Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-56110

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01294EPSS
Exploits1References2
OSV
OSV
added 2024/08/20 8:56 p.m.22 views

CVE-2024-42362 GHSL-2023-255: HertzBeat Authenticated (user role) RCE via unsafe deserialization in /api/monitors/import

Hertzbeat is an open source, real-time monitoring system. Hertzbeat has an authenticated user role RCE via unsafe deserialization in /api/monitors/import. This vulnerability is fixed in 1.6.0...

8.8CVSS6.9AI score0.0133EPSS
Exploits1References8
NVD
NVD
added 2024/02/22 4:15 p.m.22 views

CVE-2023-51389

Hertzbeat is a real-time monitoring system. At the interface of /define/yml, SnakeYAML is used as a parser to parse yml content, but no security configuration is used, resulting in a YAML deserialization vulnerability. Version 1.4.1 fixes this vulnerability...

9.8CVSS9.6AI score0.01294EPSS
Exploits1References2
NVD
NVD
added 2024/02/22 4:15 p.m.67 views

CVE-2023-51653

Hertzbeat is a real-time monitoring system. In the implementation of JmxCollectImpl.java, JMXConnectorFactory.connect is vulnerable to JNDI injection. The corresponding interface is /api/monitor/detect. If there is a URL field, the address will be used by default. When the URL is...

9.8CVSS9.9AI score0.02131EPSS
Exploits1References2
NVD
NVD
added 2021/12/15 8:15 a.m.23 views

CVE-2021-45043

HD-Network Real-time Monitoring System 2.0 allows ../ directory traversal to read /etc/shadow via the /language/lang sLanguage parameter...

7.5CVSS0.33133EPSS
Exploits1References2
CVE
CVE
added 2021/12/15 7:13 a.m.81 views

CVE-2021-45043

HD-Network Real-time Monitoring System 2.0 is affected by a Local File Inclusion vulnerability. The NUCLEI template for CVE-2021-45043 describes an LFI flaw exposed via the /language/lang s_Language parameter, enabling remote unauthenticated attackers to view confidential information (e.g., /etc/...

7.5CVSS7.4AI score0.33133EPSS
Exploits1References2Affected Software1
0day.today
0day.today
added 2021/12/13 12:0 a.m.178 views

HD-Network Real-time Monitoring System 2.0 - Local File Inclusion Vulnerability

Exploit Title: HD-Network Real-time Monitoring System 2.0 - Local File Inclusion LFI Google Dork: intitle:"HD-Network Real-time Monitoring System V2.0" Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: N/A Version: V2.0 Tested on: Nginx NVRDVRIPC Web Server Proof of Concept: GET...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2021/12/13 12:0 a.m.259 views

HD-Network Real-time Monitoring System 2.0 - Local File Inclusion (LFI)

Exploit Title: HD-Network Real-time Monitoring System 2.0 - Local File Inclusion LFI Google Dork: intitle:"HD-Network Real-time Monitoring System V2.0" Date: 11/12/2021 Exploit Author: Momen Eldawakhly Cyber Guy Vendor Homepage: N/A Version: V2.0 Tested on: Nginx NVRDVRIPC Web Server Proof of...

7.4AI score
Exploits0
Rows per page
Query Builder