Lucene search
K

4 matches found

Nuclei
Nuclei
added 2026/06/25 5:45 a.m.56 views

Netsweeper <=6.4.3 - Python Code Injection

Netsweeper through 6.4.3 allows unauthenticated remote code execution because webadmin/tools/unixlogin.php with certain Referer headers launches a command line with client-supplied parameters, and allows injection of shell metacharacters. id: CVE-2020-13167 info: name: Netsweeper =6.4.4 to mitiga...

9.8CVSS7.9AI score0.95415EPSS
Exploits2References5
VulnCheck KEV
VulnCheck KEV
added 2023/12/11 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-13167

Netsweeper through 6.4.3 allows unauthenticated remote code execution because webadmin/tools/unixlogin.php with certain Referer headers launches a command line with client-supplied parameters, and allows injection of shell metacharacters...

9.8CVSS7.9AI score0.95415EPSS
Exploits2References1
CNVD
CNVD
added 2020/05/20 12:0 a.m.2 views

Netsweeper Injection Vulnerability

Netsweeper is a Web content filtering solution from Netsweeper Canada. A security vulnerability exists in the /webadmin/tools/unixlogin.php script in Netsweeper versions 6.4.3 and earlier. An attacker could exploit the vulnerability to execute code...

9.8CVSS7AI score0.95415EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2020/05/19 12:0 a.m.23 views

CVE-2020-13167

Netsweeper through 6.4.3 allows unauthenticated remote code execution because webadmin/tools/unixlogin.php with certain Referer headers launches a command line with client-supplied parameters, and allows injection of shell metacharacters. Recent assessments: wvu-r7 at May 21, 2020 5:51am UTC...

9.8CVSS5.3AI score0.95415EPSS
Exploits2References2
Rows per page
Query Builder