vulnscanx_v2

⚡ VulnScanX Advanced Vulnerability Scanning & Penetration...

Exploit for CVE-2025-2294

CVE-2025-2294 kubio-cve-2025-2294active.yaml - в шаблоне реал...

CVE-2024-12878

creationtimestamp| type| source ---|---|--- 2025-02-26 06:25:24+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5470 2026-02-11 12:41:17+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-12878.yaml 2026-02-12...

CVE-2024-25131

CVE-2024-25131 is linked to OpenShift Must Gather Operator Improper Input Validation. The vulnerability arises in the MustGather.managed.openshift.io CRD, where a non-privileged cluster user can create a MustGather object with a crafted file and set the most privileged service account to run the ...

CVE-2024-25131 Openshift-dedicated: must-gather-operator: yaml template injection leads to privilege escalation

A flaw was found in the MustGather.managed.openshift.io Custom Defined Resource CRD of OpenShift Dedicated. A non-privileged user on the cluster can create a MustGather object with a specially crafted file and set the most privileged service account to run the job. This can allow a standard...

CVE-2024-25131 Openshift-dedicated: must-gather-operator: yaml template injection leads to privilege escalation

A flaw was found in the MustGather.managed.openshift.io Custom Defined Resource CRD of OpenShift Dedicated. A non-privileged user on the cluster can create a MustGather object with a specially crafted file and set the most privileged service account to run the job. This can allow a standard...

Arbitrary Code Injection

@backstage/plugin-scaffolder-backend is vulnerable to Arbitrary Code Injection. The vulnerability exists due to sandbox bypass in ScaffolderEntitiesProcessor.js, which allows an attacker with write access to a registered scaffolder template to inject code through the YAML template definition...