Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

49 matches found

Prion
Prionโ€ขadded 2022/09/28 2:15 p.m.โ€ข14 views

Input validation

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function...

5.8CVSS7.2AI score0.00679EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentโ€ขadded 2022/09/28 1:45 p.m.โ€ข7 views

CVE-2022-22525 Command injection in restore function of Carlo Gavazzi UWP3.0 allows for command injection

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 an remote attacker with admin rights could execute arbitrary commands due to missing input sanitization in the backup restore function...

7.2CVSS7.3AI score0.00679EPSS
Exploits0References1
Positive Technologies
Positive Technologiesโ€ขadded 2020/12/11 12:0 a.m.โ€ข2 views

PT-2020-13067 ยท Silver Peak ยท Orchestratorย +1

Name of the Vulnerable Software and Affected Versions: Silver Peak Unity ECOSTM ECOS appliance software versions prior to 8.1.9.15, 8.3.0.8, 8.3.1.2, 8.3.2.0, 9.0.2.0, and 9.1.0.0 Description: The configuration backup/restore function in the software directly incorporates the user-controlled conf...

8.5CVSS6.8AI score0.00373EPSS
Exploits0References16
Veracode
Veracodeโ€ขadded 2018/08/29 4:17 a.m.โ€ข19 views

SQL Injection

phpMyFAQ/phpMyFAQ is vulnerable to SQL Injections. The library does not properly escape parameters in the SQL query executed by the restore function, allowing malicious users to inject and execute arbitrary SQL queries...

7.2CVSS7.5AI score0.00374EPSS
Exploits0References3Affected Software2
Prion
Prionโ€ขadded 2018/08/28 5:29 p.m.โ€ข19 views

Sql injection

SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to execute arbitrary SQL commands via vectors involving the restore function...

6.5CVSS8.5AI score0.00374EPSS
Exploits0References2Affected Software1
NVD
NVDโ€ขadded 2018/05/31 3:29 p.m.โ€ข12 views

CVE-2018-11220

Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution via the system restore function...

9CVSS9AI score0.35071EPSS
Exploits6References1
myhack58
myhack58โ€ขadded 2010/10/10 12:0 a.m.โ€ข8 views

Resistant product image management system Access version of Cookie spoofing vulnerability-vulnerability warning-the black bar safety net

About a year ago I discovered the resistance to the product image management system Access version of a Cookie spoofing vulnerability: any user can modify the Cookie to get administrator privileges. This year 6 month, I give resistance to product technology sent a message to inform this...

0.3AI score
Exploits0
CVE
CVEโ€ขadded 2002/03/09 5:0 a.m.โ€ข50 views

CVE-1999-1122

CVE-1999-1122 affects SunOS 4.0.3 and earlier, via a vulnerability in the restore component that enables local privilege escalation for local users. The connected PT-1989-1000 entry confirms the affected SunOS versions and notes that, at present, there is no information about a fix in newer versi...

4.6CVSS7.3AI score0.00298EPSS
Exploits0References4Affected Software1
NVD
NVDโ€ขadded 1989/07/26 4:0 a.m.โ€ข8 views

CVE-1999-1122

Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges...

4.6CVSS0.00298EPSS
Exploits0References4
Rows per page
Query Builder