Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-9089

Malware in sbrugna...

8.8CVSS8.6AI score0.00604EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-3085

Malware in sbrugna...

10CVSS6.4AI score0.03317EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/22 4:54 a.m.8 views

CVE-2019-19469

In Zmanda Management Console 3.3.9, ZMCAdminAdvanced?form=adminTasks=Apply= allows CSRF, as demonstrated by command injection with shell metacharacters. This may depend on weak default credentials...

8.8CVSS7.5AI score0.00604EPSS
Exploits0References1
NVD
NVD
added 2019/12/01 2:15 p.m.14 views

CVE-2019-19469

In Zmanda Management Console 3.3.9, ZMCAdminAdvanced?form=adminTasks&action=Apply&command= allows CSRF, as demonstrated by command injection with shell metacharacters. This may depend on weak default credentials...

8.8CVSS9AI score0.00604EPSS
Exploits0References1
OSV
OSV
added 2019/12/01 2:15 p.m.1 views

CVE-2019-19469

In Zmanda Management Console 3.3.9, ZMCAdminAdvanced?form=adminTasks&action=Apply&command= allows CSRF, as demonstrated by command injection with shell metacharacters. This may depend on weak default credentials...

8.8CVSS7.3AI score0.00604EPSS
Exploits0References1
Prion
Prion
added 2019/12/01 2:15 p.m.11 views

Command injection

In Zmanda Management Console 3.3.9, ZMCAdminAdvanced?form=adminTasks&action=Apply&command= allows CSRF, as demonstrated by command injection with shell metacharacters. This may depend on weak default credentials...

6.8CVSS9AI score0.00604EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/12/01 1:21 p.m.18 views

CVE-2019-19469

In Zmanda Management Console 3.3.9, ZMCAdminAdvanced?form=adminTasks&action=Apply&command= allows CSRF, as demonstrated by command injection with shell metacharacters. This may depend on weak default credentials...

9.1AI score0.00604EPSS
Exploits0References1
CVE
CVE
added 2019/12/01 1:21 p.m.45 views

CVE-2019-19469

CVE-2019-19469 affects Zmanda Management Console (ZMC) 3.3.9. The vulnerability is a CSRF flaw in ZMC_Admin_Advanced?form=adminTasks&action=Apply&command= that can enable command injection via shell metacharacters, with potential reliance on weak default credentials. Exploitation is demonstrated/...

8.8CVSS8.9AI score0.00604EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/12/01 12:0 a.m.3 views

Zmanda Management Console Cross-Site Request Forgery Vulnerability

Zmanda Management Console ZMC is a management console program for connecting to, and managing, the Zmanda Cloud from Zmanda USA. A cross-site request forgery vulnerability in Zmanda ZMC version 3.3.9 can be exploited by an attacker to execute arbitrary code on a server using the Zmanda Management...

8.8CVSS7.8AI score0.00604EPSS
Exploits0References1
NVD
NVD
added 2009/09/08 6:30 p.m.16 views

CVE-2009-3102

The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager ZRM for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQLBINPATH variable...

10CVSS7.5AI score0.03317EPSS
Exploits0References8
Prion
Prion
added 2009/09/08 6:30 p.m.25 views

Design/Logic Flaw

The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager ZRM for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQLBINPATH variable...

10CVSS8.1AI score0.03317EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2009/09/08 6:0 p.m.23 views

CVE-2009-3102

The doHotCopy subroutine in socket-server.pl in Zmanda Recovery Manager ZRM for MySQL 2.x before 2.1.1 allows remote attackers to execute arbitrary commands via vectors involving a crafted $MYSQLBINPATH variable...

7.5AI score0.03317EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2009/09/07 12:0 a.m.107 views

Zmanda Recovery Manager for MySQL socket-server.pl MYSQL_BINPATH Variable Command Execution

The remote service appears to be Zmanda Recovery Manager ZRM for MySQL's socket-server.pl. ZRM for MySQL offers a backup and recovery solution for MySQL, and the socket-server.pl component typically runs on a MySQL server out of xinetd to support remote operations. The installed version of...

10CVSS5.6AI score0.03317EPSS
Exploits0References3
Rows per page
Query Builder