Lucene search
K

233 matches found

Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.6 views

PT-2026-3248

Name of the Vulnerable Software and Affected Versions TheLibrarian affected versions not specified Description The Librarian software has an internal port scanning issue stemming from the web fetch tool. This tool allows for Server-Side Request Forgery SSRF-style behavior, enabling GET requests t...

7.5CVSS5.7AI score0.00373EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.11 views

PT-2026-3250

Name of the Vulnerable Software and Affected Versions TheLibrarians affected versions not specified Description The web fetch tool within TheLibrarians allows retrieval of the Adminer interface content, potentially enabling unauthorized access to the internal TheLibrarian backend system. This...

7.5CVSS5.7AI score0.00342EPSS
Exploits0References7
Metasploit
Metasploit
added 2026/01/14 6:54 p.m.305 views

HTTP Fetch, Linux Chmod

Fetch and execute an AARCH64 payload from an HTTP server. Runs chmod on the specified file with specified mode. Module Options msf use payload/cmd/linux/http/aarch64/chmod msf payloadchmod show actions ...actions... msf payloadchmod set ACTION msf payloadchmod show options ...show and set...

5.8AI score
Exploits0
Metasploit
Metasploit
added 2026/01/05 6:59 p.m.302 views

HTTP Fetch, Linux Chmod

Fetch and execute an RISC-V 64-bit payload from an HTTP server. Runs chmod on the specified file with specified mode. Module Options msf use payload/cmd/linux/http/riscv64le/chmod msf payloadchmod show actions ...actions... msf payloadchmod set ACTION msf payloadchmod show options ...show and set...

5.8AI score
Exploits0
Metasploit
Metasploit
added 2026/01/05 6:59 p.m.306 views

HTTP Fetch, Linux Execute Command

Fetch and execute an RISC-V 32-bit payload from an HTTP server. Execute an arbitrary command Module Options msf use payload/cmd/linux/http/riscv32le/exec msf payloadexec show actions ...actions... msf payloadexec set ACTION msf payloadexec show options ...show and set options... msf payloadexec r...

5.9AI score
Exploits0
Metasploit
Metasploit
added 2026/01/05 6:59 p.m.270 views

HTTPS Fetch, Linux Command Shell, Bind TCP Inline

Fetch and execute an RISC-V 32-bit payload from an HTTPS server. Listen for a connection and spawn a command shell Module Options msf use payload/cmd/linux/https/riscv32le/shellbindtcp msf payloadshellbindtcp show actions ...actions... msf payloadshellbindtcp set ACTION msf payloadshellbindtcp sh...

5.8AI score
Exploits0
Metasploit
Metasploit
added 2025/12/09 6:55 p.m.366 views

HTTP Fetch, Linux Command Shell, Bind TCP Inline

Fetch and execute an PPC payload from an HTTP server. Listen for a connection and spawn a command shell Module Options msf use payload/cmd/linux/http/ppc/shellbindtcp msf payloadshellbindtcp show actions ...actions... msf payloadshellbindtcp set ACTION msf payloadshellbindtcp show options ...show...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2020-6218

Malware in sbrugna...

9.8CVSS9.4AI score0.0133EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-1000161

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can resul...

5.7CVSS5.8AI score0.01045EPSS
Exploits0References2
NVD
NVD
added 2020/07/01 5:15 p.m.21 views

CVE-2020-14056

Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files and interact with arbitrary third-party services...

9.8CVSS0.0133EPSS
Exploits0References2
Prion
Prion
added 2020/07/01 5:15 p.m.17 views

Server side request forgery (ssrf)

Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files and interact with arbitrary third-party services...

7.5CVSS9AI score0.0133EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/07/01 4:6 p.m.24 views

CVE-2020-14056

Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files and interact with arbitrary third-party services...

9.3AI score0.0133EPSS
Exploits0References2
CVE
CVE
added 2020/07/01 4:6 p.m.41 views

CVE-2020-14056

Monsta FTP 2.10.1 or earlier versions are affected by CVE-2020-14056, a server-side request forgery (SSRF) vulnerability stemming from insufficient restrictions on the web fetch functionality. This allows an attacker to read arbitrary local files and interact with arbitrary third-party services. ...

9.8CVSS9.1AI score0.0133EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder