS0.00038EPSS

Exploits0References2

NVD•added 2026/04/27 12:16 a.m.•3 views

CVE-2026-33277

An OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user...

8.8CVSS0.00376EPSS

Exploits0References2

EUVD•added 2026/04/27 12:4 a.m.•1 views

EUVD-2026-25742

There is a cypher injection issue in LogonTracer prior to v2.0.0. If specially crafted Windows event log data is loaded, the contents of the database may be altered...

5.1CVSS5.6AI score0.00038EPSS

Exploits0References2

CVE•added 2026/04/27 12:4 a.m.•4 views

CVE-2026-33566

CVE-2026-33566 is a cypher injection issue in LogonTracer prior to v2.0.0. When specially crafted Windows event log data is loaded, the contents of the database may be altered. The issue is documented across multiple sources (NVD, CVE List, JVN) and is addressed by updating to LogonTracer v2.0.0....

5.1CVSS6.3AI score0.00038EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/04/27 12:4 a.m.•3 views

CVE-2026-33566

There is a cypher injection issue in LogonTracer prior to v2.0.0. If specially crafted Windows event log data is loaded, the contents of the database may be altered...

5.1CVSS5.2AI score0.00038EPSS

Exploits0References2

ATTACKERKB•added 2026/04/27 12:3 a.m.•2 views

CVE-2026-33277

An OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user...

8.8CVSS5.4AI score0.00376EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/04/27 12:3 a.m.•30 views

CVE-2026-33277

An OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user...

8.8CVSS0.00376EPSS

Exploits0References2

EUVD•added 2026/04/27 12:3 a.m.•2 views

EUVD-2026-25741

An OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user...

8.8CVSS8.3AI score0.00376EPSS

Exploits0References2

CVE•added 2026/04/27 12:3 a.m.•3 views

CVE-2026-33277

CVE-2026-33277 concerns an OS command injection in LogonTracer prior to v2.0.0. A logged-in user can cause arbitrary OS commands to execute due to the vulnerability in how input is processed. Affected software: LogonTracer (before version 2.0.0). The root cause is an input handling flaw that allo...

8.8CVSS8.3AI score0.00376EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/04/27 12:3 a.m.•3 views

CVE-2026-33277

An OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user...

8.8CVSS5.4AI score0.00376EPSS

Exploits0References2

Positive Technologies•added 2026/04/27 12:0 a.m.•2 views

PT-2026-35276

There is a cypher injection issue in LogonTracer prior to v2.0.0. If specially crafted Windows event log data is loaded, the contents of the database may be altered...

5.1CVSS5.6AI score0.00038EPSS

Exploits0References3

CNNVD•added 2026/04/27 12:0 a.m.•4 views

LogonTracer 安全漏洞

LogonTracer is a visual system log analysis tool developed by the Japanese JPCERT organization. This product can detect malicious login attempts by analyzing Windows Active Directory event logs. Versions of LogonTracer prior to 2.0.0 contained security vulnerabilities; these vulnerabilities were...

5.1CVSS6.2AI score0.00038EPSS

Exploits0References1

Positive Technologies•added 2026/04/27 12:0 a.m.•3 views

PT-2026-35275

Name of the Vulnerable Software and Affected Versions LogonTracer versions prior to 2.0.0 Description An OS command injection issue allows a logged-in user to execute arbitrary operating system commands. Recommendations Update to version 2.0.0 or later...

8.8CVSS8.4AI score0.00376EPSS

Exploits0References15

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-8020

Malware in sbrugna...

8.8CVSS8.8AI score0.00537EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-8022

Malware in sbrugna...

9.8CVSS9.5AI score0.00745EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-8019

Malware in sbrugna...

6.1CVSS6.7AI score0.00336EPSS

Exploits0References3

Packet Storm•added 2021/06/01 12:0 a.m.•364 views

LogonTracer 1.2.0 Remote Code Execution

Exploit Title: LogonTracer 1.2.0 - Remote Code Execution Unauthenticated Date: 29/05/2021 Exploit Author: g0ldm45k Vendor Homepage: https://www.jpcert.or.jp/ Software Link: https://github.com/JPCERTCC/LogonTracer/releases/tag/v1.2.0 Version: 1.2.0 and earlier Tested on: Version 1.2.0 on Debian...

10CVSS0.1AI score0.87006EPSS

Exploits3

0day.today•added 2021/06/01 12:0 a.m.•44 views

LogonTracer 1.2.0 - Remote Code Execution (Unauthenticated) Exploit

Exploit Title: LogonTracer 1.2.0 - Remote Code Execution Unauthenticated Exploit Author: g0ldm45k Vendor Homepage: https://www.jpcert.or.jp/ Software Link: https://github.com/JPCERTCC/LogonTracer/releases/tag/v1.2.0 Version: 1.2.0 and earlier Tested on: Version 1.2.0 on Debian GNU/Linux 8 jessie...

10CVSS0.4AI score0.87006EPSS

Exploits3

Exploit DB•added 2021/06/01 12:0 a.m.•589 views

LogonTracer 1.2.0 - Remote Code Execution (Unauthenticated)

10CVSS9.6AI score0.87006EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by