Lucene search
K

4 matches found

OSV
OSV
added 2026/04/10 9:16 a.m.4 views

UBUNTU-CVE-2026-33456

Livestatus injection in the notification test mode in Checkmk 2.5.0b4 and 2.4.0p26 allows an authenticated user with access to the notification test page to inject arbitrary Livestatus commands via a crafted service description...

7.6CVSS5.9AI score0.00196EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/10 8:31 a.m.3 views

CVE-2026-33457

Livestatus injection in the prediction graph page in Checkmk 2.5.0b4, 2.4.0p26, and 2.3.0p47 allows an authenticated user to inject arbitrary Livestatus commands via a crafted service name parameter due to insufficient sanitization of the service description value...

5.3CVSS5.9AI score0.00175EPSS
Exploits0References2Affected Software1
Drupal
Drupal
added 2025/12/17 12:0 a.m.13 views

HTTP Client Manager - Less critical - Information disclosure - SA-CONTRIB-2025-126

Http Client Manager introduces a new Guzzle based plugin which allows you to manage HTTP clients using Guzzle Service Descriptions via YAML, JSON or PHP files, in a simple and efficient way. The modules allows administrators to configure HTTP requests as part of Event Condition Action ECA...

7.5CVSS5.5AI score0.00263EPSS
Exploits0References4
w3af
w3af
added 2013/06/10 11:2 p.m.24 views

wsdl_finder

This plugin finds new web service descriptions and other web service related files by appending "?WSDL" to all URLs and checking the response. Plugin type Crawl Options This plugin doesnt have any user configured options. Source For more information about this plugin and the associated tests,...

7.2AI score
Exploits0
Rows per page
Query Builder