Lucene search
K

12 matches found

Snyk
Snyk
added 2025/10/09 7:42 p.m.4 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF when processing user-supplied URLs. An attacker can cause the server to send unauthorized requests to arbitrary internal or external services by submitting crafted URLs. Workaround This vulnerability can...

8.8CVSS7AI score0.00225EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.5 views

Astra Linux – Vulnerability in setuptools

A vulnerability exists in the packageindex module of pypa/setuptools versions up to 69.1.1, allowing for remote code execution through its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are vulnerable t...

8.8CVSS7.6AI score0.01939EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/10/16 6:29 a.m.4 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/09/12 6:34 p.m.7 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/09/04 11:30 a.m.7 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/09/04 11:16 a.m.5 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/28 7:0 p.m.4 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/19 5:11 a.m.5 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/19 2:17 a.m.4 views

pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

A flaw was found in the packageindex module of pypa/setuptools. Affected versions of this package allow remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to co...

8.8CVSS8.1AI score0.01939EPSS
Exploits0References6
OSV
OSV
added 2024/07/15 1:15 a.m.3 views

UBUNTU-CVE-2024-6345

A vulnerability in the packageindex module of pypa/setuptools versions up to 69.1.1 allows for remote code execution via its download functions. These functions, which are used to download packages from URLs provided by users or retrieved from package index servers, are susceptible to code...

8.8CVSS7.9AI score0.01939EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

MagicISO <= 5.4 (build239) - .cue File Heap Overflow PoC

No description provided by source. !/usr/bin/env ruby Credits to n00b for finding this bug. Magic iso has a stacked based buffer over-flow when We pass an overly-long file name inside the .cue file We are able to control alot of the registers so Command execution is possible,But im still learning...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/05/17 12:0 a.m.14 views

MagicISO 5.4 (build239) - .cue Heap Overflow (PoC)

MagicISO 5.4 build239 - .cue Heap Overflow PoC !/usr/bin/env ruby Credits to n00b for finding this bug. Magic iso has a stacked based buffer over-flow when We pass an overly-long file name inside the .cue file We are able to control alot of the registers so Command execution is possible,But im...

0.4AI score
Exploits0
Rows per page
Query Builder