Lucene search
K

16822 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.1 views

Qualitia Active! Mail Web Interface Detection

Binary data qualitiaactivemailwebdetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6054

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebUI in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension...

8.8CVSS8.1AI score0.01433EPSS
Exploits0References2
NVD
NVD
added 2025/08/20 5:15 p.m.6 views

CVE-2025-8415

A vulnerability was found in the Cryostat HTTP API. Cryostat's HTTP API binds to all network interfaces, allowing possible external visibility and access to the API port if Network Policies are disabled, allowing an unauthenticated, malicious attacker to jeopardize the environment...

5.9CVSS0.00296EPSS
Exploits0References5
NVD
NVD
added 2025/08/20 5:15 p.m.4 views

CVE-2025-20269

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, low-privileged, remote attacker to retrieve arbitrary files from the underlying file system on an affected device. This vulnerabili...

6.5CVSS0.00386EPSS
Exploits0References4
CVE
CVE
added 2025/08/20 4:26 p.m.23 views

CVE-2025-20269

The CVE-2025-20269 issue affects Cisco EPNM and Cisco Prime Infrastructure web-based management interfaces. Root cause: insufficient input validation for specific HTTP requests, enabling an authenticated, low-privileged, remote attacker to retrieve arbitrary files from the device’s file system. I...

6.5CVSS6.8AI score0.00386EPSS
Exploits0References4Affected Software2
NVD
NVD
added 2025/08/20 4:15 p.m.9 views

CVE-2012-10061

Sockso Music Host Server versions = 1.5 are vulnerable to a path traversal flaw that allows unauthenticated remote attackers to read arbitrary files from the server’s filesystem. The vulnerability exists in the HTTP interface on port 4444, where the endpoint /file/ fails to properly sanitize...

8.7CVSS0.01165EPSS
Exploits0References6
NVD
NVD
added 2025/08/20 4:15 p.m.7 views

CVE-2010-20059

FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The execraw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...

9.3CVSS0.00953EPSS
Exploits0References8
Cisco
Cisco
added 2025/08/20 4:0 p.m.7 views

Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Sensitive Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, low-privileged, remote attacker to retrieve arbitrary files from the underlying file system on an affected device. This vulnerabili...

6.5CVSS7.2AI score0.00386EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 3:39 p.m.18 views

CVE-2012-10061

Sockso Music Host Server

8.7CVSS6.7AI score0.01165EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/08/20 3:35 p.m.3 views

CVE-2010-20059

FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The execraw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...

9.3CVSS5.8AI score0.00953EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/08/20 3:35 p.m.11 views

CVE-2010-20059 FreeNAS < 0.7.2 rev 5543 exec_raw.php Arbitrary Command Execution

FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The execraw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...

9.3CVSS0.00953EPSS
Exploits0References8
CVE
CVE
added 2025/08/20 3:35 p.m.21 views

CVE-2010-20059

CVE-2010-20059 affects FreeNAS 0.7.2 prior to revision 5543. The vulnerability arises in the web interface’s exec_raw.php where an unauthenticated cmd parameter is passed directly to the shell without sanitization, enabling remote command execution. Impact is substantial: arbitrary commands execu...

9.3CVSS6.6AI score0.00953EPSS
Exploits0References8
NVD
NVD
added 2025/08/20 8:15 a.m.9 views

CVE-2025-9225

Stored cross-site scripting XSS in the web interface of MiR software versions prior to 3.0.0 on MiR Robots and MiR Fleet allows execution of arbitrary JavaScript code in a victim’s browser...

5.5CVSS0.0024EPSS
Exploits0References2
CVE
CVE
added 2025/08/20 7:26 a.m.14 views

CVE-2025-9225

CVE-2025-9225 affects MiR software prior to 3.0.0 in MiR Robots and MiR Fleet. The issue is a stored cross-site scripting (XSS) in the web interface, enabling execution of arbitrary JavaScript in a victim’s browser. Root cause details are not elaborated beyond the XSS attribution in multiple sour...

5.5CVSS5.7AI score0.0024EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/20 7:26 a.m.7 views

CVE-2025-9225 Cross-site scripting (XSS) in MiR robots and MiR fleet

Stored cross-site scripting XSS in the web interface of MiR software versions prior to 3.0.0 on MiR Robots and MiR Fleet allows execution of arbitrary JavaScript code in a victim’s browser...

5.5CVSS0.0024EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 7:26 a.m.2 views

CVE-2025-9225 Cross-site scripting (XSS) in MiR robots and MiR fleet

Stored cross-site scripting XSS in the web interface of MiR software versions prior to 3.0.0 on MiR Robots and MiR Fleet allows execution of arbitrary JavaScript code in a victim’s browser...

5.5CVSS6.1AI score0.0024EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.4 views

PT-2025-33906 · Mir · Mir

Name of the Vulnerable Software and Affected Versions: MiR software versions prior to 3.0.0 Description: Stored cross-site scripting in the web interface allows execution of arbitrary JavaScript code in a victim’s browser. Recommendations: Update MiR software to version 3.0.0 or later...

5.5CVSS6.2AI score0.0024EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.3 views

iXsystems FreeNAS 安全漏洞

Ixsystems iXsystems FreeNAS is an open source storage operating system from Ixsystems Inc. in the United States. A security vulnerability exists in iXsystems FreeNAS version 0.7.2, which originates from a web interface that contains an unauthenticated command execution backdoor that could lead to...

9.3CVSS7AI score0.00953EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.1 views

Sockso Music Host Server 安全漏洞

Sockso Music Host Server is a music streaming media player from the individual developer Rhodri Pugh. A security vulnerability exists in Sockso Music Host Server version 1.5 and earlier, which stems from a path traversal vulnerability in the HTTP interface that could lead to reading arbitrary fil...

8.7CVSS6.6AI score0.01165EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.6 views

PT-2025-34116 · Cisco · Cisco Evolved Programmable Network Manager +1

Name of the Vulnerable Software and Affected Versions: Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure affected versions not specified Description: A vulnerability exists in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and...

6.5CVSS6.2AI score0.00386EPSS
Exploits0References7
Rows per page
Query Builder