Lucene search
K

1954 matches found

Metasploit
Metasploit
added 2026/04/02 7:2 p.m.353 views

HTTPS Fetch, Windows Meterpreter Shell, Reverse TCP Inline

Fetch and execute an x86 payload from an HTTPS server. Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. Module Options msf use payload/cmd/windows/https/x86/meterpreterreversetcp msf payloadmeterpreterreversetcp show actions ...actions... msf...

6AI score
Exploits0
Metasploit
Metasploit
added 2026/04/02 7:2 p.m.198 views

HTTP Fetch, Windows Meterpreter Shell, Reverse HTTPS Inline

Fetch and execute an x86 payload from an HTTP server. Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. Module Options msf use payload/cmd/windows/http/x86/meterpreterreversehttps msf payloadmeterpreterreversehttps show actions ...actions... msf...

5.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.6 views

PT-2026-38110

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A use after free issue in Fullscreen on Windows allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Use...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References138
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.5 views

PT-2026-33149

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.101 Description An uninitialized use in the Accessibility component of Google Chrome on Windows allows a remote attacker who has already compromised the renderer process to potentially perform a sandb...

8.3CVSS5.8AI score0.00273EPSS
Exploits0References48
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.13 views

PT-2026-25954

CVE-2026-3856 IBM Db2 Recovery Expert for Linux, UNIX and Windows 5.5 IF 2 could allow an attacker to modify or corrupt data due to an insecure mechanism used for verifying the integ… https://t.co/3y33wLJj0n...

9.1CVSS5.8AI score0.00152EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/10 6:31 p.m.2 views

EUVD-2026-10487

Incorrect Default Permissions, : Execution with Unnecessary Privileges, : Incorrect Permission Assignment for Critical Resource vulnerability in ASSA ABLOY Visionline on Windows allows Configuration/Environment Manipulation.This issue affects Visionline: from 1.0 before 1.33...

5.8CVSS5.8AI score0.00109EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 6:31 p.m.3 views

EUVD-2026-10594

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00353EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/10 5:4 p.m.27 views

CVE-2026-25178 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

...

7CVSS0.00273EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 5:4 p.m.28 views

CVE-2026-23672 Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability

...

7.8CVSS0.00353EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 5:4 p.m.4 views

CVE-2026-23672

Windows Universal Disk Format File System Driver UDFS Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00353EPSS
Exploits0References2Affected Software21
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

Microsoft Windows GDI+ 缓冲区错误漏洞

Microsoft Windows GDI+ is a graphics device interface for the Windows operating system developed by Microsoft Corporation. This software is part of the .NET framework and is responsible for rendering graphical images and displaying information on the screen and printers. Microsoft Windows GDI+ ha...

7.5CVSS6AI score0.01386EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.10 views

PT-2026-24159

SAP GUI for Windows allows DLL files to be loaded from arbitrary directories within the application. An unauthenticated attacker could exploit this vulnerability by persuading a victim to place a malicious DLL within one of these directories. The malicious command is executed in the victim user's...

5CVSS5.9AI score0.00176EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.10 views

Microsoft Windows 资源管理错误漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. There is a resource management vulnerability in Microsoft Windows. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are affected: Windows 11...

7CVSS5.8AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.8 views

Microsoft Windows 缓冲区错误漏洞

Microsoft Windows is an operating system used by personal devices by the American company Microsoft. Microsoft Windows has a buffer error vulnerability. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are affected: Windows Server 2022 Server...

7.8CVSS6AI score0.00353EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/20 4:3 p.m.5 views

CVE-2026-2818

A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers to write files outside the intended extraction directory. This vulnerability appears to be susceptible on Windows OS only...

8.2CVSS5.4AI score0.00272EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.11 views

PT-2026-20540

ChaosPro 2.0 contains a buffer overflow vulnerability in the configuration file path handling that allows attackers to execute arbitrary code by overwriting the Structured Exception Handler. Attackers can craft a malicious configuration file with carefully constructed payload to overwrite memory...

9.8CVSS7.2AI score0.00453EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/02/16 12:0 a.m.4 views

The vulnerability of the Hyper-V hardware virtualization system in the Windows operating system allows a hacker to circumvent existing security restrictions.

The vulnerability of the Hyper-V hardware virtualization technology in the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

8.8CVSS5.8AI score0.00356EPSS
Exploits0References2Affected Software17
RedhatCVE
RedhatCVE
added 2026/02/12 1:4 a.m.12 views

CVE-2026-1763

Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...

4.6CVSS5.4AI score0.00199EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 6:16 p.m.10 views

CVE-2026-21533

Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally...

7.8CVSS0.03846EPSS
Exploits5References4
CVE
CVE
added 2026/02/06 5:19 p.m.18 views

CVE-2026-1769

Xerox CentreWare Web on Windows is affected by a Stored XSS in CentreWare Web versions through 7.0.6. The vulnerability arises from improper neutralization of input during web page generation, allowing malicious scripts to be stored and potentially executed in the context of other users’ sessions...

5.4CVSS5.4AI score0.00146EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder