Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

358 matches found

OSV
OSVadded 2020/07/28 5:15 p.m.2 views

CVE-2020-15427

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxdiskusage.php. When parsing the folderName parameter, the process...

9.8CVSS7.7AI score
Exploits0References1
OSV
OSVadded 2020/07/28 5:15 p.m.1 views

CVE-2020-15433

This vulnerability allows remote attackers to execute arbitrary code on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxphppecl.php. When parsing the phpversion parameter, the process...

9.8CVSS7.7AI score0.08083EPSS
Exploits0References1
The Hacker News
The Hacker Newsadded 2020/07/08 7:43 a.m.2 views

Citrix Issues Critical Patches for 11 New Flaws Affecting Multiple Products

Citrix yesterday issued new security patches for as many as 11 security flaws that affect its Citrix Application Delivery Controller ADC, Gateway, and SD-WAN WAN Optimization edition WANOP networking products. Successful exploitation of these critical flaws could let unauthenticated attackers...

6.3AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2020/03/13 7:15 p.m.1 views

CVE-2019-13171

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by one or more stack-based buffer overflow vulnerabilities in the Google Cloud Print implementation that would allow an unauthenticated attacker to execute arbitrary code on the device. This was caused by an insecure handlin...

10CVSS6.6AI score0.02813EPSS
Exploits0References5
OSV
OSVadded 2020/03/13 12:42 p.m.8 views

SUSE-SU-2020:0684-1 Security update for salt

This update for salt fixes the following issues: - Avoid possible user escalation upgrading salt-master bsc1157465 CVE-2019-18897 - Fix unit tests failures in testbatchasync tests - Batch Async: Handle exceptions, properly unregister and close instances after running async batching to avoid CPU...

9.8CVSS9.2AI score0.15106EPSS
Exploits0References12
Positive Technologies
Positive Technologiesadded 2020/03/12 12:0 a.m.3 views

PT-2020-6515 · D Link · D-Link Dap-2020

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2020 version 1.01rc001 Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 routers. Authentication is not required to exploit this issue. The specific fla...

8.8CVSS8.8AI score0.00794EPSS
Exploits0References6
VulnCheck KEV
VulnCheck KEVadded 2020/01/16 12:0 a.m.4 views

VulnCheck KEV: CVE-2019-19781

Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an unspecified vulnerability that could allow an unauthenticated attacker to perform code execution...

9.8CVSS7.5AI score0.99999EPSS
Exploits48References1
OSV
OSVadded 2019/12/19 1:15 a.m.2 views

CVE-2019-7482

Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier...

9.8CVSS7.8AI score0.08817EPSS
Exploits0References1
SonicWall
SonicWalladded 2019/12/17 9:0 p.m.7 views

SonicWall SMA100 Pre-authentication stack buffer overflow

Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier. CVE: CVE-2019-7482 Last updated: March 6, 2020, 4:42 a.m...

9.8CVSS8.3AI score0.08817EPSS
Exploits0
OSV
OSVadded 2019/12/12 2:15 p.m.1 views

CVE-2019-16246

Intesync Solismed 3.3sp1 allows Local File Inclusion LFI, a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution...

9.8CVSS7.3AI score0.03332EPSS
Exploits1References3
NVD
NVDadded 2019/12/12 2:15 p.m.8 views

CVE-2019-16246

Intesync Solismed 3.3sp1 allows Local File Inclusion LFI, a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution...

9.8CVSS9.7AI score0.03332EPSS
Exploits1References3
Prion
Prionadded 2019/12/12 2:15 p.m.10 views

Design/Logic Flaw

Intesync Solismed 3.3sp1 allows Local File Inclusion LFI, a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution...

7.5CVSS9.7AI score0.03332EPSS
Exploits2References3Affected Software1
CVE
CVEadded 2019/12/12 1:43 p.m.39 views

CVE-2019-16246

CVE-2019-16246 affects Intesync Solismed 3.3sp1 and is described in Red Hat as a Local File Inclusion (LFI) that leads to unauthenticated code execution. CNVD entries also document a Solismed file inclusion vulnerability. The connected sources confirm LFI as the vulnerability class and unauthenti...

9.8CVSS9.6AI score0.03332EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2019/12/12 1:43 p.m.18 views

CVE-2019-16246

Intesync Solismed 3.3sp1 allows Local File Inclusion LFI, a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution...

9.7AI score0.03332EPSS
Exploits1References3
NVD
NVDadded 2019/11/27 9:15 a.m.17 views

CVE-2019-14867

A flaw was found in IPA, all 4.6.x versions before 4.6.7, all 4.7.x versions before 4.7.4 and all 4.8.x versions before 4.8.3, in the way the internal function berscanf was used in some components of the IPA server, which parsed kerberos key data. An unauthenticated attacker who could trigger...

8.8CVSS8.7AI score0.06329EPSS
Exploits0References8
OSV
OSVadded 2019/10/09 10:15 p.m.1 views

CVE-2019-17415

A Structured Exception Handler SEH based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008 allows remote unauthenticated attackers to execute arbitrary code via the HTTP DELETE method, a similar issue to CVE-2019-16724 and CVE-2010-2331...

9.8CVSS6.4AI score0.04383EPSS
Exploits5References1
CVE
CVEadded 2019/08/01 4:40 p.m.56 views

CVE-2016-10824

CVE-2016-10824 affects cPanel prior to 55.9999.141. The vulnerability enables unauthenticated arbitrary code execution via DNS NS entry poisoning. Public details in the provided connected sources are limited to the affected version and impact; no root-cause specifics or remediation steps are desc...

9.8CVSS9.7AI score0.02502EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2019/08/01 3:15 p.m.2 views

CVE-2016-10858

cPanel before 11.54.0.0 allows unauthenticated arbitrary code execution via DNS NS entry poisoning SEC-64...

9.8CVSS6.2AI score
Exploits0References2
NVD
NVDadded 2019/08/01 3:15 p.m.17 views

CVE-2016-10855

cPanel before 11.54.0.4 allows unauthenticated arbitrary code execution via cpsrvd SEC-91...

10CVSS9.8AI score0.02576EPSS
Exploits0References2
Prion
Prionadded 2019/08/01 3:15 p.m.16 views

Code injection

cPanel before 11.54.0.0 allows unauthenticated arbitrary code execution via DNS NS entry poisoning SEC-64...

9.3CVSS8.2AI score0.02502EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder