Lucene search
K

22 matches found

OSV
OSV
added 2026/07/06 9:13 p.m.3 views

GHSA-798H-HPPH-M24J Linuxfabrik Monitoring Plugins have local privilege escalation using embedded command

Summary When a check plugin places user provided input inside a command which is passed to shellexec, an attacker can abuse this to run arbitrary commands. This is mainly dangerous for plugins which are listed in the sudoers file, because this allows an attacker controlling the nagios user to get...

7.8CVSS6.2AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:12 p.m.14 views

CVE-2026-48800

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the tag text content inside in shortcuts.xml is read by NppXml::valueaNode Parameters.cpp:3658 in the feedUserCmds function and stored in UserCommand.cmd without any validation. When the user clicks the corresponding entry ...

7.8CVSS5.8AI score0.0036EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2026/06/26 8:12 p.m.31 views

CVE-2026-48800 Notepad++: Arbitrary Code Execution via shortcuts.xml UserCommand Injection

Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the tag text content inside in shortcuts.xml is read by NppXml::valueaNode Parameters.cpp:3658 in the feedUserCmds function and stored in UserCommand.cmd without any validation. When the user clicks the corresponding entry ...

7.8CVSS0.0036EPSS
Exploits3References2
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:11 p.m.8 views

CVE-2026-52884

Notepad++ is a free and open-source source code editor. In v8.9.6.1, isInTrustedDirectory does NOT canonicalize the path before checking. It uses a prefix-based check PathIsPrefix or equivalent that matches paths starting with trusted directory strings. A path traversal using ....\ after a truste...

7.8CVSS5.8AI score0.00155EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2026/06/01 12:0 a.m.79 views

📄 Notepad++ 8.9.6 Arbitrary Code Execution

Notepad++ versions 8.9.6 and below proof of concept arbitrary code execution exploit. Exploit Title: Notepad++ 8.9.6 - Arbitrary Code Execution Date: 2026-05-30 Exploit Author: Kavin Jindal Avyukt Security https://www.linkedin.com/in/kavin-jindal/ Vendor Homepage: https://notepad-plus-plus.org...

6.3AI score0.01314EPSS
Exploits5
Exploit DB
Exploit DB
added 2026/05/30 12:0 a.m.118 views

Notepad++ 8.9.6 - Arbitrary Code Execution

Exploit Title: Notepad++ 8.9.6 - Arbitrary Code Execution Date: 2026-05-30 Exploit Author: Kavin Jindal Avyukt Security https://www.linkedin.com/in/kavin-jindal/ Vendor Homepage: https://notepad-plus-plus.org Software Link: https://notepad-plus-plus.org/downloads/v8.9.6/ Version: from config.xml...

7.8CVSS5.8AI score0.01314EPSS
Exploits5
OSV
OSV
added 2026/05/20 5:41 a.m.14 views

MAL-2026-4654 Malicious code in qazaq-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31fa15731b4c683297d550bb3157dff08f2bfa3db01c14952cd35c7c61407d0a The package's default AI provider hardcodes the destination opengateway.gitlawb.com/v1/chat/completions with header api-key: 'not-needed'...

6AI score
Exploits0References1
OSV
OSV
added 2026/04/21 12:41 p.m.2 views

CVE-2026-40520 FreePBX api module Command Injection via GraphQL

FreePBX api module version 17.0.8 and prior contain a command injection vulnerability in the initiateGqlAPIProcess function where GraphQL mutation input fields are passed directly to shellexec without sanitization or escaping. An authenticated user with a valid bearer token can send a GraphQL...

8.6CVSS6.2AI score0.01379EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/01/07 12:0 a.m.4 views

CVE-2025-61489

A command injection vulnerability in the shellexec function of sonirico mcp-shell v0.3.1 allows attackers to execute arbitrary commands via supplying a crafted command string...

7.8AI score0.00848EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/07 12:0 a.m.25 views

CVE-2025-61489

A command injection vulnerability in the shellexec function of sonirico mcp-shell v0.3.1 allows attackers to execute arbitrary commands via supplying a crafted command string...

0.00848EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/11/17 9:7 a.m.6 views

CVE-2025-63680

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw CWE-22 that, in combination with Windows ShellExecuteW fallback extension resolution, leads to arbitrary code execution when a user clicks a crafted entry. By creating a trailing-dot folder and placing a...

8.6CVSS7.8AI score0.00291EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/14 9:30 p.m.6 views

EUVD-2025-197651

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw CWE-22 that, in combination with Windows ShellExecuteW fallback extension resolution, leads to arbitrary code execution when a user clicks a crafted entry. By creating a trailing-dot folder and placing a...

8.6CVSS7.3AI score0.00291EPSS
Exploits1References2
OSV
OSV
added 2025/11/14 7:16 p.m.4 views

CVE-2025-63680

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw CWE-22 that, in combination with Windows ShellExecuteW fallback extension resolution, leads to arbitrary code execution when a user clicks a crafted entry. By creating a trailing-dot folder and placing a...

8.6CVSS6.2AI score0.00291EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/11/14 12:0 a.m.3 views

CVE-2025-63680

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw CWE-22 that, in combination with Windows ShellExecuteW fallback extension resolution, leads to arbitrary code execution when a user clicks a crafted entry. By creating a trailing-dot folder and placing a...

7.5AI score0.00291EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-3691

Malware in sbrugna...

7.2CVSS6.4AI score0.0048EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.9 views

The vulnerability of the shell_exec() function in the software for video surveillance by ZoneMinder, which allows a intruder to execute arbitrary code.

The vulnerability of the shellexec function in the software for video surveillance by ZoneMinder is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

7.2CVSS8.1AI score0.80462EPSS
Exploits11References4Affected Software1
OSV
OSV
added 2022/04/19 9:15 p.m.5 views

CVE-2021-26626

Improper input validation vulnerability in XPLATFORM's execBrowser method can cause execute arbitrary commands. IF the second parameter value of the execBrowser function is ‘default’, the first parameter value could be passed to the ShellExecuteW API. The passed parameter is an arbitrary code to ...

8.8CVSS7.6AI score0.01201EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/19 12:0 a.m.6 views

Tobesoft Xplatform 输入验证错误漏洞

Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS auto-setting, and multi-document interfaces. An input validation error vulnerability exists in the execBrowser method of Tobesoft Xplatform prior to...

8.8CVSS8.4AI score0.01201EPSS
Exploits0References3
exploitpack
exploitpack
added 2018/11/08 12:0 a.m.100 views

Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass)

Microsoft Windows 10 Build 17134 - Local Privilege Escalation UAC Bypass include "stdafx.h" include include "resource.h" void DropResourceconst wchart rsrcName, const wchart filePath HMODULE hMod = GetModuleHandleNULL; HRSRC res = FindResourcehMod, MAKEINTRESOURCEIDRDATA1, rsrcName; DWORD dllSize...

0.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2018/05/08 12:0 a.m.6 views

PT-2018-1311 · Microsoft +3 · Ie +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows VBScript Engine versions prior to the fixed version Description: A remote code execution issue exists in the way the VBScript engine handles objects in memory. This allows remote attackers to execute arbitrary code and affec...

7.6CVSS8.7AI score0.87639EPSS
Exploits9References26
Rows per page
Query Builder