Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded last week8 views

CVE-2026-45750

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the GET /ssh/filemanager/ssh/resolvePath endpoint in the Termix File Manager component unsafely processes the path parameter and embeds it into a shell command...

9CVSS5.6AI score0.0004EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/01/15 3:52 p.m.27 views

CVE-2021-47753 phpKF CMS 3.00 Beta y6 - Remote Code Execution (RCE) (Unauthenticated)

phpKF CMS 3.00 Beta y6 contains an unauthenticated file upload vulnerability that allows remote attackers to execute arbitrary code by bypassing file extension checks. Attackers can upload a PHP file disguised as a PNG, rename it, and execute system commands through a crafted web shell parameter...

9.8CVSS0.0034EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/01/15 12:0 a.m.5 views

PT-2026-3030

Name of the Vulnerable Software and Affected Versions phpKF CMS version 3.00 Beta y6 Description The software contains an unauthenticated file upload issue that enables remote attackers to execute arbitrary code. This is achieved by bypassing file extension checks, allowing attackers to upload a...

9.8CVSS5.9AI score0.0034EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2006-4236

Malware in sbrugna...

3.6CVSS6.2AI score0.00441EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-27771

Malicious code in bioql PyPI...

9.4CVSS6.2AI score0.0006EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/09/15 12:0 a.m.3 views

mcp-kubernetes-server 安全漏洞

mcp-kubernetes-server is a Model Context Protocol server for Pengfei Ni Personal Developer. A security vulnerability exists in mcp-kubernetes-server version 0.1.11 and earlier, which stems from the use of the shell=True parameter and could lead to an OS command injection attack...

9.8CVSS7AI score0.00054EPSS
Exploits0References3
OSV
OSVadded 2016/04/12 5:59 p.m.1 views

CVE-2016-3654

The device management command line interface CLI in Palo Alto Networks PAN-OS before 5.0.18, 5.1.x before 5.1.11, 6.0.x before 6.0.13, 6.1.x before 6.1.10, and 7.0.x before 7.0.5H2 allows remote authenticated administrators to execute arbitrary OS commands via an SSH command parameter...

7.2CVSS6AI score0.00518EPSS
Exploits0References1
seebug.org
seebug.orgadded 2006/12/16 12:0 a.m.27 views

Enemies of Carlotta Shell参数命令执行漏洞

Enemies of Carlotta是一款简单的邮件列表管理器。 Enemies of Carlotta在处理用户参数时存在漏洞,攻击者可能利用此漏洞在用户机器上执行任意命令。 在被用作其他应用程序的shell参数之前,Enemies of Carlotta没有正确地过滤SMTP级的邮件地址,允许远程攻击者在邮件地址中嵌入shell元字符导致执行任意命令。 Lars Wirzenius Enemies of Carlotta 1.2.3 Debian已经为此发布了一个安全公告(DSA-1236-1)以及相应补丁: DSA-1236-1:New enemies-of-carlotta...

7.1AI score
Exploits0
NVD
NVDadded 2006/09/19 6:7 p.m.19 views

CVE-2006-4246

Usermin before 1.220 20060629 allows remote attackers to read arbitrary files, possibly related to chfn/save.cgi not properly handling an empty shell parameter, which results in changing root's shell instead of the shell of a specified user...

3.6CVSS6.7AI score0.00441EPSS
Exploits0References9
Rows per page
Query Builder