CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

695 matches found

RedhatCVE•added 2026/06/13 2:34 a.m.•11 views

CVE-2026-42850

A flaw was found in Kitty, a cross-platform GPU based terminal. A remote attacker could exploit this vulnerability by sending a specially crafted escape code to a victim who is connected to the attacker via a program like netcat. This escape code triggers an unescaped error that is then executed ...

8.8CVSS5.6AI score0.00287EPSS

Exploits1References2

OSV•added 2026/06/12 8:16 p.m.•5 views

DEBIAN-CVE-2026-42850

Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.0, it is possible to inject commands within the subshell through kitty error. A special escape code will make kitty return an error, this error is not escaped and will be correctly echoed back to the terminal with CRLF, as su...

8.8CVSS5.5AI score0.00287EPSS

Exploits1References1

OSV•added 2026/06/12 8:16 p.m.•4 views

UBUNTU-CVE-2026-42850

8.8CVSS5.5AI score0.00287EPSS

Exploits1References3

EUVD•added 2026/06/12 7:59 p.m.•6 views

EUVD-2026-36553

7.4CVSS5.5AI score0.00287EPSS

Exploits1References1

CVE•added 2026/06/12 7:59 p.m.•11 views

CVE-2026-42850

CVE-2026-42850 affects the Kitty terminal (GPU-based, cross-platform). In versions prior to 0.47.0, an injection is possible through a crafted kitty error that is echoed back to the terminal with CRLF and executed by the user’s shell. The attack requires the victim to connect to the attacker (e.g...

8.8CVSS5.5AI score0.00287EPSS

Exploits1References1Affected Software1

GithubExploit•added 2026/06/01 3:21 a.m.•79 views

Exploit for Missing Authentication for Critical Function in Mcpjam Inspector

on kali linux - terminal 1...

9.8CVSS6AI score0.38374EPSS

Exploits29

Packet Storm•added 2026/05/08 12:0 a.m.•118 views

📄 Exim 4.91 Remote Command Execution

Exim versions 4.87 through 4.91 improper recipient-address validation remote command execution exploit. Spawns a netcat shell on port 31415 as root, then connects to it Vulnerablity is within Exim 4.87-4.91 import subprocess import socket import os import time from subprocess import Popen, PIPE...

10CVSS7.6AI score0.99961EPSS

Exploits27

GithubExploit•added 2026/04/21 11:52 a.m.•78 views

From-Shell-to-Root

🔥 Red Team Notes Pentesting This repository contains real-w...

5.7AI score

Exploits0

GithubExploit•added 2026/04/20 10:50 p.m.•102 views

Exploit for CVE-2004-2687

The goal of this script NOT to use Metasplo...

9.3CVSS7.3AI score0.80978EPSS

Exploits9

GithubExploit•added 2026/03/19 6:23 p.m.•141 views

Exploit for OS Command Injection in Apache Tomcat

ISM.bat RCE Exploit PoC script for unauthenticated Remote Cod...

9.3CVSS7.5AI score0.99652EPSS

Exploits9

GithubExploit•added 2026/03/13 5:24 p.m.•117 views

vsFTPd-2.3.4-exploit-netcat-revshell-PoC

vsFTPd...

5.8AI score

Exploits0

RedhatCVE•added 2026/01/30 3:39 p.m.•11 views

CVE-2020-37002

Ajenti 2.1.36 contains an authentication bypass vulnerability that allows remote attackers to execute arbitrary commands after successful login. Attackers can leverage the /api/terminal/create endpoint to send a netcat reverse shell payload targeting a specified IP and port...

9.8CVSS6.2AI score0.00653EPSS

Exploits0References1

OSV•added 2026/01/29 3:16 p.m.•3 views

CVE-2020-37002

9.8CVSS6AI score0.00653EPSS

Exploits0References3

NVD•added 2026/01/29 3:16 p.m.•10 views

CVE-2020-37002

Ajenti 2.1.36 contains a post-authenticated remote command execution vulnerability that allows remote attackers to execute arbitrary commands after successful login. Attackers can leverage the /api/terminal/create endpoint to send a netcat reverse shell payload targeting a specified IP and port...

9.8CVSS0.00653EPSS

Exploits0References3

EUVD•added 2026/01/29 2:28 p.m.•6 views

EUVD-2020-30913

9.8CVSS6.2AI score0.00653EPSS

Exploits0References3