Lucene search
K

406 matches found

CVE
CVE
added 2023/07/07 12:0 a.m.40 views

CVE-2023-36992

CVE-2023-36992 affects TravianZ 8.3.3 and 8.3.4, where a PHP injection in the admin page’s config editor allows remote code execution. The issue is located in the config editor component in the admin interface and is documented across multiple sources. Remediation guidance found in connected PT-2...

7.2CVSS7.3AI score0.00978EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/07 12:0 a.m.8 views

CVE-2023-36992

PHP injection in TravianZ 8.3.4 and 8.3.3 in the config editor in the admin page allows remote attackers to execute PHP code...

7.6AI score0.00978EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/07/07 12:0 a.m.21 views

CVE-2023-36992

PHP injection in TravianZ 8.3.4 and 8.3.3 in the config editor in the admin page allows remote attackers to execute PHP code...

7.5AI score0.00978EPSS
Exploits1References1
Huntr
Huntr
added 2023/06/17 6:9 p.m.27 views

Improper handling of input value leads to Remote Code Execution or Denial of Service

Description Some value in some input field was directly inserted into a file called "tp.config.php", an attacker can inject malicious PHP code to perform a remote code execution attack. Proof of Concept Go to Settings - MFA - Duo Security function, input this payload: ',; phpinfo; ?// on the...

5.8CVSS7.9AI score0.00942EPSS
Exploits1
NVD
NVD
added 2023/04/25 7:15 p.m.28 views

CVE-2022-45291

PWS Personal Weather Station Dashboard PWSDashboard LTS December 2020 2012lts allows remote code execution by injecting PHP code into settings.php. Attacks can use the PWSprintfile.php, PWSframetext.php, PWSlistfile.php, PWSwinter.php, and PWSeasyweathersetup.php endpoints. A contributing factor ...

7.2CVSS7.6AI score0.01326EPSS
Exploits1References2
Prion
Prion
added 2023/04/25 7:15 p.m.15 views

Hardcoded credentials

PWS Personal Weather Station Dashboard PWSDashboard LTS December 2020 2012lts allows remote code execution by injecting PHP code into settings.php. Attacks can use the PWSprintfile.php, PWSframetext.php, PWSlistfile.php, PWSwinter.php, and PWSeasyweathersetup.php endpoints. A contributing factor ...

5.8CVSS7.6AI score0.01326EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/25 12:0 a.m.8 views

CVE-2022-45291

PWS Personal Weather Station Dashboard PWSDashboard LTS December 2020 2012lts allows remote code execution by injecting PHP code into settings.php. Attacks can use the PWSprintfile.php, PWSframetext.php, PWSlistfile.php, PWSwinter.php, and PWSeasyweathersetup.php endpoints. A contributing factor ...

8.3AI score0.01326EPSS
Exploits1References2
Rapid7 Blog
Rapid7 Blog
added 2023/04/21 6:2 p.m.108 views

Metasploit Weekly Wrap-Up

VMware Workspace ONE Access exploit chain A new module contributed by jheysel-r7 exploits two vulnerabilities in VMware Workspace ONE Access to attain Remote Code Execution as the horizon user. First being CVE-2022-22956, which is an authentication bypass and the second being a JDBC injection in...

7.5CVSS10.3AI score0.99637EPSS
Exploits36
Packet Storm
Packet Storm
added 2023/04/18 12:0 a.m.512 views

SPIP Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SPIP form PHP Injection', 'Description' = %q This module exploits a PHP code injection in SPIP. The vulnerability exists in the oubli parameter a...

9.8CVSS9.4AI score0.99637EPSS
Exploits23
OSV
OSV
added 2023/03/22 2:15 p.m.6 views

CVE-2023-1566

A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been declared as critical. This vulnerability affects unknown code of the file action.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...

9.8CVSS6.6AI score0.00491EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/01/24 12:0 a.m.12 views

WordPress Google Analyticator Plugin < 6.5.6 Multiple PHP Object Injection Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sumo:googleanalyticator"; if description...

7.2CVSS7AI score0.01046EPSS
Exploits4References2
NVD
NVD
added 2023/01/11 9:15 a.m.25 views

CVE-2023-22952

In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation...

8.8CVSS8.8AI score0.80274EPSS
Exploits4References3
Cvelist
Cvelist
added 2023/01/11 12:0 a.m.52 views

CVE-2023-22952

In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation...

8.9AI score0.80274EPSS
Exploits4References2
wpexploit
wpexploit
added 2022/10/10 12:0 a.m.94 views

PublishPress Capabilities < 2.5.2 - Admin+ PHP Objection Injection

The plugin unserializes the content of imported files, which could lead to PHP object injection attacks by administrators, on multisite WordPress configurations. Successful exploitation in this case requires other plugins with a suitable gadget chain to be present on the site. To simulate a gadge...

7.2CVSS0.4AI score0.01126EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2022/10/03 12:0 a.m.27 views

Kadence WooCommerce Email Designer < 1.5.7 - Admin+ PHP Objection Injection

The plugin unserialises the content of an imported file, which could lead to PHP object injections issues when an admin import intentionally or not a malicious file and a suitable gadget chain is present on the blog. PoC To simulate a gadget chain, put the following code in a plugin class Evil...

7.2CVSS0.5AI score0.0115EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/10/03 12:0 a.m.478 views

Kadence WooCommerce Email Designer < 1.5.7 - Admin+ PHP Objection Injection

The plugin unserialises the content of an imported file, which could lead to PHP object injections issues when an admin import intentionally or not a malicious file and a suitable gadget chain is present on the blog. To simulate a gadget chain, put the following code in a plugin class Evil public...

7.2CVSS0.2AI score0.0115EPSS
Exploits2
OSV
OSV
added 2022/09/26 1:15 p.m.3 views

CVE-2021-24890

The Scripts Organizer WordPress plugin before 3.0 does not have capability and CSRF checks in the saveScript AJAX action, available to both unauthenticated and authenticated users, and does not validate user input in any way, which could allow unauthenticated users to put arbitrary PHP code in a...

8.8CVSS6AI score0.00457EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/06/01 12:0 a.m.19 views

SPIP < 3.2.8 PHP Injection Vulnerability

SPIP is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:spip:spip";...

8.8CVSS7.8AI score0.01821EPSS
Exploits1References1
NVD
NVD
added 2022/05/19 9:15 p.m.21 views

CVE-2022-28960

A PHP injection vulnerability in Spip before v3.2.8 allows attackers to execute arbitrary PHP code via the oups parameter at /ecrire...

8.8CVSS0.01821EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2022/05/19 9:15 p.m.2 views

CVE-2022-28960

A PHP injection vulnerability in Spip before v3.2.8 allows attackers to execute arbitrary PHP code via the oups parameter at /ecrire...

8.8CVSS6.2AI score0.01821EPSS
Exploits1References6
Rows per page
Query Builder