Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2022/03/08 12:0 a.m.7 views

CVE-2022-24281

A vulnerability has been identified in SINEC NMS All versions V1.0.3, SINEMA Server V14 All versions. A privileged authenticated attacker could execute arbitrary commands in the local database by sending specially crafted requests to the webserver of the affected application...

7.2CVSS6.9AI score0.00765EPSS
Exploits0References1
Metasploit
Metasploitadded 2009/11/14 1:56 a.m.23 views

osCommerce 2.2 Arbitrary PHP Code Execution

osCommerce is a popular open source E-Commerce application. The admin console contains a file management utility that allows administrators to upload, download, and edit files. This could be abused to allow unauthenticated attackers to execute arbitrary code with the permissions of the webserver...

8AI score
Exploits0
exploitpack
exploitpackadded 2006/01/20 12:0 a.m.10 views

RCBlog 1.0.3 - index.php Directory Traversal

RCBlog 1.0.3 - index.php Directory Traversal source: https://www.securityfocus.com/bid/16342/info RCBlog is prone to a directory-traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability to...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2004/12/02 12:0 a.m.40 views

Blog Torrent preview 0.8 - arbitary file download

Intro ----- Blogtorrent is a collection of PHP scripts which are designed to make it simple to host files for transfer via bittorrent. Whilst it is not normal to report security problems in "preview" releases of software this software was covered prominently upon Slashdot and could be widely used...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2004/07/12 12:0 a.m.21 views

phpBB 2.0.x - viewtopic.php PHP Script Injection

phpBB 2.0.x - viewtopic.php PHP Script Injection source: https://www.securityfocus.com/bid/10701/info The 'viewtopic.php' phpBB script is prone to a remote PHP script injection vulnerability because the application fails to properly sanitize user-supplied URI parameters before using them to...

Exploits0
securityvulns
securityvulnsadded 2003/12/27 12:0 a.m.21 views

Remote Code Execution in Knowledge Builder.

Remote Code Execution in Knowledge Builder. "Knowledge Builder" from www.activecampaign.com allows to execute code. Example: Create the following file on your webserver: ----index.php---- ? system$cmd; ? ----------------- And then type in the following URL:...

1.3AI score
Exploits0
exploitpack
exploitpackadded 2002/03/21 12:0 a.m.24 views

Apache Win32 1.3.x2.0.x - Batch File Remote Command Execution

Apache Win32 1.3.x2.0.x - Batch File Remote Command Execution source: https://www.securityfocus.com/bid/4335/info Special characters such as | may not be filtered by the batch file handler when a web request is made for a batch file. As a result, a remote attacker may be able to execute arbitrary...

7.7AI score
Exploits0
exploitpack
exploitpackadded 2000/05/03 12:0 a.m.12 views

ultrascripts ultraboard 1.6 - Directory Traversal

ultrascripts ultraboard 1.6 - Directory Traversal source: https://www.securityfocus.com/bid/1164/info UltraBoard 1.6 and possibly all 1.x versions is vulnerable to a directory traversal attack that will allow any remote browser to download any file that the webserver has read access to. On Window...

7.4AI score
Exploits0
Rows per page
Query Builder