Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2021/04/29 12:0 a.m.1 views

GNU Wget 输入验证错误漏洞

GNU Wget is a set of free software developed by the GNU Project developed by the Gnu Project for downloading over the Internet, which supports downloading over the three most common TCP/IP protocols: HTTP, HTTPS, and FTP. An input validation error vulnerability exists in GNU Wget version 1.21.1 a...

6.1CVSS5.6AI score0.00154EPSS
Exploits0References4
The Hacker News
The Hacker Newsadded 2021/03/16 10:32 a.m.595 views

New Mirai Variant and ZHtrap Botnet Malware Emerge in the Wild

Cybersecurity researchers on Monday disclosed a new wave of ongoing attacks exploiting multiple vulnerabilities to deploy new Mirai variants on internet connected devices. "Upon successful exploitation, the attackers try to download a malicious shell script, which contains further infection...

10CVSS0.5AI score0.94235EPSS
Exploits18
RedHat Linux
RedHat Linuxadded 2019/10/23 8:21 a.m.1 views

wget: do_conversion() heap-based buffer overflow vulnerability

A buffer overflow flaw was found in the GNU Wget in version 1.20.1 and earlier when processing Internationalized Resource Identifiers. This flaw allows an attacker to execute arbitrary code or cause a denial of service...

9.8CVSS7.9AI score0.01517EPSS
Exploits0References4
CNVD
CNVDadded 2018/06/28 12:0 a.m.2 views

Busybox Code Execution Vulnerability

BusyBox is a set of applications containing several linux commands and tools maintained by Ukrainian software developer Denis Vlasenko. A security vulnerability exists in the 'busybox wget' mini-application in Busybox, which stems from the program's failure to validate SSL certificates. An attack...

8.1CVSS6.9AI score0.00409EPSS
Exploits0References1
Saint
Saintadded 2013/07/03 12:0 a.m.28 views

SAP NetWeaver SOAP RFC SXPG_COMMAND_EXECUTE Command Execution

Added: 07/03/2013 BID: 55084 OSVDB: 93536 Background SAP NetWeaver is a technology platform for building and integrating SAP business applications. Remote Function Call RFC is the standard SAP interface for communication between SAP systems. Transaction SM69 is used to create and maintain externa...

8.2AI score
Exploits0
Saint
Saintadded 2013/07/03 12:0 a.m.24 views

SAP NetWeaver SOAP RFC SXPG_COMMAND_EXECUTE Command Execution

Added: 07/03/2013 BID: 55084 OSVDB: 93536 Background SAP NetWeaver is a technology platform for building and integrating SAP business applications. Remote Function Call RFC is the standard SAP interface for communication between SAP systems. Transaction SM69 is used to create and maintain externa...

0.8AI score
Exploits0
exploitpack
exploitpackadded 2004/05/17 12:0 a.m.10 views

WGet 1.x - Insecure File Creation Race Condition

WGet 1.x - Insecure File Creation Race Condition source: https://www.securityfocus.com/bid/10361/info The 'wget' utility has been reported prone to a race-condition vulnerability. The issue exists because wget doesn't lock files that it creates and writes to during file downloads. A local attacke...

7.4AI score
Exploits0
Rows per page
Query Builder