Lucene search
K
PacketstormMost viewed

50738 matches found

Packet Storm
Packet Storm
added 2022/08/03 12:0 a.m.418 views

IObit Malware Fighter 9.2 Tampering / Privilege Escalation

Credits: Yehia Elghaly aka Mrvar0x + Website: https://mrvar0x.com/ + Source: "https://mrvar0x.com/2022/08/02/multiple-endpoints-security-tampering-exploit/" Vendor: ============= www.iobit.com Product: =========== IObit Malware Fighter 9.2 IObit Malware Fighter is an advanced malware & spyware...

0.9AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/11 12:0 a.m.418 views

Cypress Solutions CTM-200 2.7.1 Root Remote OS Command Injection

Cypress Solutions CTM-200 2.7.1 Root Remote OS Command Injection Vendor: Cypress Solutions Inc. Product web page: https://www.cypress.bc.ca Affected version: 2.7.1.5659 2.0.5.3356-184 Summary: CTM-200 is the industrial cellular wireless gateway for fixed and mobile applications. The CTM-200 is a...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2021/03/30 12:0 a.m.418 views

Openlitespeed 1.7.9 Cross Site Scripting

Exploit Title: Openlitespeed 1.7.9 - 'Notes' Stored Cross-Site Scripting Date: 3/30/2021 Exploit Author: cmOs Vendor Homepage: https://openlitespeed.org/ Software Link: https://openlitespeed.org/kb/install-from-binary/ Version: 1.7.9 Tested on Ubuntu 20.04 Step 1: Log in to the dashboard using th...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/10/05 12:0 a.m.418 views

ParantezTeknoloji Library Software 16.0519000 Open Redirection

Exploit Title : ParantezTeknoloji Library Software 16.0519000 Open Redirection Vulnerability Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 04/10/2019 Vendor Homepage : parantezteknoloji.com.tr Software Affected Versions and Download Links : Koha 3.2000000...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2025/12/23 12:0 a.m.417 views

📄 Crafty Controller 4.6.1 Remote Code Execution / Server-Side Template Injection

Crafty Controller version 4.6.1 allows authenticated remote attackers to execute arbitrary system commands on the target server through server-side template injection the webhook configuration feature...

9.9CVSS7.8AI score0.05995EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/11/22 12:0 a.m.417 views

ProjectSend R1605 Unauthenticated Remote Code Execution

class MetasploitModule 'ProjectSend r1295 - r1605 Unauthenticated Remote Code Execution', 'Description' = %q This module exploits an improper authorization vulnerability in ProjectSend versions r1295 through r1605. The vulnerability allows an unauthenticated attacker to obtain remote code executi...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/09/19 12:0 a.m.417 views

htmly 2.9.9 Cross Site Scripting

Exploit Title: Stored XSS in "Edit Profile" - htmlyv2.9.9 Date: 9/2024 Exploit Author: Andrey Stoykov Version: 2.9.9 Tested on: Ubuntu 22.04 Blog: https://msecureltd.blogspot.com/2024/09/friday-fun-pentest-series-11-stored-xss.html Stored XSS 1: Steps to Reproduce: 1. Login as author 2. Browse to...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/04/15 12:0 a.m.417 views

OpenClinic GA 5.247.01 Information Disclosure

Exploit Title: OpenClinic GA 5.247.01 - Information Disclosure Date: 2023-08-14 Exploit Author: VB Vendor Homepage: https://sourceforge.net/projects/open-clinic/ Software Link: https://sourceforge.net/projects/open-clinic/ Version: OpenClinic GA 5.247.01 Tested on: Windows 10, Windows 11 CVE:...

7.4AI score0.03002EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/02/12 12:0 a.m.417 views

LaborOfficeFree 19.10 MySQL Root Password Calculator

Exploit Title: LaborOfficeFree 19.10 MySQL Root Password Calculator - CVE-2024-1346 Google Dork: N/A Date: 09/02/2023 Exploit Author: Peter Gabaldon - https://pgj11.com/ Vendor Homepage: https://www.laborofficefree.com/ Software Link: https://www.laborofficefree.com/plans Version: 19.10 Tested on...

7.4AI score0.00392EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/01/02 12:0 a.m.417 views

FTPDMIN 0.96 Denial Of Service

!/usr/bin/perl use Net::FTP; Exploit Title: FTPDMIN 0.96 - Denial of Service DoS Discovery by: Fernando Mengali Discovery Date: 2024-01-01 Vendor Homepage: https://www.sentex.ca/mwandel/ftpdmin/ Download to demo: https://drive.google.com/file/d/1CpfvaJbJVxR3HPWvcxIVipTaTj7RAaLd/view?usp=sharing...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/08/23 12:0 a.m.417 views

FixBook Repair Shop Management Tool 3.0 Hash Disclosure

==================================================================================================================================== | Title : FixBook - Repair Shop Management Tool v3.0 Password Hash Disclosure Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / brows...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/07/25 12:0 a.m.417 views

WordPress WP Brutal AI Cross Site Scripting

Tittle: WordPress Plugin WP Brutal AI " 3. Save the changes to trigger XSS. Classification: Type XSS OWASP top 10 A7: Cross-Site Scripting XSS CWE-79 wpScan: https://wpscan.com/vulnerability/62deb3ed-a7e4-4cdc-a615-cad2ec2e1e8f...

7.1AI score0.01973EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/04/26 12:0 a.m.417 views

qdPM 9.1 Cross Site Scripting

Exploit Title: qdPM 9.x -bindtype - Cross-Site Scripting Exploit Author: Or4nG.M4n Date : 4/26/2023 Vendor Homepage: https://qdpm.net/ Software Link: https://sourceforge.net/projects/qdpm/files/latest/download Version: 9.2 , 9.1 XSS Reflected . GET...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2022/08/08 12:0 a.m.417 views

Nortek Linear eMerge E3-Series Command Injection

Exploit Title: Nortek Linear eMerge E3-Series - Blind OS Command Injection Exploit Author: Omar Hashim Version: 0.32-09c Vendor home page: https://www.nortekcontrol.com/access-control/ Vendor home page: https://linear-solutions.com/ Authentication Required: No CVE: CVE-2022-31499 POC:...

0.4AI score0.64589EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/08/03 12:0 a.m.417 views

Zoho Password Manager Pro XML-RPC Java Deserialization

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Zoho Password Manager Pro XML-RPC Java Deserialization', 'Description' = %q This module exploits a Java deserialization vulnerability in Zoho...

9.8CVSS0.6AI score0.9994EPSS
Exploits5
Packet Storm
Packet Storm
added 2022/07/06 12:0 a.m.417 views

Xen PV Guest Non-SELFSNOOP CPU Memory Corruption

Xen: PV guest on non-SELFSNOOP CPUs can validate non-coherent L2 pagetable I'm not sure whether there are any major users of unshimmed Xen PV left, but https://xenbits.xen.org/docs/unstable/support-matrix.html says it's still a security-supported usecase for 64-bit guests. Tested on Debian's Xen...

7.2CVSS7.2AI score0.00494EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/05/11 12:0 a.m.417 views

Wondershare Dr.Fone 12.0.7 Privilege Escalation

Exploit Title: Wondershare Dr.Fone 12.0.7 - Privilege Escalation InstallAssistService Date: 4/27/2022 Exploit Author: Netanel Cohen & Tomer Peled Vendor Homepage: https://drfone.wondershare.net/ Software Link: https://download.wondershare.net/drfonefull4008.exe Version: up to 12.0.7 Tested on:...

10CVSS0.5AI score0.2272EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/11/05 12:0 a.m.417 views

HealthForYou 1.11.1 / HealthCoach 2.9.2 Missing Password Policy

Trovent Security Advisory 2104-03 Missing server-side password policy Overview Advisory ID: TRSA-2104-03 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2104-03 Affected product: HealthForYou & Sanitas HealthCoach mobile and web applications Tested...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/11/04 12:0 a.m.417 views

GitLab Unauthenticated Remote ExifTool Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitLab Unauthenticated Remote ExifTool Command Injection', 'Description' = %q This module exploits an unauthenticated file upload and command...

10CVSS9AI score0.99981EPSS
Exploits57
Packet Storm
Packet Storm
added 2021/10/12 12:0 a.m.417 views

Moodle Authenticated Spelling Binary Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rexml/document' class MetasploitModule 'Moodle Authenticated Spelling Binary RCE', 'Description' = %q Moodle allows an authenticated user to define spellcheck...

9.1CVSS0.4AI score0.42566EPSS
Exploits12
Packet Storm
Packet Storm
added 2021/03/29 12:0 a.m.417 views

Backdoor.Win32.Delf.zs Code Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/911e96073cfe807289366343aa8d97ac.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Delf.zs Vulnerability: Unauthenticated Remote Command Execution Description: Backdoor...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/02/23 12:0 a.m.417 views

WebcamXP / Webcam7 Directory Traversal

Exploit Title: WebcamXP and Webcam7 Directory Traversal Vulnerability Google Dork: "powered by webcamxp" xhtml css Google Dork: "powered by webcam 7" Date: 2/22/2012 Author: Silent Dream Software Link: http://dl.filekicker.com/send/file/230775-FQAC/wlite550.exe Software Link:...

Exploits0
Packet Storm
Packet Storm
added 2024/10/03 12:0 a.m.416 views

Acronis Cyber Infrastructure Default Password Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'sshkey' class MetasploitModule 'Acronis Cyber Infrastructure default password remote code execution', 'Description' = %q Acronis Cyber Infrastructure ACI is an ...

9.8CVSS7.1AI score0.53255EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/03/20 12:0 a.m.416 views

Hitachi NAS SMU 14.8.7825 Information Disclosure

Exploit Title: Hitachi NAS HNAS System Management Unit SMU 14.8.7825 - Information Disclosure CVE: CVE-2023-6538 Date: 2023-12-13 Exploit Author: Arslan Masood @arszilla Vendor: https://www.hitachivantara.com/ Version: --id --sso " Create --host argument: parser.addargument "--host", required=Tru...

7.6CVSS7.4AI score0.01583EPSS
Exploits5
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.416 views

PHPJabbers Bus Reservation System 1.1 Cross Site Scripting

Exploit Title: PHPJabbers Bus Reservation System v1.1 - Multiple Stored XSS Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/bus-reservation-system/sectionDemo Version: v1.1 Tested o...

7.4AI score0.00322EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/10/19 12:0 a.m.416 views

Fortinet FortiOS / FortiProxy / FortiSwitchManager Authentication Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Fortinet FortiOS, FortiProxy, and FortiSwitchManager authentication bypass.', 'Description' = %q This module exploits an authentication bypass...

0.2AI score0.99984EPSS
Exploits25
Packet Storm
Packet Storm
added 2021/09/30 12:0 a.m.416 views

Pharmacy Point Of Sale System 1.0 SQL Injection

Exploit Title: Pharmacy Point of Sale System 1.0 - 'Multiple' SQL Injection SQLi Date: 28.09.2021 Exploit Author: Murat Vendor Homepage: https://www.sourcecodester.com/php/14957/pharmacy-point-sale-system-using-php-and-sqlite-free-source-code.html Software Link:...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/06/10 12:0 a.m.416 views

LinuxKI Toolset 6.01 Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LinuxKI Toolset 6.01 Remote Command Execution', 'Description' = %q This module exploits a vulnerability in LinuxKI Toolset MSFLICENSE, 'Author' =...

7.5CVSS0.98846EPSS
Exploits10
Packet Storm
Packet Storm
added 2017/11/08 12:0 a.m.416 views

Microsoft Windows LNK File Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LNK Code Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the handling of Windows Shortcut files .LNK that...

9.3CVSS7.9AI score0.90026EPSS
Exploits27
Packet Storm
Packet Storm
added 2013/09/09 12:0 a.m.416 views

Xoops 2.5.6 Cross Site Scripting

Xoops 2.5.6 Multiple XSS vulnerabilities ------------------------------------------------------------ == Description == - Software link: http://xoops.org/ - Affected versions: version 2.5.6last version is vulnerable. Other versions might be affected as well. - Vulnerability discovered by: Mehdi...

Exploits0
Packet Storm
Packet Storm
added 2024/10/11 12:0 a.m.415 views

Artica Proxy 4.40 Code Injection

============================================================================================================================================= | Title : Artica Proxy appliance 4.40 Code Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/09/24 12:0 a.m.415 views

ABB Cylon Aspect 3.08.01 Arbitrary File Deletion

ABB Cylon Aspect 3.08.01 databaseFileDelete.php Arbitrary File Delete Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio Firmware: =3.08.01 Summary: ASPECT is an award-winning scalable building energy...

10CVSS7.1AI score0.17159EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/09/18 12:0 a.m.415 views

Backdoor.Win32.Delf.yj MVID-2024-0693 Information Disclosure

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/f991c25f1f601cc8d14dca4737415238.txt Contact: [email protected] Media: x.com/malvuln Threat: Backdoor.Win32.Delf.yj Vulnerability: Information Disclosure Description: The malware listens on...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/06/22 12:0 a.m.415 views

Zoo Management System 1.0 Cross Site Scripting

Exploit Title: Zoo Management System 1.0 - Reflected Cross-Site-Scripting XSS Date: 06/22/2022 Exploit Author: Angelo Pio Amirante Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15344/zoo-management-system-phpoop-free-source-code.html Version: 1...

0.00875EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/11/29 12:0 a.m.415 views

Orangescrum 1.8.0 Cross Site Scripting

Exploit Title: orangescrum 1.8.0 - 'Multiple' Cross-Site Scripting XSS Authenticated Date: 28/11/2021 Exploit Author: Hubert Wojciechowski Contact Author: [email protected] Company: https://redteam.pl Vendor Homepage: https://www.orangescrum.org/ Software Link: https://www.orangescrum.org/...

Exploits0
Packet Storm
Packet Storm
added 2021/10/25 12:0 a.m.415 views

WordPress TaxoPress 3.0.7.1 Cross Site Scripting

Exploit Title: WordPress Plugin TaxoPress 3.0.7.1 - Stored Cross-Site Scripting XSS Authenticated Date: 23-10-2021 Exploit Author: Akash Rajendra Patil Vendor Homepage: Software Link: https://wordpress.org/plugins/simple-tags/ Tested on Windows CVE: CVE-2021-24444...

3.5CVSS5.2AI score0.02315EPSS
Exploits5
Packet Storm
Packet Storm
added 2021/07/07 12:0 a.m.415 views

Okta Access Gateway 2020.5.5 Authenticated Remote Root

Okta Access Gateway v2020.5.5 Post-Auth Remote Root RCE CVE-2021-28113 ======= Details ======= There are two command injection bugs can that be triggered after authenticating to the web UI. Since the injection occurs when a script is executed with sudo, the commands are ran with root privileges...

8.7CVSS0.6AI score0.22326EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/04/21 12:0 a.m.415 views

Hasura GraphQL 1.3.3 Server-Side Request Forgery

Exploit Title: Hasura GraphQL 1.3.3 - Service Side Request Forgery SSRF Software: Hasura GraphQL Software Link: https://github.com/hasura/graphql-engine Version: 1.3.3 Exploit Author: Dolev Farhi Date: 4/19/2021 Tested on: Ubuntu import requests HASURASCHEME = 'http' HASURAHOST = '192.168.1.1'...

1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/08/21 12:0 a.m.415 views

Eibiz i-Media Server Digital Signage 3.8.0 File Path Traversal

Eibiz i-Media Server Digital Signage 3.8.0 oldfile File Path Traversal Vendor: EIBIZ Co.,Ltd. Product web page: http://www.eibiz.co.th Affected version: =3.8.0 Summary: EIBIZ develop advertising platform for out of home media in that time the world called "Digital Signage". Because most business...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2023/04/26 12:0 a.m.414 views

Online Book Store 1.0 SQL Injection

Exploit Title: Online Book Store 1.0 - process.php SQL injection Google Dork: 4/26/2023 Exploit Author: Or4nG.M4n Vendor Homepage: https://projectworlds.in/free-projects/php-projects/online-book-store-project-in-php/ Software Link:...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2023/04/18 12:0 a.m.414 views

SecurePoint UTM 12.x Session ID Leak

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: SecurePoint UTM Vendor URL: https://www.securepoint.de/en/for-companies/firewall-vpn Type: Exposure of Sensitive Information to an Unauthorized Actor CWE-200 Date found: 2023-01-05 Date...

7.6AI score0.03888EPSS
Exploits4
Packet Storm
Packet Storm
added 2021/08/16 12:0 a.m.414 views

Simple Water Refilling Station Management System 1.0 SQL Injection

Exploit Title: Simple Water Refilling Station Management System 1.0 - Authentication Bypass Exploit Author: Matt Sorrell Date: 2021-08-14 Vendor Homepage: https://www.sourcecodester.com Software Link:...

0.7AI score
Exploits0
Packet Storm
Packet Storm
added 2021/07/27 12:0 a.m.414 views

WordPress Social Warfare 3.5.2 Remote Code Execution

Author = Raed Ahsan Creation Date = 24/07/2021 Vulnerability : SocialWarfare 3.5.2 plugin wordpress Remote Code Execution Linkedin = https://linkedin.com/in/raed-ahsan/ import socket import requests import subprocess import time import pyautogui print"Start your python SimpleHTTPServer on port 12...

4.3CVSS0.4AI score0.73543EPSS
Exploits18
Packet Storm
Packet Storm
added 2021/03/02 12:0 a.m.414 views

Zen Cart 1.5.7b Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This exploit write payload in database and trig to command a bug in an zencart v1.5.7b web application class MetasploitModule 'zencart authenticated remote code executio...

9CVSS7AI score0.16782EPSS
Exploits4
Packet Storm
Packet Storm
added 2020/10/29 12:0 a.m.414 views

Genexis Platinum-4410 P4410-V2-1.28 Cross Site Request Forgery

Exploit Title: Genexis Platinum-4410 P4410-V2-1.28 - Cross Site Request Forgery to Reboot Date: 10/28/2020 Exploit Author: Mohammed Farhan Vendor Homepage: https://genexis.co.in/product/ont/ Version: Platinum-4410 Software version - P4410-V2-1.28 Tested on: Windows 10 Author Contact:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2020/03/19 12:0 a.m.414 views

Easy File Sharing Web Server 7.2 Local Buffer Overflow

Exploit Title: Easy File Sharing Web Server 7.2 - SMTP 'Password' Local Buffer Overflow SEH Date: 03/16/2020 Author: Felipe Winsnes Vendor Homepage: http://www.sharing-file.com/ Software Link: http://www.sharing-file.com/download.php Version: 7.2 Tested on: Windows 7 Proof of Concept: 1.- Run the...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2019/02/05 12:0 a.m.414 views

Joomla K2 2.9.0 Database Disclosure / SQL Injection

Exploit Title : Joomla K2 Components 2.9.0 SQL Injection / Database Disclosure Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 04/02/2019 Vendor Homepage : getk2.org Software Download Link : getk2.org/downloads/?f=K2v2.9.0.zip Software Information Link :...

7.5CVSS7.6AI score0.03029EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/10/14 12:0 a.m.413 views

WordPress File Manager Advanced Shortcode 2.3.2 Code Injectin / Shell Upload

============================================================================================================================================= | Title : WordPress File Manager Advanced Shortcode 2.3.2 Code Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/04/02 12:0 a.m.413 views

Daily Habit Tracker 1.0 Cross Site Scripting

Exploit Title: Daily Habit Tracker 1.0 - Stored Cross-Site Scripting XSS Date: 2 Feb 2024 Exploit Author: Yevhenii Butenko Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17118/daily-habit-tracker-using-php-and-mysql-source-code.html Version: 1.0...

7.1AI score0.25877EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/02/22 12:0 a.m.413 views

FreeIPA 4.10.1 Denial Of Service / Information Disclosure

Summary: Specially crafted HTTP requests can read files in the DC server. And use keytab files for authorization for different kerberos principals. Tested FreeIPA version: ipa-server-4.10.1 Details The "user" parameter in the HTTP URI "/sip/session/loginpassword" is inserted into the "run" functi...

7.4AI score0.0111EPSS
Exploits1
Total number of security vulnerabilities5000