Lucene search
K

905 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:58 p.m.7 views

CVE-2021-36582

In Kooboo CMS 2.1.1.0, it is possible to upload a remote shell e.g., aspx to the server and then call upon it to receive a reverse shell from the victim server. The files are uploaded to /Content/Template/root/reverse-shell.aspx and can be simply triggered by browsing that URL...

10CVSS7AI score0.01461EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:4 a.m.6 views

CVE-2019-1010151

zzcms zzmcms 8.3 and earlier is affected by: File Delete to getshell. The impact is: getshell. The component is: /user/ppsave.php...

9.8CVSS7AI score0.02043EPSS
Exploits1References1
Packet Storm News
Packet Storm News
added 2025/05/12 12:0 a.m.8 views

WordPress PDF 2 Post 2.4.0 Shell Upload

WordPress PDF 2 Post plugin versions 2.4.0 and below suffers from a remote shell upload vulnerability via a zip file...

9.9CVSS7AI score0.12193EPSS
Exploits2
NVD
NVD
added 2025/05/09 2:15 p.m.12 views

CVE-2024-11861

EnerSys AMPA 22.09 and prior versions are vulnerable to command injection leading to privileged remote shell access...

9.8CVSS0.01387EPSS
Exploits0References2
NVD
NVD
added 2025/05/09 2:15 p.m.27 views

CVE-2024-12442

EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading to privileged remote shell access...

9.8CVSS0.01078EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/09 1:55 p.m.6 views

CVE-2024-12442 Command injection in EnerSys AMPA versions 24.04 through 24.16, inclusive

EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading to privileged remote shell access...

7.8AI score0.01078EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/09 1:51 p.m.18 views

CVE-2024-11861 Command injection in EnerSys AMPA 22.09 and prior versions

EnerSys AMPA 22.09 and prior versions are vulnerable to command injection leading to privileged remote shell access...

0.01387EPSS
Exploits0References2
CVE
CVE
added 2025/05/09 1:51 p.m.53 views

CVE-2024-11861

The CVE-2024-11861 entry details a command-injection vulnerability in EnerSys AMPA 22.09 and earlier, enabling privileged remote shell access via vulnerable components. Affected software: EnerSys AMPA (versions ≤ 22.09). Root cause: command-injection flaw as described in multiple sources. Impact:...

9.8CVSS7.2AI score0.01387EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/09 12:0 a.m.5 views

PT-2025-20556 · Enersys · Enersys Ampa

Name of the Vulnerable Software and Affected Versions: EnerSys AMPA versions 24.04 through 24.16 Description: The issue allows for command injection, which can lead to privileged remote shell access. Recommendations: For EnerSys AMPA versions 24.04 through 24.16, update to a version that is not...

9.8CVSS7.1AI score0.01078EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/05/09 12:0 a.m.3 views

EnerSys AMPA 安全漏洞

EnerSys AMPA is an industrial-grade battery management system from EnerSys, Inc. designed as an intelligent monitoring platform for power equipment. A security vulnerability exists in EnerSys AMPA version 22.09 and earlier, which stems from a command injection issue that could lead to privileged...

9.8CVSS7.3AI score0.01387EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/05/02 12:0 a.m.9 views

WordPress NewsBlogger Theme 0.2.5.1 Shell Upload

WordPress NewsBlogger Theme versions 0.2.5.1 and below suffer from a remote shell upload vulnerability...

8.8CVSS9.1AI score0.00963EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/05/01 12:0 a.m.12 views

WordPress WP-Advanced-Search 3.3.9.3 Shell Upload

WordPress WP-Advanced-Search plugin versions 3.3.9.3 and below suffer from a remote shell upload vulnerability...

6.6CVSS7.4AI score0.00401EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/04/23 12:0 a.m.9 views

WordPress WP Remote Thumbnail 1.3.2 Shell Upload

WordPress WP Remote Thumbnail plugin versions 1.3.2 and below suffer from a remote shell upload vulnerability...

9.9CVSS7.2AI score0.00432EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/04/21 12:0 a.m.9 views

WordPress I Draw 1.0 Shell Upload

WordPress I Draw plugin version 1.0 suffers from a remote shell upload vulnerability...

9.1CVSS7.2AI score0.00605EPSS
Exploits1
GithubExploit
GithubExploit
added 2025/04/19 6:32 p.m.351 views

Exploit for Missing Authentication for Critical Function in Erlang Erlang\/Otp

CVE-2025-32433 Remote Shell Go-based exploit for CVE-2025-3243...

10CVSS8.7AI score0.97673EPSS
Exploits36
Packet Storm News
Packet Storm News
added 2025/04/15 12:0 a.m.9 views

WordPress SoftClever Limited Sync Posts 1.0 Shell Upload

WordPress SoftClever Limited Sync Posts plugin version 1.0 suffers from a remote shell upload vulnerability...

9.9CVSS7.2AI score0.00581EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/03/31 12:0 a.m.5 views

WordPress SoJ SoundSlides 1.2.2 Shell Upload

WordPress SoJ SoundSlides plugin versions 1.2.2 and below suffer from a remote shell upload vulnerability...

8.8CVSS7.2AI score0.00688EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/03/31 12:0 a.m.6 views

WordPress the Novel Design Store Directory 4.3.0 Shell Upload

WordPress The Novel Design Store Directory plugin versions 4.3.0 and below suffer from a remote shell upload vulnerability...

10CVSS7.2AI score0.01457EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/03/31 12:0 a.m.7 views

WordPress Datasets Manager 1.5 Shell Upload

WordPress Datasets Manager plugin versions 1.5 and below suffer from a remote shell upload vulnerability...

10CVSS7.2AI score0.0135EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/03/31 12:0 a.m.9 views

WordPress Newscrunch Theme 1.8.4.1 Shell Upload

WordPress Newscrunch theme version 1.8.4.1 suffers from a remote shell upload vulnerability...

9.8CVSS7.2AI score0.0186EPSS
Exploits2
Rows per page
Query Builder