Lucene search
K

1633 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:38 a.m.6 views

CVE-1999-0204

Sendmail 8.6.9 allows remote attackers to execute root commands, using ident...

10CVSS7.4AI score0.08674EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:38 a.m.11 views

CVE-1999-0565

A Sendmail alias allows input to be piped to a program...

10CVSS6.8AI score0.01904EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:38 a.m.7 views

CVE-1999-0206

MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access...

10CVSS7.6AI score0.01895EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/12/17 4:40 a.m.223 views

Exploit for Code Injection in Orangehrm

OrangeHRM RCE Exploit - CVE-2025-66224 📋 Description This...

9CVSS8.4AI score0.00491EPSS
Exploits1
GithubExploit
GithubExploit
added 2025/12/07 3:52 p.m.209 views

Exploit for OS Command Injection in Clam_Anti-Virus Clamav

Sendmail + ClamAV-Milter Exploit CVE-2007-4560 Python RCE e...

7.6CVSS7.1AI score0.83539EPSS
Exploits12
RedhatCVE
RedhatCVE
added 2025/12/01 1:18 p.m.6 views

CVE-2025-66224

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application contains an input-neutralization flaw in its mail configuration and delivery workflow that allows user-controlled values to flow directly into the system’s sendmail command. Because these...

9CVSS6.9AI score0.00491EPSS
Exploits1References1
CVE
CVE
added 2025/11/29 3:4 a.m.18 views

CVE-2025-66224

OrangeHRM versions 5.0–5.7 contain an input-neutralization flaw in mail configuration and delivery workflow where user-controlled values flow into the sendmail path without sanitization, allowing OS command strings to be constructed and enabling file writes on the server and potential code execut...

9CVSS6.6AI score0.00491EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/11/29 3:4 a.m.6 views

CVE-2025-66224 OrangeHRM is Vulnerable to Code Execution Through Arbitrary File Write from Sendmail Parameter Injection

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application contains an input-neutralization flaw in its mail configuration and delivery workflow that allows user-controlled values to flow directly into the system’s sendmail command. Because these...

9CVSS6.9AI score0.00491EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/11/29 3:4 a.m.8 views

CVE-2025-66224 OrangeHRM is Vulnerable to Code Execution Through Arbitrary File Write from Sendmail Parameter Injection

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application contains an input-neutralization flaw in its mail configuration and delivery workflow that allows user-controlled values to flow directly into the system’s sendmail command. Because these...

9CVSS6.6AI score0.00491EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/11/29 3:4 a.m.9 views

CVE-2025-66224 OrangeHRM is Vulnerable to Code Execution Through Arbitrary File Write from Sendmail Parameter Injection

OrangeHRM is a comprehensive human resource management HRM system. From version 5.0 to 5.7, the application contains an input-neutralization flaw in its mail configuration and delivery workflow that allows user-controlled values to flow directly into the system’s sendmail command. Because these...

9CVSS0.00491EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/31 10:7 p.m.5 views

CVE-2023-7312

Nagios Fusion versions prior to 4.2.0 contain a stored cross-site scripting XSS vulnerability when adding or configuring Email Settings. Unsanitized user input can be stored and later rendered in the administrative UI, causing JavaScript to execute in the browser of any user who views the affecte...

6.2CVSS5.7AI score0.00915EPSS
Exploits0References1
NVD
NVD
added 2025/10/30 10:15 p.m.6 views

CVE-2023-7312

Nagios Fusion versions prior to 4.2.0 contain a stored cross-site scripting XSS vulnerability when adding or configuring Email Settings. Unsanitized user input can be stored and later rendered in the administrative UI, causing JavaScript to execute in the browser of any user who views the affecte...

6.2CVSS0.00915EPSS
Exploits0References3
OSV
OSV
added 2025/10/30 10:15 p.m.3 views

CVE-2023-7312

Nagios Fusion versions prior to 4.2.0 contain a stored cross-site scripting XSS vulnerability when adding or configuring Email Settings. Unsanitized user input can be stored and later rendered in the administrative UI, causing JavaScript to execute in the browser of any user who views the affecte...

4.8CVSS5.8AI score
Exploits0References3
CVE
CVE
added 2025/10/30 9:19 p.m.9 views

CVE-2023-7312

Nagios Fusion is affected by a stored XSS in Email Settings for versions prior to 4.2.0. The vulnerability arises from insufficient input sanitization, allowing unsanitized input to be stored and later rendered in the administrative UI, enabling JavaScript execution in the browsers of users viewi...

6.2CVSS5.3AI score0.00915EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/10/30 9:19 p.m.7 views

CVE-2023-7312 Nagios Fusion < 4.2.0 Email Settings Stored XSS via SMTP/sendmail

Nagios Fusion versions prior to 4.2.0 contain a stored cross-site scripting XSS vulnerability when adding or configuring Email Settings. Unsanitized user input can be stored and later rendered in the administrative UI, causing JavaScript to execute in the browser of any user who views the affecte...

6.2CVSS0.00915EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/10/30 9:19 p.m.2 views

CVE-2023-7312 Nagios Fusion < 4.2.0 Email Settings Stored XSS via SMTP/sendmail

Nagios Fusion versions prior to 4.2.0 contain a stored cross-site scripting XSS vulnerability when adding or configuring Email Settings. Unsanitized user input can be stored and later rendered in the administrative UI, causing JavaScript to execute in the browser of any user who views the affecte...

6.2CVSS5.3AI score0.00915EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-1202

Malware in sbrugna...

10CVSS6.2AI score0.14217EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2000-0347

Malware in sbrugna...

10CVSS6.4AI score0.01546EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-1563

Malware in sbrugna...

10CVSS6.4AI score0.03633EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-0897

Malware in sbrugna...

7.5CVSS6.2AI score0.04411EPSS
Exploits0References6
Rows per page
Query Builder