Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7081 matches found

GithubExploit
GithubExploitadded 2021/12/22 8:2 a.m.17 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Log4PowerShell CVE-2021-44228 Proof of Concept A Proof-Of-C...

10CVSS8.6AI score0.99999EPSS
Exploits347
GithubExploit
GithubExploitadded 2021/12/21 8:8 p.m.950 views

Exploit for Path Traversal in Grafana

Grafana CVE Scan 21-43798 0.1 Scanner for Grafana Path Tr...

7.5CVSS7.8AI score0.88849EPSS
Exploits44
AlpineLinux
AlpineLinuxadded 2021/12/20 11:20 a.m.57 views

CVE-2021-44224

A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint Server Side Request Forgery...

8.2CVSS8.9AI score0.82295EPSS
Exploits0
FreeBSD
FreeBSDadded 2021/12/20 12:0 a.m.129 views

Apache httpd -- Multiple vulnerabilities

The Apache httpd project reports: moderate: Possible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier CVE-2021-44224 A crafted URI sent to httpd configured as a forward proxy ProxyRequests on can cause a crash NULL pointer dereference or, for...

9.8CVSS0.8AI score0.97108EPSS
Exploits4References1
GithubExploit
GithubExploitadded 2021/12/19 2:48 p.m.664 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Log4jCenter Exploiting CVE-2021-44228 in vCenter for remote c...

10CVSS9.7AI score0.99999EPSS
Exploits347
GithubExploit
GithubExploitadded 2021/12/18 12:42 p.m.352 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Self-contained lab environment PoC that runs a reverse-shell w...

10CVSS9.3AI score0.99999EPSS
Exploits347
GithubExploit
GithubExploitadded 2021/12/16 11:13 p.m.377 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

log4shell4shell Log4j - Multitool. Find & fix possible CVE...

10CVSS9.3AI score0.99999EPSS
Exploits347
CNVD
CNVDadded 2021/12/15 12:0 a.m.22 views

Rizin buffer overflow vulnerability

Rizin is a free open source reverse engineering framework from the Rizin organization. It is used to analyze binaries, disassemble code, debug programs, as a forensic tool, as a command-line hex editor that can open disk files that can be scripted, etc. Rizin 0.3.1 and earlier versions have a...

7.8CVSS1.7AI score0.00846EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2021/12/14 9:32 p.m.317 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

POC for CVE-2021-44228 This python script was created while I...

10CVSS9.3AI score0.99999EPSS
Exploits347
GithubExploit
GithubExploitadded 2021/12/14 5:24 a.m.403 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Log4j2-CVE-2021-44228-revshell Usage For reverse...

10CVSS9.3AI score0.99999EPSS
Exploits347
CVE
CVEadded 2021/12/13 7:35 p.m.50 views

CVE-2021-43814

CVE-2021-43814 affects Rizin up to version 0.3.1, with a heap-based out-of-bounds write in parse_die() when reversing AMD64 ELF binaries with DWARF info. This can allow a malicious binary to cause a crash or arbitrary actions and potentially code execution. Upstream remediation is available in 0....

7.8CVSS7.7AI score0.00846EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linuxadded 2021/12/13 3:29 p.m.3 views

golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty

A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity...

5.3CVSS7.2AI score0.0226EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2021/12/13 6:3 a.m.47 views

CVE-2021-43813

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files with the extension...

4.3CVSS1.9AI score0.57991EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2021/12/13 12:0 a.m.64 views

FreeBSD : Grafana -- XSS (4b478274-47a0-11ec-bd24-6c3be5272acd)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 4b478274-47a0-11ec-bd24-6c3be5272acd advisory. - Grafana is an open-source platform for monitoring and observability. In affected versions if an...

6.9CVSS7.7AI score0.84607EPSS
Exploits0References3
NVD
NVDadded 2021/12/10 9:15 p.m.25 views

CVE-2021-43815

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...

4.3CVSS0.01773EPSS
Exploits0References7
OSV
OSVadded 2021/12/10 9:15 p.m.29 views

CVE-2021-43815

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...

4.3CVSS6.5AI score
Exploits0References7
UbuntuCve
UbuntuCveadded 2021/12/10 9:15 p.m.25 views

CVE-2021-43815

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...

4.3CVSS6.7AI score0.01773EPSS
Exploits0References7
Prion
Prionadded 2021/12/10 9:15 p.m.27 views

Directory traversal

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...

3.5CVSS4.7AI score0.01773EPSS
Exploits0References7Affected Software1
OSV
OSVadded 2021/12/10 9:15 p.m.4 views

UBUNTU-CVE-2021-43815

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...

4.3CVSS6.9AI score0.01773EPSS
Exploits0References8
AlpineLinux
AlpineLinuxadded 2021/12/10 8:40 p.m.35 views

CVE-2021-43815

Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 has a directory traversal for arbitrary .csv files. It only affects instances that have the developer testing tool called TestData DB data source enabled and configured. The vulnerabili...

4.3CVSS4.9AI score0.01773EPSS
Exploits0
Rows per page
Query Builder