Lucene search
K

27 matches found

Cvelist
Cvelist
added 2026/06/23 12:13 p.m.40 views

CVE-2026-56315 picklescan - Remote Code Execution via Unblocked Standard Library Modules

picklescan before 1.0.4 fails to block at least seven Python standard library modules including uuid, osxsupport, aixsupport, pyrepl.pager, and imaplib exposing eight functions that provide direct arbitrary command execution. Attackers can craft malicious pickle files importing these unblocked...

9.8CVSS0.00757EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/17 3:5 p.m.16 views

CVE-2025-71323 picklescan - Remote Code Execution via Unblocked ctypes Module

picklescan before 0.0.33 fails to block the ctypes module, allowing attackers to achieve remote code execution by invoking direct syscalls and accessing raw memory. Attackers can craft malicious pickle files using ctypes.WinDLL to load kernel32.dll and execute arbitrary commands, bypassing sandbo...

9.8CVSS0.00757EPSS
Exploits0References2
CVE
CVE
added 2026/06/17 3:5 p.m.22 views

CVE-2025-71323

CVE-2025-71323 affects picklescan prior to 0.0.33, where failure to block the ctypes module enables remote code execution via crafted pickle files that use ctypes.WinDLL to load kernel32.dll and execute arbitrary commands, bypassing sandbox protections and gadget-chain detection. Exploitation sta...

9.8CVSS6.6AI score0.00757EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/23 9:57 p.m.4 views

CVE-2026-41332

OpenClaw before 2026.3.28 contains an environment variable sanitization vulnerability where GITTEMPLATEDIR and AWSCONFIGFILE are not blocked in the host-env blocklist. Attackers can exploit approved exec requests to redirect git or AWS CLI behavior through attacker-controlled configuration files ...

5.8CVSS5.9AI score0.00105EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:7 p.m.3 views

CVE-2026-31868

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.4 and 8.6.30, an attacker can upload a file with a file extension or content type that is not blocked by the default configuration of the Parse Server...

6.3CVSS5.9AI score0.00245EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 5:54 p.m.3 views

CVE-2026-31868

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.4 and 8.6.30, an attacker can upload a file with a file extension or content type that is not blocked by the default configuration of the Parse Server...

6.3CVSS5.8AI score0.00245EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/03/11 5:54 p.m.6 views

CVE-2026-31868 Parse Server has Stored XSS via file upload of HTML-renderable file types

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.4 and 8.6.30, an attacker can upload a file with a file extension or content type that is not blocked by the default configuration of the Parse Server...

6.3CVSS5.8AI score0.00245EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/03/11 12:34 a.m.7 views

Parse Server vulnerable to stored XSS via file upload of HTML-renderable file types

Impact An attacker can upload a file with a file extension or content type that is not blocked by the default configuration of the Parse Server fileUpload.fileExtensions option. The file can contain malicious code, for example JavaScript in an SVG or XHTML file. When the file is accessed via its...

6.3CVSS5.8AI score0.00245EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/03/03 8:5 p.m.3 views

GHSA-G38G-8GR9-H9XP PickleScan has multiple stdlib modules with direct RCE not in blocklist

Summary picklescan v1.0.3 latest does not block at least 7 Python standard library modules that provide direct arbitrary command execution or code evaluation. A malicious pickle file importing these modules is reported as having 0 issues CLEAN scan. This enables remote code execution that bypasse...

9.8CVSS6.7AI score
Exploits0References2
OSV
OSV
added 2026/01/10 1:35 a.m.6 views

CVE-2026-22608 Fickling vulnerable to use of ctypes and pydoc gadget chain to bypass detection

Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, both ctypes and pydoc modules aren't explicitly blocked. Even other existing pickle scanning tools like picklescan do not block pydoc.locate. Chaining these two together can achieve RCE while the scanner still...

9.3CVSS6.7AI score0.00346EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-9511

Malware in sbrugna...

4CVSS3.8AI score0.00698EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-34170

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00378EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/09 12:0 a.m.6 views

Jenkins plugin Dead Man s Snitch 安全漏洞

Jenkins and Jenkins plugin are both Jenkins open source products.Jenkins is an application software. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins plugin is an application software plugin. A security...

5.3CVSS6.2AI score0.00262EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.10 views

CVE-2022-29937

USU Oracle Optimization before 5.17.5 allows authenticated DataCollection users to achieve agent root access because some common OS commands are blocked but for example an OS command for base64 decoding is not blocked. NOTE: this is not an Oracle Corporation product...

9CVSS6.9AI score0.01458EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/12/26 12:0 a.m.7 views

CVE-2022-29852

OX App Suite through 8.2 allows XSS because BMFreehand10 and image/x-freehand are not blocked...

6.2AI score0.00378EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/28 7:15 p.m.7 views

CVE-2022-0249

A vulnerability was discovered in GitLab starting with version 12. GitLab was vulnerable to a blind SSRF attack since requests to shared address space were not blocked...

9.1CVSS7.7AI score0.0112EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2022/03/28 12:0 a.m.10 views

PT-2022-13067 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 12.0 and later Description: A blind SSRF attack was possible due to unblocked requests to shared address space. Recommendations: For GitLab versions 12.0 and later, update to a version that includes a fix for this issue. At th...

9.1CVSS8.9AI score0.0112EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2021/11/10 12:0 a.m.4 views

PT-2021-20331 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: Dolibarr version 13.0.2 Description: The website builder module in Dolibarr allows remote PHP code execution due to an incomplete protection mechanism. Specifically, while system, exec, and shell exec are blocked, backticks are not blocked,...

9.8CVSS8AI score0.03815EPSS
Exploits3References14
CNNVD
CNNVD
added 2021/11/05 12:0 a.m.6 views

Python Utility Bot 安全漏洞

Python Utility Bot is a community bot developed specifically for the Discord community. A security vulnerability exists in Python Utility Bot that stems from a token filter not triggering when an un-blacklisted URL and a trigger filter token are included in the same message in the affected versio...

4.3CVSS5.2AI score0.00739EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/04/22 12:0 a.m.3 views

PT-2021-19425 · Mediawiki +1 · Abusefilter Extension +2

Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.35.2 AbuseFilter extension for MediaWiki versions through 1.35.2 Description: An issue in the AbuseFilter extension for MediaWiki improperly handled account blocks for certain automatically created MediaWiki user...

9.8CVSS6.1AI score0.03832EPSS
Exploits18References74
Rows per page
Query Builder