Lucene search
K

5 matches found

Nuclei
Nuclei
added 17 hours ago48 views

SEH utnserver Pro/ProMAX/INU-100 20.1.22 - File Exposure

A vulnerability was identified in utnserver Pro, utnserver ProMAX, and INU-100 version 20.1.22 and earlier, impacting the file handling functions. This flaw results in authenticated file disclosure, granting unauthorized access to sensitive files and directories. Although authentication is...

8.7CVSS5.9AI score0.03692EPSS
Exploits1References3
Nuclei
Nuclei
added 17 hours ago24 views

Emlog Pro v2.1.14 - Cross-Site Scripting

Cross Site Scripting XSS vulnerability in Emlog Pro v2.1.14 via /admin/store.php. id: CVE-2023-41621 info: name: Emlog Pro v2.1.14 - Cross-Site Scripting author: ritikchaddha severity: medium description: | Cross Site Scripting XSS vulnerability in Emlog Pro v2.1.14 via /admin/store.php. impact: ...

6.1CVSS6.4AI score0.01146EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2022/03/31 4:58 p.m.411 views

Exploit for Code Injection in Vmware Spring_Framework

SaferPoCCVE-2022-22965 A Safer PoC for CVE-2022-22965 Sprin...

9.8CVSS9.2AI score0.99677EPSS
Exploits102
RedHat Linux
RedHat Linux
added 2020/09/17 1:7 p.m.3 views

EAP: field-name is not parsed in accordance to RFC7230

A flaw was discovered in JBoss EAP, where it does not process the header field-name in accordance with RFC7230. Whitespace between the header field-name and colon is processed, resulting in an HTTP response code of 200 instead of a bad request of 400...

5.3CVSS5.9AI score0.0119EPSS
Exploits0References4
OSV
OSV
added 2020/09/16 3:15 p.m.5 views

CVE-2020-1710

The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC72301 as it returns a 200 instead of a 400...

5.3CVSS5.4AI score0.0119EPSS
Exploits0References1
Rows per page
Query Builder