Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11231 matches found

GithubExploit
GithubExploitadded 2018/08/24 11:53 a.m.8 views

Exploit for CVE-2018-11776

CVE-2018-11776-Python-PoC hook-s3c github.com/hook-s3c, @hoo...

10CVSS9.8AI score0.99999EPSS
Exploits82
CVE
CVEadded 2018/08/24 11:0 a.m.52 views

CVE-2018-1722

IBM Security Access Manager Appliance versions 9.0.4.0 and 9.0.5.0 are affected by CVE-2018-1722, which could allow remote code execution when Advanced Access Control or Federation services are running. Exploitation details are not provided in the supplied documents, but the IBM Security Bulletin...

10CVSS9.3AI score0.09044EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessusadded 2018/08/23 12:0 a.m.19 views

Google Chrome < 64.0.3282.168 RCE

Binary data 700354.pasl...

8.8CVSS7.3AI score0.08793EPSS
Exploits0References1
myhack58
myhack58added 2018/08/23 12:0 a.m.848 views

Apache Struts2 S2-057 vulnerability analysis and early warning-vulnerability warning-the black bar safety net

It is possible to perform a RCE attack when the namespace value isn't set for a result defined in underlying xml configurations and in the same time, its upper actions configurations have no or wildcard namespace. The Same possibility when using the url tag which doesn't have value and action set...

2.8AI score0.99993EPSS
Exploits41
The Hacker News
The Hacker Newsadded 2018/08/22 2:4 p.m.1185 views

New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers

Semmle security researcher Man Yue Mo has disclosed a critical remote code execution vulnerability in the popular Apache Struts web application framework that could allow remote attackers to run malicious code on the affected servers. Apache Struts is an open source framework for developing web...

10CVSS0.3AI score0.99999EPSS
Exploits104
Tenable Nessus
Tenable Nessusadded 2018/08/21 12:0 a.m.33 views

Mozilla Firefox ESR < 52.7.2 RCE

Binary data 700336.prm...

9.8CVSS7.3AI score0.12054EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2018/08/21 12:0 a.m.17 views

Mozilla Firefox ESR < 60.0.2 RCE

Binary data 700340.prm...

8.8CVSS7.3AI score0.07666EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2018/08/21 12:0 a.m.30 views

Mozilla Firefox < 57.0.2 RCE

Binary data 700324.prm...

9.3CVSS7.3AI score0.03215EPSS
Exploits0References2
Prion
Prionadded 2018/08/20 8:29 p.m.16 views

Design/Logic Flaw

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network...

7.5CVSS9.7AI score0.01753EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCveadded 2018/08/20 8:29 p.m.17 views

CVE-2018-1000217

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network...

9.8CVSS7.1AI score0.01753EPSS
Exploits1References3
Prion
Prionadded 2018/08/20 8:29 p.m.19 views

Double free

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could...

6.8CVSS8.5AI score0.01471EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2018/08/20 8:29 p.m.20 views

CVE-2018-1000216

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could...

8.8CVSS6.6AI score
Exploits0References1
OSV
OSVadded 2018/08/20 8:29 p.m.16 views

CVE-2018-1000217

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network...

9.8CVSS7.2AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2018/08/20 8:29 p.m.18 views

CVE-2018-1000216

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could...

8.8CVSS7.1AI score0.01471EPSS
Exploits1References3
Cvelist
Cvelistadded 2018/08/20 8:0 p.m.31 views

CVE-2018-1000217

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network...

9.8AI score0.01753EPSS
Exploits1References1
CVE
CVEadded 2018/08/20 8:0 p.m.65 views

CVE-2018-1000217

The CVE-2018-1000217 entry concerns the cJSON library (versions 1.7.3 and earlier) with CWE-416: Use After Free. The flaw can cause a crash, data corruption, or remote code execution, depending on how the application uses cJSON; exploitation over a network is possible if the application exposes a...

9.8CVSS9.7AI score0.01753EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/08/20 8:0 p.m.46 views

CVE-2018-1000216

The CVE-2018-1000216 entry concerns cJSON versions 1.7.2 and earlier, which contain a CWE-415 Double Free vulnerability. According to the connected documents, exploitation can lead to a crash or remote code execution, with the attack potentially achievable by forcing the victim to print JSON data...

8.8CVSS8.4AI score0.01471EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVEadded 2018/08/20 8:0 p.m.18 views

CVE-2018-1000216

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could...

8.8CVSS8.5AI score0.01471EPSS
Exploits1
Debian CVE
Debian CVEadded 2018/08/20 8:0 p.m.12 views

CVE-2018-1000217

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network...

9.8CVSS9.8AI score0.01753EPSS
Exploits1
Cvelist
Cvelistadded 2018/08/20 8:0 p.m.26 views

CVE-2018-1000216

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could...

8.6AI score0.01471EPSS
Exploits1References1
Rows per page
Query Builder