CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1327 matches found

CISA KEV Catalog•added 2024/09/30 12:0 a.m.•37 views

DrayTek Multiple Vigor Routers OS Command Injection Vulnerability

DrayTek Vigor3900, Vigor2960, and Vigor300B devices contain an OS command injection vulnerability in cgi-bin/mainfunction.cgi/cvmcfgupload that allows for remote code execution via shell metacharacters in a filename when the text/x-python-script content type is used...

9.8CVSS8.4AI score0.84599EPSS

In wildExploits1

GithubExploit•added 2024/09/27 6:23 p.m.•331 views

Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar

CVE-2023-38831 WinRAR Exploit Generator Created by: tech...

7.8CVSS7.4AI score0.97798EPSS

Exploits49

GithubExploit•added 2024/09/23 3:47 a.m.•619 views

Exploit for Unrestricted Upload of File with Dangerous Type in Mayurik Best_House_Rental_Management_System

CVE-2024-46377 PoC for Arbitrary File Upload Vulnerability...

9.8CVSS7.2AI score0.01179EPSS

Exploits1

GithubExploit•added 2024/09/22 2:27 p.m.•760 views

Exploit for Path Traversal in Tuzitio Camaleon_Cms

CVE-2024-46986 Camaleon CMS Exploit - Arbitrary File Upload...

9.9CVSS7.6AI score0.35658EPSS

Exploits2

GithubExploit•added 2024/09/19 9:35 a.m.•706 views

Exploit for Command Injection in Jc21 Nginx_Proxy_Manager

POCCVE-2024-46256 CVE-2024-46256 and CVE-2024-46257 is the...

9.8CVSS9.9AI score0.02997EPSS

Exploits3

GithubExploit•added 2024/09/18 9:9 a.m.•63 views

webray.com.cn

It is an offensive tool for web application exploitation. The to...

8.5AI score

Exploits0

GithubExploit•added 2024/09/16 3:33 p.m.•269 views

Exploit for OS Command Injection in Ivanti Cloud_Services_Appliance

CVE-2024-8190: Ivanti Cloud Service Appliance Authenticated Co...

7.2CVSS8.9AI score0.88955EPSS

Exploits2

GithubExploit•added 2024/09/16 1:11 p.m.•760 views

Exploit for CVE-2024-32651

CVE-2024-32651 changedetection --port --ip --notification...

10CVSS9.6AI score0.83722EPSS

Exploits5

GithubExploit•added 2024/09/16 1:11 p.m.•623 views

Exploit for CVE-2024-32651

CVE-2024-32651 changedetection --port --ip --notification...

10CVSS9.6AI score0.83722EPSS

Exploits5

The Hacker News•added 2024/09/12 12:56 p.m.•22 views

Exposed Selenium Grid Servers Targeted for Crypto Mining and Proxyjacking

Internet-exposed Selenium Grid instances are being targeted by bad actors for illicit cryptocurrency mining and proxyjacking campaigns. "Selenium Grid is a server that facilitates running test cases in parallel across different browsers and versions," Cado Security researchers Tara Gould and Nate...

5.8CVSS7AI score0.0481EPSS

Exploits2

GithubExploit•added 2024/09/10 4:58 p.m.•265 views

Exploit for Code Injection in Vmware Spring_Cloud_Data_Flow

CVE-2024-37084-Poc Setup ,Analysis , Demo exploit and poc abou...

9.8CVSS6.8AI score0.35211EPSS

Exploits4

GithubExploit•added 2024/09/06 3:17 p.m.•619 views

Exploit for Out-of-bounds Write in Mikrotik Routeros

cve-2023-30800-multithread-doser Multithredded DoS Python Scri...

7.5CVSS7.6AI score0.01704EPSS

Exploits2

GithubExploit•added 2024/09/04 4:50 p.m.•154 views

Exploit for OS Command Injection in Progress Loadmaster

CVE-2024-1212 Command Injection Exploit for Kemp LoadMaster 🛡️...

10CVSS10AI score0.95388EPSS

Exploits9

GithubExploit•added 2024/08/28 2:22 p.m.•297 views

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809 Exploiter Scripts Disclaimer This script is pr...

7.8CVSS8.2AI score0.55367EPSS

Exploits20

GithubExploit•added 2024/08/28 1:28 p.m.•1230 views

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387 Vulnerability Checker Overview This Python...

8.1CVSS8.2AI score0.99506EPSS

Exploits68

GithubExploit•added 2024/08/28 8:57 a.m.•286 views

Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft

IPv6 Vulnerability Packet Sender for Memory Corruption CVE-...

9.8CVSS7.7AI score0.70564EPSS

Exploits24

GithubExploit•added 2024/08/27 3:28 p.m.•257 views

Exploit for Code Injection in Geoserver

GeoExplorer GeoExplorer is a mass scanner project consisting...

9.8CVSS9.7AI score0.99813EPSS

Exploits25

GithubExploit•added 2024/08/25 7:32 p.m.•470 views

Exploit for Injection in Glpi-Project Glpi

CVE-2022-35914poc Modified for GLPI Offsec Lab: calluserfun...

9.8CVSS9.8AI score0.99521EPSS

Exploits13

GithubExploit•added 2024/08/24 5:17 p.m.•309 views

Exploit for Missing Authentication for Critical Function in Jetbrains Teamcity

CVE-2023-42793 TeamCity CVE-2023-42793 RCE Remote Code Execu...

9.8CVSS10AI score0.99979EPSS

Exploits17

Packet Storm•added 2024/08/19 12:0 a.m.•323 views

Ewon Cosy+ Hardcoded Key

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-032 Product: Ewon Cosy+ Manufacturer: HMS Industrial Networks AB Affected Versions: Firmware Versions: 21.2s10 and 22.1s3 Tested Versions: Firmware Version: 21.2s7 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-32...

7.1AI score0.00701EPSS

Exploits6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by