Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17709

Malicious code in bioql PyPI...

7CVSS6.6AI score0.01511EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2025/08/07 12:0 a.m.125 views

📄 Pandora ITSM Authenticated Command Injection

This Metasploit module exploits a command injection vulnerability in the name backup setting at the application setup page of Pandora ITSM. This can be triggered by generating a backup with a malicious payload injected at the name parameter. You need to have admin access at the Pandora ITSM Web...

7CVSS8.3AI score0.0241EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/06/12 4:10 p.m.6 views

CVE-2025-4678

Improper Neutralization of Special Elements in the chromiumpath variable may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS7AI score0.01511EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/12 4:10 p.m.7 views

CVE-2025-4653

Improper Neutralization of Special Elements in the backup name field may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS7AI score0.0241EPSS
Exploits2References1
EUVD
EUVD
added 2025/06/10 6:32 p.m.6 views

EUVD-2025-17710

Improper Neutralization of Special Elements in the backup name field may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS7.7AI score0.0241EPSS
Exploits2References2
NVD
NVD
added 2025/06/10 4:15 p.m.11 views

CVE-2025-4678

Improper Neutralization of Special Elements in the chromiumpath variable may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS0.01511EPSS
Exploits0References1
NVD
NVD
added 2025/06/10 4:15 p.m.14 views

CVE-2025-4653

Improper Neutralization of Special Elements in the backup name field may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS0.0241EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/06/10 3:54 p.m.4 views

CVE-2025-4678 Remote Code Execution leads to Command Injection

Improper Neutralization of Special Elements in the chromiumpath variable may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS7.7AI score0.01511EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 3:54 p.m.43 views

CVE-2025-4678

CVE-2025-4678 affects Pandora ITSM 5.0.105. The root cause is improper neutralization of special elements in the chromium_path variable, which may permit OS command injection. The CVSS data indicates network attack vector, high severity (7.0), with high privileges required and no user interaction...

7CVSS7.1AI score0.01511EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 3:54 p.m.12 views

CVE-2025-4678 Remote Code Execution leads to Command Injection

Improper Neutralization of Special Elements in the chromiumpath variable may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS0.01511EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 3:53 p.m.14 views

CVE-2025-4653 Remote Code Execution leads to Command Injection

Improper Neutralization of Special Elements in the backup name field may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS0.0241EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/06/10 3:53 p.m.4 views

CVE-2025-4653 Remote Code Execution leads to Command Injection

Improper Neutralization of Special Elements in the backup name field may allow OS command injection. This issue affects Pandora ITSM 5.0.105...

7CVSS7.7AI score0.0241EPSS
Exploits2References1
CVE
CVE
added 2025/06/10 3:53 p.m.92 views

CVE-2025-4653

CVE-2025-4653 affects Pandora ITSM 5.0.105 due to improper neutralization of special elements in the backup name field, enabling command injection and authenticated remote code execution. Public materials describe an in-application backup name parameter vulnerability exploitable with admin access...

7CVSS7.1AI score0.0241EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.6 views

PT-2025-24699 · Unknown · Pandora Itsm

Name of the Vulnerable Software and Affected Versions: Pandora ITSM version 5.0.105 Description: The issue is related to the improper neutralization of special elements in the backup name field, which may allow OS command injection. Recommendations: For Pandora ITSM version 5.0.105, update to a...

7CVSS6.7AI score0.0241EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.5 views

PT-2025-24700 · Unknown · Pandora Itsm

Name of the Vulnerable Software and Affected Versions: Pandora ITSM version 5.0.105 Description: The issue is related to the improper neutralization of special elements in the chromium path variable, which may allow OS command injection. Recommendations: For Pandora ITSM version 5.0.105, consider...

7CVSS7.2AI score0.01511EPSS
Exploits0References3
Rows per page
Query Builder