Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-6679

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00516EPSS
Exploits0References4
NVD
NVD
added 2025/02/10 8:15 p.m.8 views

CVE-2024-57177

A host header injection vulnerability exists in the NPM package of perfood/couch-auth = 0.21.2. By sending a specially crafted host header in the email change confirmation request, it is possible to trigger a SSTI which can be leveraged to run limited commands or leak server-side information...

7.3CVSS0.00306EPSS
Exploits0References2
Huntr
Huntr
added 2023/09/27 9:36 a.m.17 views

SSRF vulnerability in the vrite

Description This vulnerability can be used to leak remote server information, bypass CDN like cloudflare. Also it can be used to the SSRF attack. Proof of Concept Here we can use it to leak the real IP of the https://app.vrite.io. GET /proxy?url=https://your-vps-ip.nip.io/ HTTP/2 Host: app.vrite....

7.5CVSS6.9AI score0.00842EPSS
Exploits1
OSV
OSV
added 2016/01/08 9:59 p.m.7 views

CVE-2016-1501

ownCloud Server before 8.0.9 and 8.1.x before 8.1.4 allow remote authenticated users to obtain sensitive information via unspecified vectors, which reveals the installation path in the resulting exception messages...

4.3CVSS4.2AI score
Exploits0References1
seebug.org
seebug.org
added 2015/09/29 12:0 a.m.19 views

ZeusCart 4 信息泄漏漏洞

No description provided by source. !/usr/bin/env python coding: utf-8 from urlparse import urljoin from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '11111 ' vul ID version = '1' author = 'Disorder' vulDate =...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/07/27 12:0 a.m.31 views

Hawkeye-G 3.0.1.4912 Cross Site Scripting / Information Leakage

Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0725.txt Vendor: ================================ www.hexiscyber.com Product: ================================ Hawkeye-G v3.0.1.4912 Hawkeye G is an active defense...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/02/19 12:0 a.m.99 views

Web Server Crafted Request Vendor/Version Information Disclosure

The web server running on the remote host appears to be hiding its version or name, which is a good thing. However, using a specially crafted request, Nessus was able to discover the information. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11239; scriptversion...

5.5AI score
Exploits0
Rows per page
Query Builder