Lucene search
K
PacketstormMost viewed

50738 matches found

Packet Storm
Packet Storm
added 2021/03/22 12:0 a.m.314 views

Trojan-Dropper.Win32.Demp.rft Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/db01783710e0c5aff92156a0e76deade.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Dropper.Win32.Demp.rft Vulnerability: Insecure Permissions Description: The specimen creates ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/12/21 12:0 a.m.314 views

SCO Openserver 5.0.7 Cross Site Scripting

Exploit Title: SCO Openserver 5.0.7 - 'section' Reflected XSS Google Dork: inurl:/cgi-bin/manlist?section Discovered Date: 14/06/2020 Author: Ramikan Vendor Homepage: https://www.xinuos.com/products Software Link: https://www.sco.com/products/openserver507/-overview Affected Version: Tested on...

6.3AI score0.08142EPSS
Exploits3
Packet Storm
Packet Storm
added 2019/10/31 12:0 a.m.314 views

Carel pCOWeb HVAC Insecure Credential Storage

Advisory: Unsafe Storage of Credentials in Carel pCOWeb HVAC The Carel pCOWeb card stores password hashes in the file "/etc/passwd", allowing privilege escalation by authenticated users. Additionally, plaintext copies of the passwords are stored. Details ======= Product: HVAC units using the OEM...

10CVSS9.4AI score0.07058EPSS
Exploits2
Packet Storm
Packet Storm
added 2019/09/03 12:0 a.m.314 views

Cisco IronPort C350 Header Injection

!/usr/bin/perl -w Cisco IronPort C350 Remote Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that Todor Donev is not liable for any...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2018/11/15 12:0 a.m.314 views

WordPress Ninja Forms 3.3.17 Cross Site Scripting

Exploit Title: Wordpress Plugin Ninja Forms 3.3.17 - Cross-Site Scripting Date: 2018-11-15 Exploit Author: MTK Vendor Homepage: https://ninjaforms.com Softwae Link: https://wordpress.org/plugins/ninja-forms/ Version: Up to V3.3.17 Tested on: Debian 9 - Apache2 - Wordpress 4.9.8 - Firefox CVE :...

6.3AI score0.08903EPSS
Exploits5
Packet Storm
Packet Storm
added 2025/04/23 12:0 a.m.313 views

📄 Online Shopping System Advanced 1.0 Shell Upload / SQL Injection

Online Shopping System Advanced version 1.0 suffers from remote shell upload and remote SQL injection vulnerabilities. Exploit Title: Online Shopping System Advanced - Remote Code Execution Date: 2025-03-11 Exploit Author: bRpsd Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=bRpsd...

8.5AI score
Exploits0
Packet Storm
Packet Storm
added 2025/04/15 12:0 a.m.313 views

📄 GestioIP 3.5.7 Cross Site Request Forgery

GestioIP version 3.5.7 suffers from a cross site request forgery vulnerability. Exploit Title: GestioIP 3.5.7 - GestioIP Vulnerability: Auth. Cross-Site Request Forgery CSRF Exploit Author: m4xth0r Maximiliano Belino Author website: https://maxibelino.github.io/ Author email : max.cybersecurity a...

8.8CVSS6.7AI score0.01669EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/03/07 12:0 a.m.313 views

Adobe Reader 11.0.10 CoolType Out-Of-Bounds Read

Adobe Reader version 11.0.10 proof of concept exploit that demonstrates an out-of-bounds read found in 2015. ============================================================================================================================================= | Title : Adobe Reader 11.0.10 CoolType...

10CVSS7.2AI score0.05815EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/03/06 12:0 a.m.313 views

OpenAdmin 0.3.4 Cross Site Request Forgery

Cross site request forgery in the Users and Change Root Password functions in OpenAdmin version 0.3.4 allows remote attackers to perform attacks enabling unauthorized actions that could lead to privilege escalation. Exploit Title: OpenAdmin 0.3.4 - Multiple CSRF Vulnerabilities Date: Nov 8, 2024...

7.4AI score0.00164EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/12/02 12:0 a.m.313 views

Siemens Unlocked JTAG Interface / Buffer Overflow

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Unlocked JTAG interface and buffer overflow product: Siemens SM-2558 Protocol Element extension module for Siemens SICAM AK3/TM/BC, Siemens CP-2016 & CP-2019 vulnerable...

7.8CVSS7AI score0.00468EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/11/13 12:0 a.m.313 views

Palo Alto Expedition 1.2.91 Remote Code Execution

class MetasploitModule 'Palo Alto Expedition Remote Code Execution CVE-2024-5910 and CVE-2024-9464', 'Description' = %q Obtain remote code execution in Palo Alto Expedition version 1.2.91 and below. The first vulnerability, CVE-2024-5910, allows to reset the password of the admin user, and the...

9.8CVSS7.4AI score0.91783EPSS
Exploits14
Packet Storm
Packet Storm
added 2024/11/04 12:0 a.m.313 views

Sysax Multi Server 6.99 Cross Site Scripting

Exploit Title: Sysax Multi Server 6.99 - Reflected XSS Date: 2024-11-03 Exploit Author: Yehia Elghaly Mrvar0x Vendor Homepage: https://www.sysax.com/ Software Link: https://www.sysax.com/download/sysaxservsetup.msi Version: MultiServer 6.99 Tested on: Windows 10 x64 Reflected XSS - Affected...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/10/31 12:0 a.m.313 views

Qualitor 8.24 Server-Side Request Forgery

CVE-2024-48360 | Qualitor = v8.24 Unauthenticated SSRF Description Qualitor is a platform for business process management, and this system is present in various companies in Brazil that can be identified simply by using Google dorking. Our team identified a vulnerability in the application...

7.4AI score0.03905EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/08/22 12:0 a.m.313 views

Online ID Generator 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Online ID Generator 1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64 bits | ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/05/14 12:0 a.m.313 views

Chyrp 2.5.2 Cross Site Scripting

Chyrp 2.5.2 - Stored Cross-Site Scripting XSS Date: 2024-04-24 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://github.com/chyrp/ Software Link: https://github.com/chyrp/chyrp/archive/refs/tags/v2.5.2.zip Version: 2.5.2 Tested on: MacOS Steps to Reproduce - Login from the address:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/04/11 12:0 a.m.313 views

GUnet OpenEclass E-learning 3.15 File Upload / Command Execution

import requests import argparse import zipfile import os import sys RED = '\03391m' GREEN = '\03392m' YELLOW = '\03393m' RESET = '\0330m' ORANGE = '\03338;5;208m' MALICIOUSPAYLOAD = """\ """ def banner: printf'''RED YELLOW ============================ Author: Frey ============================...

7.4AI score0.03821EPSS
Exploits6
Packet Storm
Packet Storm
added 2024/04/03 12:0 a.m.313 views

SUPERAntiSpyware Professional X 10.0.1264 DLL Hijacking / Privilege Escalation

Title: SUPERAntiSpyware Professional X Version =10.0.1264 "version.dll" Local Privilege Escalation Date: 03.04.2024 Author: M. Akil Gündoğan Vendor Homepage: https://superantispyware.com/ Version: 10.0.1262 and lastest version 10.0.1264 Tested on: Windows 10 Professional x64 PoC Video:...

7.2AI score0.00604EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/04/01 12:0 a.m.313 views

Gibbon 26.0.00 Server-Side Template Injection / Remote Code Execution

Exploit Title: Gibbon LMS has an SSTI vulnerability on the v26.0.00 version Date: 21.01.2024 Exploit Author: SecondX.io Research TeamIslam Rzayev,Fikrat Guliev, Ali Maharramli Vendor Homepage: https://gibbonedu.org/ Software Link: https://github.com/GibbonEdu/core Version: v26.0.00 Tested on:...

7.4AI score0.26089EPSS
Exploits4
Packet Storm
Packet Storm
added 2024/01/29 12:0 a.m.313 views

Interactive Floor Plan 1.0 Cross Site Scripting

Title: Interactive-Floor-Plan-1.0-XSS-Reflected-SESSION-Hijacking Author: nu11secur1ty Date: 01/28/2024 Vendor: https://www.phpjabbers.com/ Software: https://www.phpjabbers.com/interactive-floor-plan-software/sectionDemo Reference: https://portswigger.net/web-security/cross-site-scripting/reflect...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/01/11 12:0 a.m.313 views

PHPJabbers Bus Reservation System 1.1 CSV Injection

Exploit Title: PHPJabbers Bus Reservation System v1.1 - CSV Injection Date: 19/12/2023 Exploit Author: BugsBD Limited Discover by: Rahad Chowdhury Vendor Homepage: https://www.phpjabbers.com/ Software Link: https://www.phpjabbers.com/bus-reservation-system/sectionDemo Version: v1.1 Tested on:...

7.4AI score0.00635EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/11/13 12:0 a.m.313 views

EnBw SENEC Legacy Storage Box Hardcoded Credentials

Advisory ID: Ph0s-2023-003 Product: EnBw - SENEC legacy storage box: V1-V3 Manufacturer: SENEC - a part of EnBw Affected Versions: Firmware: all as of 2023-06-19 Tested Versions: current Vulnerability Type: CWE-307: Improper Restriction of Excessive Authentication Attempts CWE-798: Use of...

7AI score0.00963EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/10/16 12:0 a.m.313 views

NLB mKlik Makedonija 3.3.12 SQL Injection

NLB mKlik Makedonija 3.3.12 SQL Injection Vendor: NLB Banka AD Skopje Product web page: https://www.nlb.mk Google Play: https://play.google.com/store/apps/details?id=hr.asseco.android.jimba.tutunskamk.production Affected version: 3.3.12 Summary: NLB mKlik е мобилна апликација наменета за физички...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/09/08 12:0 a.m.313 views

SyncBreeze 15.2.24 Denial Of Service

Exploit Title: SyncBreeze 15.2.24 -'login' Denial of Service Date: 30/08/2023 Exploit Author: mohamed youssef Vendor Homepage: https://www.syncbreeze.com/ Software Link: https://www.syncbreeze.com/setups/syncbreezesetupv15.4.32.exe Version: 15.2.24 Tested on: windows 10 64-bit import socket impor...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/08/25 12:0 a.m.313 views

Gravigra CMS 1.0 SQL Injection

==================================================================================================================================== | Title : Gravigra CMS v1.0 Sql injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 63.0.3 32-bit |...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/08/04 12:0 a.m.313 views

WordPress EventON Calendar 4.4 Insecure Direct Object Reference

Exploit Title: Wordpress Plugin EventON Calendar 4.4 - Unauthenticated Event Access Date: 03.08.2023 Exploit Author: Miguel Santareno Vendor Homepage: https://www.myeventon.com/ Version: 4.4 Tested on: Google and Firefox latest version CVE : CVE-2023-2796 1. Description The plugin lacks...

5.3CVSS7.1AI score0.37468EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/07/26 12:0 a.m.313 views

Joomla Fireboard 1.3 SQL Injection

==================================================================================================================================== | Title : Joomla com fireboard v1.3 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 63.0.3...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/05/05 12:0 a.m.313 views

Jedox 2020.2.5 Groovy-Scripts Remote Code Execution

Exploit Title: Jedox 2020.2.5 - Remote Code Execution via Executable Groovy-Scripts Date: 28/04/2023 Exploit Author: Syslifters - Christoph Mahrl, Aron Molnar, Patrick Pirker and Michael Wedl Vendor Homepage: https://jedox.com Version: Jedox 2020.2 20.2.5 and older CVE : CVE-2022-47876 Introducti...

7.1AI score0.07048EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/10/05 12:0 a.m.313 views

Remote Mouse 4.110 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Remote Mouse RCE', 'Description' = %q This module utilizes the Remote Mouse Server by Emote Interactive protocol to deploy a payload and run it...

0.02044EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/10/04 12:0 a.m.313 views

WordPress WPvivid Backup Path Traversal

===== Tempest Security Intelligence - ADV-15/2022 ========================== Wordpress plugin - WPvivid Backup - Version 0.9.76 Author: Rodolfo Tavares Tempest Security Intelligence - Recife, Pernambuco - Brazil ===== Table of Contents================================================== Overview...

4.9CVSS5.2AI score0.18147EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/07/04 12:0 a.m.313 views

DouPHP 1.2 Release 20141027 SQL Injection

==================================================================================================================================== | Title : DouPHP v1.2 Release 20141027 SQL Injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

Exploits0
Packet Storm
Packet Storm
added 2022/04/19 12:0 a.m.313 views

WordPress Motopress Hotel Booking Lite 4.2.4 SQL Injection

Exploit Title: WordPress Plugin Motopress Hotel Booking Lite 4.2.4 - SQL Injection Date: 2022-04-11 Exploit Author: Mohsen Dehghani aka 0xProfessional Vendor Homepage: https://motopress.com/ Software Link: https://downloads.wordpress.org/plugin/motopress-hotel-booking-lite.4.2.4.zip Version: 4.2....

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/04/04 12:0 a.m.313 views

Sherpa Connector Service 2020.2.20328.2050 Unquoted Service Path

Exploit Title: Sherpa Connector Service v2020.2.20328.2050 - Unquoted Service Path Exploit Author: Manthan Chhabra netsectuna, Harshit fumenoid Version: 2020.2.20328.2050 Date: 02/04/2022 Vendor Homepage: http://gimmal.com/ Vulnerability Type: Unquoted Service Path Tested on: Windows 10 CVE:...

0.3AI score0.01027EPSS
Exploits4
Packet Storm
Packet Storm
added 2022/03/11 12:0 a.m.313 views

Tdarr 2.00.15 Command Injection

Exploit Title: Tdarr 2.00.15 - Command Injection Date: 10/03/2022 Exploit Author: Sam Smith Vendor Homepage: https://tdarr.io Software Link: https://f000.backblazeb2.com/file/tdarrs/versions/2.00.15/linuxarm64/TdarrServer.zip Version: 2.00.15 likely also older versions Tested on: 2.00.15 Exploit:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2022/02/11 12:0 a.m.313 views

Kyocera Command Center RX ECOSYS M2035dn Directory Traversal

Exploit Title: Kyocera Command Center RX ECOSYS M2035dn - Directory Traversal File Disclosure Unauthenticated Author: Luis Martinez Discovery Date: 2022-02-10 Vendor Homepage: https://www.kyoceradocumentsolutions.com/asia/en/products/business-application/command-center-rx.html Tested Version:...

Exploits0
Packet Storm
Packet Storm
added 2022/01/21 12:0 a.m.313 views

Online Project Time Management 1.0 SQL Injection

Title: Online Project Time Management 1.0 Multiple SQL - Injections Author: nu11secur1ty Date: 01.20.2022 Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15136/online-project-time-management-system-phpoop-free-source-code.html Description: The pid...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/12/28 12:0 a.m.313 views

Backdoor.Win32.FTP.Simpel.12 Insecure Crypto Implementation

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/1d12f9b921b38d7b521f12442bdd52d8B.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.FTP.Simpel.12 Vulnerability: Insecure Crypto Description: The malware listens on TCP...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/13 12:0 a.m.313 views

Logitech Media Server 8.2.0 Cross Site Scripting

Exploit Title: Logitech Media Server 8.2.0 - 'Title' Cross-Site Scripting XSS Shodan Dork: Search Logitech Media Server Date: 12.10.2021 Exploit Author: Mert Das Vendor Homepage: www.logitech.com Version: 8.2.0 Tested on: Windows 10, Linux POC: 1. Go to Settings / Interface tab 2. Add payload to...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/06/02 12:0 a.m.313 views

Backdoor.Win32.Delf.acz Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/065d89c63fa1057de98c727d4b044b98.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Delf.acz Vulnerability: Remote Stack Buffer Overflow SEH Description: The malware...

1.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/03/19 12:0 a.m.313 views

SOYAL Biometric Access Control System 5.0 Weak Default Credentials

SOYAL Biometric Access Control System 5.0 Weak Default Credentials Vendor: SOYAL Technology Co., Ltd Product web page: https://www.soyal.com.tw | https://www.soyal.com Affected version: AR-727 i/CM - F/W: 5.0 AR837E/EF - F/W: 4.3 AR725Ev2 - F/W: 4.3 191231 AR331/725E - F/W: 4.2 AR837E/EF - F/W: 4...

1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/03/03 12:0 a.m.313 views

Local Services Search Engine Management System 1.0 Cross Site Scripting

Exploit Title: Local Services Search Engine Management System LSSMES 1.0 - 'name' Persistent Cross-Site Scripting XSS Date: 2021-03-03 Exploit Author: Tushar Vaidya Vendor Homepage: https://phpgurukul.com/local-services-search-engine-management-system-using-php-and-mysql/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/02/16 12:0 a.m.313 views

Trojan-Spy.Win32.WinSpy.wlt Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/00e1c4a654756dd6c9c81437c01ee3dd.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.WinSpy.wlt Vulnerability: Insecure Permissions Description: WinSpy.wlt trojan drops...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/10/28 12:0 a.m.313 views

Blueman Local Root / Privilege Escalation

Exploit Title: Local Privilege Escalation in Blueman 2.1.4 Date: 2020-10-27 Exploit Author: Vaisha Bernard vbernard - at - eyecontrol.nl Vendor Homepage: https://github.com/blueman-project/blueman Software Link: https://github.com/blueman-project/blueman Version: 2.1.4 Tested on: Ubuntu 20.04 CVE...

0.9AI score0.04539EPSS
Exploits4
Packet Storm
Packet Storm
added 2020/10/16 12:0 a.m.313 views

CS-Cart 1.3.3 Remote Code Execution

Exploit Title: CS-Cart authenticated RCE Date: 2020-09-22 Exploit Author: 0xmmnbassel Vendor Homepage: https://www.cs-cart.com/e-commerce-platform.html Tested at: ver. 1.3.3 Vulnerability Type: authenticated RCE get PHP shells from http://pentestmonkey.net/tools/web-shells/php-reverse-shell edit ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/10/12 12:0 a.m.313 views

SEO Panel 4.6.0 Remote Code Execution

Exploit Title: SEO Panel 4.6.0 - Remote Code Execution Google Dork: N/A Date: 2020-10-03 Exploit Author: Kiko Andreu kikoas1995 & Daniel Monzón stark0de Vendor Homepage: https://seopanel.org/ Software Link: https://www.seopanel.org/spdownload/4.6.0 Version: 4.6.0 Tested on: Kali Linux x64 5.4.0 C...

Exploits0
Packet Storm
Packet Storm
added 2019/11/13 12:0 a.m.313 views

Fastweb Fastgate 0.00.81 Remote Code Execution

Exploit Title: Fastweb Fastgate 0.00.81 - Remote Code Execution Date: 2019-11-13 Exploit Author: Riccardo Gasparini Vendor Homepage: https://www.fastweb.it/ Software Link: http://59.0.121.191:8080/ACS-server/file/0.00.81FW200Askey only from Fastweb ISP network Version: 0.00.81 Tested on: Linux CV...

Exploits0
Packet Storm
Packet Storm
added 2018/02/03 12:0 a.m.313 views

MS17-010 EternalRomance / EternalSynergy / EternalChampion SMB Remote Windows Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Windows XP systems that are not part of a domain default to treating all network logons as if they were Guest. This prevents SMB relay attacks from gaining administrativ...

9.3CVSS7.2AI score0.99693EPSS
Exploits52
Packet Storm
Packet Storm
added 2025/12/16 12:0 a.m.312 views

📄 Grav CMS 1.7.49.5 Sandbox Bypass

This code is a standalone PHP proof of concept exploit targeting Grav CMS version 1.7.49.5 that demonstrates an authenticated remote code execution vulnerability caused by a Twig server-side template injection combined with a sandbox bypass...

9.6CVSS8.5AI score0.0264EPSS
Exploits5
Packet Storm
Packet Storm
added 2025/11/03 12:0 a.m.312 views

📄 WatchGuard Firebox Default Credentials / SSH Access

The default configuration of WatchGuard Firebox devices through 2025-09-10 allows administrative access via SSH on port 4118 using the default credentials. This configuration exposes the device to remote attackers who can gain full administrative access without prior authentication. CVE-2025-5939...

7.2AI score0.00043EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/04/11 12:0 a.m.312 views

📄 PgAdmin Query Tool Authenticated Remote Code Execution

This Metasploit module exploits a vulnerability in pgAdmin where an authenticated user can establish a connection to the query tool and send a specific payload in the querycommited POST parameter. This payload is directly executed via a Python eval statement, resulting in remote code execution in...

9.9CVSS9.6AI score0.46222EPSS
Exploits7
Packet Storm
Packet Storm
added 2025/03/04 12:0 a.m.312 views

Grafana 9.5.1 Server-Side Request Forgery

Grafana version 9.5.1 suffers from a server-side request forgery vulnerability. ============================================================================================================================================= | Title : Grafana 9.5.1 PHP Code Injection Vulnerability | | Author :...

7.4AI score
Exploits0
Total number of security vulnerabilities5000