Lucene search
K

38 matches found

Veracode
Veracode
added 2025/12/13 4:35 a.m.4 views

Server-Side Request Forgery (SSRF)

PowerJob is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to insufficient validation of the targetIp and targetPort parameters in the checkConnectivity function of PingPongUtils, allowing attackers to trigger server-side network requests to arbitrary destinations...

9.8CVSS5.9AI score0.00311EPSS
Exploits1References8Affected Software1
Snyk
Snyk
added 2025/12/11 3:30 p.m.4 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the checkConnectivity function in the Network Request Handler component when processing the targetIp or targetPort arguments. An attacker can access internal resources or perform unauthorized network...

9.8CVSS6.8AI score0.00311EPSS
Exploits1References2
NVD
NVD
added 2025/12/11 3:15 p.m.7 views

CVE-2025-14518

A vulnerability was identified in PowerJob up to 5.1.2. This vulnerability affects the function checkConnectivity of the file src/main/java/tech/powerjob/common/utils/net/PingPongUtils.java of the component Network Request Handler. The manipulation of the argument targetIp/targetPort leads to...

9.8CVSS0.00311EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/12/11 3:2 p.m.33 views

CVE-2025-14518 PowerJob Network Request PingPongUtils.java checkConnectivity server-side request forgery

A vulnerability was identified in PowerJob up to 5.1.2. This vulnerability affects the function checkConnectivity of the file src/main/java/tech/powerjob/common/utils/net/PingPongUtils.java of the component Network Request Handler. The manipulation of the argument targetIp/targetPort leads to...

6.5CVSS0.00311EPSS
Exploits1References6
CVE
CVE
added 2025/12/11 3:2 p.m.18 views

CVE-2025-14518

PowerJob

9.8CVSS6.5AI score0.00311EPSS
Exploits1References6Affected Software1
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.3 views

PowerJob 安全漏洞

PowerJob is an open source distributed computing and job scheduling framework from PowerJob Open Source that allows developers to easily schedule tasks in their applications. A security vulnerability exists in PowerJob 5.1.2 and earlier versions, which originates in the function in the file...

9.8CVSS6.3AI score0.00311EPSS
Exploits1References6
Fedora
Fedora
added 2025/10/09 1:15 a.m.7 views

[SECURITY] Fedora 41 Update: turbo-attack-0.1.0-3.fc41

A turbo traffic generator pentesting tool to generate random traffic with random mac and ip addresses in addition to random sequence numbers to a particular ip and port...

6.5CVSS6.9AI score0.00489EPSS
Exploits1
OSV
OSV
added 2025/06/18 11:15 a.m.1 views

DEBIAN-CVE-2022-50129

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Fix a use-after-free Change the LIO port members inside struct srptport from regular members into pointers. Allocate the LIO port data structures from inside srptmaketport and free these from inside srptmaketport. Keep...

7.8CVSS5.3AI score0.00159EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2025/04/14 12:0 a.m.178 views

📄 RemotePC Remote Code Execution

RemotePC suffers from an unauthenticated remote code execution vulnerability. The release for this on github offers no version information. Exploit Title: RemotePC - Unauthenticated RCE Date: 2025-04-14 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://github.com/akoc95/RemotePC Version: latest...

8.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.555 views

SMB Group Policy Preference Saved Passwords Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Group Policy Preference Saved Passwords Enumeration', 'Description' = %Q This module enumerates files from target domain controllers and...

9CVSS7AI score0.65117EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.214 views

Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service DoS Exploit', 'Description' = %q This module allows remote attackers to cause a denial ...

7.5CVSS7AI score0.21478EPSS
Exploits6
GithubExploit
GithubExploit
added 2024/08/08 2:40 a.m.218 views

Exploit for Incorrect Authorization in Apache Ofbiz

CVE-2024-38856 For Ethical Usage only, Any harmful or malicio...

9.8CVSS10AI score0.99427EPSS
Exploits10
GithubExploit
GithubExploit
added 2024/05/31 8:11 p.m.583 views

Exploit for Improper Access Control in Apache Hugegraph

CVE-2024-27348 For Ethical Usages only, Any harmful or malic...

9.8CVSS9.8AI score0.9921EPSS
Exploits11
Exploit DB
Exploit DB
added 2024/03/14 12:0 a.m.433 views

Viessmann Vitogate 300 2.1.3.0 - Remote Code Execution (RCE)

Exploit Title: Viessmann Vitogate 300 = 2.1.3.0 - Remote Code Execution RCE - Shodan Dork: http.title:'Vitogate 300' - Exploit Author: ByteHunter - Email: [email protected] - Version: versions up to 2.1.3.0 - Tested on: 2.1.1.0 - CVE : CVE-2023-5702 & CVE-2023-5222 import argparse import...

9.8CVSS6.9AI score0.74697EPSS
Exploits4
GithubExploit
GithubExploit
added 2023/12/07 3:45 a.m.452 views

Exploit for Code Injection in Realtimelogic Fuguhub

Description This script is a Proof of Concept PoC exploit I...

8.8CVSS8.7AI score0.53239EPSS
Exploits9
0day.today
0day.today
added 2022/02/23 12:0 a.m.266 views

WebHMI 4.1.1 Remote Code Execution Exploit

Exploit Title: WebHMI 4.1.1 - Remote Code Execution RCE Authenticated Exploit Author: Antonio Cuomo arkantolo Vendor Homepage: https://webhmi.com.ua/en/ Version: WebHMI 4.1.1.7662 Tested on: WebHMI-4.1.1.7662 !/usr/bin/python import sys import re import argparse import requests import time import...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/02/24 12:0 a.m.2 views

VMware vCenter Server Remote Code Execution Vulnerability

VMware vCenterServer provides a scalable, extensible platform for centrally managing VMware vSphere environments with optimized resource allocation and plug-in extensions. The VMware vCenter Server remote code execution vulnerability can be exploited by an attacker to send a malicious construct...

10CVSS8.4AI score0.9957EPSS
Exploits47References1
Exploit DB
Exploit DB
added 2021/01/20 12:0 a.m.130 views

ChurchRota 2.6.4 - RCE (Authenticated)

Exploit Title: ChurchRota 2.6.4 - RCE Authenticated Date: 1/19/2021 Exploit Author: Rob McCarthy @slixperi Vendor Homepage: https://github.com/Little-Ben/ChurchRota Software Link: https://github.com/Little-Ben/ChurchRota Version: 2.6.4 Tested on: Ubuntu import requests from pwn import listen...

7.4AI score
Exploits0
0day.today
0day.today
added 2017/05/09 12:0 a.m.40 views

Oracle GoldenGate 12.1.2.0.0 - Unauthenticated Remote Code Execution Exploit

Exploit for multiple platform in category remote exploits !/usr/bin/env python Sources: https://silentsignal.hu/docs/S2OracleGoldenGateGOLDENSHOWER.py https://blog.silentsignal.eu/2017/05/08/fools-of-golden-gate/ GOLDENSHOWER - Oracle GoldenGate unauthenticated RCE by Silent Signal Tested with:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2017/05/09 12:0 a.m.20 views

Oracle GoldenGate 12.1.2.0.0 - Remote Code Execution

Oracle GoldenGate 12.1.2.0.0 - Remote Code Execution !/usr/bin/env python Sources: https://silentsignal.hu/docs/S2OracleGoldenGateGOLDENSHOWER.py https://blog.silentsignal.eu/2017/05/08/fools-of-golden-gate/ GOLDENSHOWER - Oracle GoldenGate unauthenticated RCE by Silent Signal Tested with: Versio...

8.1AI score
Exploits0
Rows per page
Query Builder