Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

GithubExploit
GithubExploitadded 2026/04/29 9:13 a.m.76 views

Exploit for CVE-2024-8503

vicidial-cve-2024-8503-blind-sqli-p...

9.8CVSS8.8AI score0.79059EPSS
Exploits10
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-22020

Malware in sbrugna...

6.1CVSS6.3AI score0.00395EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-21037

Malicious code in bioql PyPI...

9.3CVSS6.5AI score0.01182EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/07/12 7:24 p.m.22 views

CVE-2025-34099

An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2.13 RC1, within the vicidialsalesviewer.php component when password encryption is enabled a non-default configuration. The application improperly passes the HTTP Basic Authentication password directly ...

9.3CVSS8.1AI score0.01182EPSS
Exploits0References1
NVD
NVDadded 2025/07/10 8:15 p.m.8 views

CVE-2025-34099

An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2.13 RC1, within the vicidialsalesviewer.php component when password encryption is enabled a non-default configuration. The application improperly passes the HTTP Basic Authentication password directly ...

9.3CVSS0.01182EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/07/10 7:10 p.m.11 views

CVE-2025-34099 VICIdial vicidial_sales_viewer.php Unauthenticated Command Injection via Basic Auth Password

An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2.13 RC1, within the vicidialsalesviewer.php component when password encryption is enabled a non-default configuration. The application improperly passes the HTTP Basic Authentication password directly ...

9.3CVSS0.01182EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/07/10 12:0 a.m.1 views

PT-2025-29141 · Vicidial · Vicidial

Name of the Vulnerable Software and Affected Versions: VICIdial versions 2.9 RC1 through 2.13 RC1 Description: An unauthenticated command injection issue exists in the vicidial sales viewer.php component when password encryption is enabled. The application improperly passes the HTTP Basic...

9.3CVSS8.1AI score0.01182EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2025/05/22 6:56 p.m.17 views

CVE-2021-46557

Vicidial 2.14-783a was discovered to contain a cross-site scripting XSS vulnerability via the input tabs...

5.4CVSS6.2AI score0.00553EPSS
Exploits1
Packet Storm
Packet Stormadded 2025/03/12 12:0 a.m.313 views

VICIdial 2.14-917 Remote Command Execution

VICIdial version 2.14-917 proof of concept remote command execution exploit that takes advantage of a flaw originally found in 2024. ============================================================================================================================================= | Title : VICIdial v...

8.8CVSS7.2AI score0.75384EPSS
Exploits7
Positive Technologies
Positive Technologiesadded 2024/07/05 12:0 a.m.4 views

PT-2024-39060

Name of the Vulnerable Software and Affected Versions: VICIdial version 2.14-917a Description: An unauthenticated attacker can leverage a time-based SQL injection vulnerability in VICIdial to enumerate database records. By default, VICIdial stores plaintext credentials within the database. An...

10CVSS9.8AI score0.79059EPSS
Exploits12References42
CNNVD
CNNVDadded 2022/07/05 12:0 a.m.4 views

VICIdial SQL注入漏洞

VICIdial is a software suite from VICIdial, Inc. designed to interact with the Asterisk open source Pbx telephony system as a complete inbound/outbound contact center suite with inbound email support. A SQL injection vulnerability exists in VICIdial versions prior to 2.14b0.5, which stems from a...

9CVSS8.1AI score0.02726EPSS
Exploits1References3
Rows per page
Query Builder