49 matches found
CVE-2026-24871
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
CVE-2026-24871
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
CVE-2026-24871
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
CVE-2026-24871
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
EUVD-2026-4730
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
CVE-2026-24871 Code injection in Minecraft-Rcon-Manage
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
CVE-2026-24871 Code injection in Minecraft-Rcon-Manage
Improper Control of Generation of Code 'Code Injection' vulnerability in pilgrimage233 Minecraft-Rcon-Manage.This issue affects Minecraft-Rcon-Manage: before 3.0...
EUVD-2004-1893
Malware in sbrugna...
CVE-2025-61680
Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0...
CVE-2025-61680 Minecraft RCON Terminal: Plain Text Password Storage in Configuration
Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0...
CVE-2025-61680 Minecraft RCON Terminal: Plain Text Password Storage in Configuration
Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0...
Minecraft RCON Terminal 安全漏洞
Minecraft RCON Terminal is an extension for Visual Studio Code by Jake T Cooper Personal Developer. A security vulnerability exists in Minecraft RCON Terminal version 2.0.6 and earlier, which stems from the use of the VS Code Configuration API to store passwords in plaintext...
Malicious code in wargame-rcon (npm)
The package wargame-rcon was found to contain malicious code...
MAL-2025-38776 Malicious code in wargame-rcon (npm)
The package wargame-rcon was found to contain malicious code...
CVE-2022-38221
A buffer overflow in the FTcpListener thread in The Isle Evrima the dedicated server on Windows and Linux 0.9.88.07 before 2022-08-12 allows a remote attacker to crash any server with an accessible RCON port, or possibly execute arbitrary code...
CVE-2022-38221
A buffer overflow in the FTcpListener thread in The Isle Evrima the dedicated server on Windows and Linux 0.9.88.07 before 2022-08-12 allows a remote attacker to crash any server with an accessible RCON port, or possibly execute arbitrary code...
Buffer overflow
A buffer overflow in the FTcpListener thread in The Isle Evrima the dedicated server on Windows and Linux 0.9.88.07 before 2022-08-12 allows a remote attacker to crash any server with an accessible RCON port, or possibly execute arbitrary code...
Valve: [CS 1.6] Map cycle abuse allows arbitrary file read/write
The CS 1.6 server has a feature of map cycle - i.e. automatic map change after specified period of time. This feature relies on data of the file specified in mapcyclefile cvar. Any user with RCON access to the server can set this variable to arbitrary value - no input sanitization applies. In ord...
UBUNTU-CVE-2010-5077
server/svmain.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service network traffic amplification via a spoofed 1 getstatus or 2 rcon request...
Half-Life StatsMe 2.6.x Plug-in MakeStats Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6578/info The Half-Life StatsMe plug-in is prone to an exploitable format string vulnerability. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute...