Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-7351

Malware in sbrugna...

9CVSS7AI score0.02516EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-46282

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00573EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-34336

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00376EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-46280

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00717EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-28533

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00427EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/02 8:23 p.m.5 views

CVE-2014-125124

An unauthenticated remote command execution vulnerability exists in Pandora FMS versions up to and including 5.0RC1 via the Anyterm web interface, which listens on TCP port 8023. The anyterm-module endpoint accepts unsanitized user input via the p parameter and directly injects it into a shell...

10CVSS7.2AI score0.0148EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/31 3:0 p.m.3 views

CVE-2014-125124 Pandora FMS <= 5.0RC1 Anyterm Unauthenticated Command Injection

An unauthenticated remote command execution vulnerability exists in Pandora FMS versions up to and including 5.0RC1 via the Anyterm web interface, which listens on TCP port 8023. The anyterm-module endpoint accepts unsanitized user input via the p parameter and directly injects it into a shell...

10CVSS7.2AI score0.0148EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/03 7:46 p.m.12 views

CVE-2025-34088 Pandora FMS Authenticated Remote Code Execution via Ping Module

An authenticated remote code execution vulnerability exists in Pandora FMS version 7.0NG and earlier. The nettools.php functionality allows authenticated users to execute arbitrary OS commands via the selectips parameter when performing network tools operations, such as pinging. This occurs becau...

8.6CVSS0.0509EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/03/19 10:18 a.m.16 views

CVE-2024-12971

Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command Injection.This issue affects Pandora FMS from 700 to 777.6...

8.6CVSS6.9AI score0.59424EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/03/17 9:19 a.m.18 views

CVE-2024-12971 QuickShell Authenticated Command Injection

Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command Injection.This issue affects Pandora FMS from 700 to 777.6...

8.6CVSS6.6AI score0.59424EPSS
Exploits2References1
CVE
CVE
added 2025/03/17 9:19 a.m.123 views

CVE-2024-12971

CVE-2024-12971 affects Pandora FMS versions 700–777.6. The issue is an OS command injection caused by improper neutralization of special elements in commands, enabling execution of arbitrary commands. Public exploitation is demonstrated by a Metasploit module that requires admin access to Pandora...

8.8CVSS7AI score0.59424EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/10 12:0 a.m.13 views

PT-2024-15: Unauth Time-based SQL Injection in Pandora FMS

The vulnerability was identified in Pandora FMS, versions from 700 through 776. The vulnerability can be exploited without authentication. It allows to gain access to arbitrary data from database. The vulnerability is a part of a chain that leads to remote code execution and complete server...

9.1CVSS8AI score0.00846EPSS
Exploits0References3
Prion
Prion
added 2023/11/23 3:15 p.m.16 views

Arbitrary file deletion

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pandora FMS on all allows File Discovery. This vulnerability allows users with low privileges to download database backups. This issue affects Pandora FMS: from 700 through 772...

4CVSS7AI score0.00544EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/08/01 12:0 a.m.7 views

Artica Pandora FMS 安全漏洞

Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. A security vulnerability exists in Artica Pandora FMS that stems from Pandora FMS v7.0NG.760 and lower allows incorrect...

5.4CVSS5.7AI score0.00344EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/25 12:0 a.m.5 views

PT-2022-14545 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 7.0NG.761 and below Description: The issue is related to a Stored Cross Site-Scripting vulnerability in the file manager section, specifically affecting the dirname parameter. This can be exploited by an attacker with...

4.8CVSS4.8AI score0.00376EPSS
Exploits0References5
Rows per page
Query Builder