Lucene search
K

11 matches found

Vulnrichment
Vulnrichment
added 2026/06/10 7:46 p.m.8 views

CVE-2026-46529 PDF /GoToR action argv injection enables single-click RCE via --gtk-module dlopen

Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A single-click remote code execution vulnerability in versions prior to 1.26.3 and 1.28.4 allows an attacker to achieve arbitrary code execution as the user by tricking them into clicking a link inside...

8.4CVSS6.4AI score0.00529EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:8 p.m.8 views

CVE-2026-35368

A vulnerability exists in the chroot utility of uutils coreutils when using the --userspec option. The utility resolves the user specification via getpwnam after entering the chroot but before dropping root privileges. On glibc-based systems, this can trigger the Name Service Switch NSS to load...

7.8CVSS6.1AI score0.00136EPSS
Exploits1References2
CVE
CVE
added 2026/02/02 5:55 p.m.15 views

CVE-2026-22226

Technical details (affected component, root cause, vulnerable paths, available fixes) are not provided in the connected documents. Public material reiterates a command-injection issue in TP-Link Archer BE230 v1.2; monitor vendor advisories for updates and patches.

8.5CVSS5.9AI score0.02394EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43064

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00936EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/07/08 6:5 p.m.234 views

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

CVE-2025-32463SudoPoC PoC for CVE-2025-32463: Local privileg...

9.3CVSS9.7AI score0.47467EPSS
Exploits70
OSV
OSV
added 2024/12/16 1:56 p.m.8 views

BIT-NODE-MIN-2023-39333

Maliciously crafted export names in an imported WebAssembly module can inject JavaScript code. The injected code may be able to access data and functions that the WebAssembly module itself does not have access to, similar to as if the WebAssembly module was a JavaScript module. This vulnerability...

5.3CVSS6.4AI score0.00936EPSS
Exploits0References5
0day.today
0day.today
added 2019/12/08 12:0 a.m.429 views

SiteVision 4.x / 5.x Insufficient Module Access Control Vulnerability #ByPass

SiteVision suffers from an issue where attacker may inject non-authorized module when editing pages using a lower privileged account, which can lead to cross site scripting and remote code execution. All versions of SiteVision 4 until 4.5.6 and all versions of SiteVision 5 until 5.1.1 are...

0.9AI score0.06039EPSS
Exploits6
myhack58
myhack58
added 2014/07/17 12:0 a.m.17 views

Detours to modify the paragraph properties of vulnerability-vulnerability warning-the black bar safety net

Detours to modify the paragraph properties of the vulnerability Affected Software and systems Detours3. 0 and previous versions Description This issue will be its positioning as a vulnerability may be less suitable, the more likely that Detours a BUG, but because the defect will cause the exploit...

0.9AI score
Exploits0
0day.today
0day.today
added 2013/07/07 12:0 a.m.24 views

OpenNetAdmin 13.03.01 - Remote Code Execution Vulnerability

Exploit for php platform in category web applications Exploit Title: OpenNetAdmin Remote Code Execution Date: 03/04/13 Exploit Author: Mandat0ry aka Matthew Bryant Vendor Homepage: http://opennetadmin.com/ Software Link: http://opennetadmin.com/download.html Version: 13.03.01 Tested on: Ubuntu CV...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/07/07 12:0 a.m.24 views

OpenNetAdmin 13.03.01 Remote Code Execution

Exploit Title: OpenNetAdmin Remote Code Execution Date: 03/04/13 Exploit Author: Mandat0ry aka Matthew Bryant Vendor Homepage: http://opennetadmin.com/ Software Link: http://opennetadmin.com/download.html Version: 13.03.01 Tested on: Ubuntu CVE : No CVE exists - 0day exploit - probably works on t...

Exploits0
exploitpack
exploitpack
added 2007/12/25 12:0 a.m.32 views

RunCMS 1.6 - Get Admin Cookie Blind SQL Injection

RunCMS 1.6 - Get Admin Cookie Blind SQL Injection // / RUNCMS 1.6 BLIND SQL Injection Exploit get Admin Cookie / // / exploit get admin cookie that can be used / / to login by pasting it into browser Opera / / and then get access to Admin session / / and change Admins password / / / // // / teste...

0.6AI score
Exploits0
Rows per page
Query Builder