Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 3 hours ago2 views

CVE-2026-49188

The aicmd utility executes with full root permissions. It pipes socket inputs directly to popen, paving the way for unauthenticated users to execute arbitrary root commands...

8.7CVSS
Exploits0References1
CVE
CVEadded 5 hours ago9 views

CVE-2026-49188

The CVE-2026-49188 entry concerns the ai_cmd utility, which executes with full root permissions. The vulnerability arises because input received over a socket is piped directly to popen(), enabling unauthenticated users to cause arbitrary root commands to run. This is described in multiple source...

8.7CVSS6.1AI score
Exploits0References1
Cvelist
Cvelistadded 5 hours ago3 views

CVE-2026-49188 Elevated Root Command Execution via ai_cmd Sockets

The aicmd utility executes with full root permissions. It pipes socket inputs directly to popen, paving the way for unauthenticated users to execute arbitrary root commands...

8.7CVSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 5 hours ago2 views

CVE-2026-49188

The aicmd utility executes with full root permissions. It pipes socket inputs directly to popen, paving the way for unauthenticated users to execute arbitrary root commands...

8.7CVSS6.1AI score
Exploits0References2
Positive Technologies
Positive Technologiesadded 9 hours ago4 views

PT-2026-46145

The ai cmd utility executes with full root permissions. It pipes socket inputs directly to popen, paving the way for unauthenticated users to execute arbitrary root commands...

8.7CVSS6.1AI score
Exploits0References2
EUVD
EUVDadded 2026/02/05 4:13 p.m.2 views

EUVD-2020-31045

Pinger 1.0 contains a remote code execution vulnerability that allows attackers to inject shell commands through the ping and socket parameters. Attackers can exploit the unsanitized input in ping.php to write arbitrary PHP files and execute system commands by appending shell metacharacters...

9.8CVSS6.6AI score0.15719EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/02/05 12:0 a.m.3 views

pinger 操作系统命令注入漏洞

Pinger is a web monitoring application developed by wcchandler. Version 1.0 of Pinger contains an operating system command injection vulnerability. This vulnerability stems from uncleaned inputs for the ping and socket parameters, which may allow attackers to inject shell commands and execute...

9.8CVSS6AI score0.15719EPSS
Exploits0References3
CNVD
CNVDadded 2017/06/01 12:0 a.m.0 views

Huawei FusionSphere and FusionSphere OpenStack Command Injection Vulnerability (CNVD-2017-09507)

Huawei FusionSphere and FusionSphere OpenStack FSO are both Huawei products. The former is a cloud operating system product developed based on the OpenStack framework, and the latter is FusionSphere's cloud platform software in ICT scenarios. A command injection vulnerability exists in Huawei...

8.8CVSS7.9AI score0.00303EPSS
Exploits0References1
Exploit DB
Exploit DBadded 1988/10/01 12:0 a.m.51 views

BSD 4.2 - 'fingerd' Remote Buffer Overflow

source: https://www.securityfocus.com/bid/2/info fingerd is a remote user information server that implements the protocol defined in RFC742. There exists a buffer overflow in finderd that allows a remote attacker to execute any local binaries. finderd reads input from its socket using the gets...

7.4AI score
Exploits0
Rows per page
Query Builder