Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-1979

Malware in sbrugna...

9CVSS8.6AI score0.02224EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34392

Malicious code in bioql PyPI...

9.9CVSS9.4AI score0.01012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.4 views

CVE-2021-38557

raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/hostapd/enablelog.sh wit...

9CVSS7.3AI score0.02224EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.6 views

CVE-2020-10384

An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.6.1. There is a local privilege escalation from the www-data account to the root account...

7.8CVSS7AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2021/08/24 1:15 p.m.20 views

CVE-2021-38557

raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/hostapd/enablelog.sh wit...

8.8CVSS7.2AI score
Exploits0References3
CNVD
CNVD
added 2020/04/15 12:0 a.m.6 views

MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 Privilege Management Error Vulnerability

Mb Connect Line MB CONNECT LINE mymbCONNECT24 is an in-house remote maintenance solution for virtual environments from MB CONNECT LINE Mb Connect Line, Germany. A privilege management error vulnerability exists in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24, which can be exploited by an attacke...

7.8CVSS6.9AI score0.00244EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2013/07/07 12:0 a.m.10 views

Basilic diff.php Arbitrary Command Execution (CVE-2012-3399)

The vulnerability is due to lack of input verification in the affected function A remote attacker can exploit this issue by sending a specially crafted script to the target. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands as the www-data...

7.5CVSS7AI score0.65321EPSS
Exploits3
Rows per page
Query Builder