Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8838

Malware in sbrugna...

8.8CVSS8.7AI score0.22735EPSS
Exploits1References2
Prion
Prion
added 2019/11/21 10:15 p.m.18 views

Sql injection

rConfig 3.9.2 allows devices.php?searchColumn= SQL injection...

6.5CVSS9.1AI score0.22735EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/11/21 9:6 p.m.20 views

CVE-2019-19207

rConfig 3.9.2 allows devices.php?searchColumn= SQL injection...

9.2AI score0.22735EPSS
Exploits1References1
0day.today
0day.today
added 2019/10/29 12:0 a.m.103 views

rConfig 3.9.2 - Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: rConfig 3.9.2 - Remote Code Execution Exploit Author: Askar Vendor Homepage: https://rconfig.com/ Software link: https://rconfig.com/download Version: v3.9.2 Tested on: CentOS 7.7 / PHP 7.2.22 CVE : CVE-2019-16662 !/usr/bin/pyth...

10CVSS9.6AI score0.97702EPSS
Exploits10
NVD
NVD
added 2019/10/28 12:15 p.m.16 views

CVE-2019-16662

An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to ajaxServerSettingsChk.php because the rootUname parameter is passed to the exec function without filtering, which can lead to command execution...

10CVSS9.7AI score0.97702EPSS
Exploits10References7
Cvelist
Cvelist
added 2019/10/28 11:53 a.m.39 views

CVE-2019-16663

An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to search.crud.php because the catCommand parameter is passed to the exec function without filtering, which can lead to command execution...

9.5AI score0.97702EPSS
Exploits11References5
Cvelist
Cvelist
added 2019/10/28 11:52 a.m.53 views

CVE-2019-16662

An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to ajaxServerSettingsChk.php because the rootUname parameter is passed to the exec function without filtering, which can lead to command execution...

9.8AI score0.97702EPSS
Exploits10References7
ATTACKERKB
ATTACKERKB
added 2019/10/28 12:0 a.m.21 views

CVE-2019-16662

An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to ajaxServerSettingsChk.php because the rootUname parameter is passed to the exec function without filtering, which can lead to command execution. Recent assessments: pbarry-r7 at...

10CVSS3.6AI score0.97702EPSS
Exploits11References8
Rows per page
Query Builder