Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:0 a.m.11 views

CVE-2020-7602

node-prompt-here through 1.0.1 allows execution of arbitrary commands. The "runCommand" is called by "getDevices" function in file "linux/manager.js", which is required by the "index. process.env.NMCLI" in the file "linux/manager.js". This function is used to construct the argument of function...

9.8CVSS7AI score0.02534EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:51 a.m.9 views

CVE-2023-28712

Osprey Pump Controller version 1.01 contains an unauthenticated command injection vulnerability that could allow system access with www-data permissions...

9.8CVSS7.6AI score0.0123EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.9 views

CVE-2022-36542

An access control issue in the component /ip/admin/ of Edoc-doctor-appointment-system v1.0.1 allows attackers to arbitrarily edit, read, and delete Administrator data...

6.5CVSS6.9AI score0.00616EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.7 views

CVE-2022-36544

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/booking.php...

9.8CVSS8.3AI score0.00988EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:11 p.m.8 views

CVE-2022-36543

Edoc-doctor-appointment-system v1.0.1 was discovered to contain a SQL injection vulnerability via the id parameter at /patient/doctors.php...

9.8CVSS8.3AI score0.00988EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:1 p.m.8 views

CVE-2022-30810

elitecms v1.01 is vulnerable to SQL Injection via admin/editpost.php...

9.8CVSS8.1AI score0.01081EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:5 p.m.7 views

CVE-2020-20131

LaraCMS v1.0.1 contains a stored cross-site scripting XSS vulnerability which allows atackers to execute arbitrary web scripts or HTML via a crafted payload in the page management module...

5.4CVSS5.5AI score0.00576EPSS
Exploits1
Patchstack
Patchstack
added 2024/11/08 12:59 p.m.4 views

WordPress Add Ribbon Shortcode plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Add Ribbon Shortcode versions = 1.0.1...

6.5CVSS6.1AI score0.00352EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2023/03/24 12:0 a.m.7 views

Osprey Pump Controller 命令注入漏洞

Osprey Pump Controller is a pump controller from Osprey. A security vulnerability exists in Osprey Pump Controller version 1.01 that stems from the presence of a command injection vulnerability. An attacker can exploit the vulnerability to gain access to the system...

9.8CVSS8.6AI score0.0123EPSS
Exploits1References3
0day.today
0day.today
added 2005/02/27 12:0 a.m.13 views

Einstein <= 1.01 Local Password Disclosure Exploit

Exploit for unknown platform in category local exploits ================================================== Einstein include HKEY hKey; define BUFSIZE 100 char usernameBUFSIZE, passwordBUFSIZE; DWORD dwBufLen=BUFSIZE; LONG lRet; int mainvoid ifRegOpenKeyExHKEYLOCALMACHINE,"Software\einstein", 0,...

6.8AI score
Exploits0
Rows per page
Query Builder