Lucene search
K
ZeroscienceRecent

1103 matches found

Zero Science Lab
Zero Science Lab
โ€ขadded 2026/06/05 12:0 a.m.โ€ข61 views

Lyrion Music Server 9.2.0 (server.log) Unauthenticated Stored XSS

Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...

7.2CVSS5.4AI score0.00183EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/06/05 12:0 a.m.โ€ข80 views

Lyrion Music Server 9.2.0 Arbitrary Directory Listing

Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...

6.9CVSS5.6AI score0.00294EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/06/05 12:0 a.m.โ€ข72 views

Lyrion Music Server 9.2.0 Path Traversal File Read

Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...

8.7CVSS5.5AI score0.0064EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/06/05 12:0 a.m.โ€ข56 views

Lyrion Music Server 9.2.0 (search.*) Multiple Script Insertions

Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...

6.1CVSS5.4AI score0.00158EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/06/05 12:0 a.m.โ€ข64 views

Lyrion Music Server 9.2.0 (metadata) Stored XSS

Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...

7.2CVSS4.9AI score0.00197EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/06/05 12:0 a.m.โ€ข66 views

Lyrion Music Server 9.2.0 (server.log) Unauthenticated Reflected XSS

Summary Lyrion Music Server formerly Logitech Media Server, and often abbreviated as "LMS" is open-source software which can control and serve stream music to a wide range of physical and virtual audio players called Squeezeboxes. Lyrion Music Server can stream your local music collection, intern...

6.1CVSS5.6AI score0.00324EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/05/31 12:0 a.m.โ€ข83 views

Lightweight Music Server (LMS) 3.76.0 (metadata) Stored XSS

Summary LMS Lightweight Music Server: A specific C++ based project focused on a low memory footprint, featuring built-in user management and a recommendation engine. Description LMS stores media file metadata tags such as GENRE, ARTIST, and ALBUM exactly as written in the file and later renders...

5.4CVSS5.4AI score0.00171EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข60 views

Pachno 1.0.6 (runSwitchUser()) Remote Vertical Privilege Escalation

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

7.1CVSS5.9AI score0.00304EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข63 views

Pachno 1.0.6 (uploadfile) Unrestricted File Upload Remote Code Execution

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

8.8CVSS6.2AI score0.00474EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข68 views

Pachno 1.0.6 FileCache Deserialization Remote Code Execution

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

9.8CVSS6.4AI score0.00484EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข64 views

Pachno 1.0.6 (return_to) Open Redirection

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

7.1CVSS5.9AI score0.00338EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข60 views

Pachno 1.0.6 Stored Cross-Site Scripting

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

7.2CVSS6.1AI score0.00161EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข58 views

Pachno 1.0.6 Cross-Site Request Forgery

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

5.3CVSS5.9AI score0.00109EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/04/12 12:0 a.m.โ€ข55 views

Pachno 1.0.6 Wiki TextParser XXE Vulnerability

Summary Pachno is an open-source collaboration platform formerly known as The Bug Genie designed for team project management, issue tracking, and documentation. It offers a module-based, customizable environment for software development and team workflows, distributed under the Mozilla Public...

9.8CVSS6AI score0.00373EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/03/02 12:0 a.m.โ€ข239 views

Honeywell Trend IQ4xx BMS Controller Unauthenticated Remote Web-HMI Control And Lockout

Summary The Honeywell IQ4 Trend IQ4 is a line of intelligent building-management controllers designed to provide advanced unitary control, HVAC integration, and scalable I/O expansion for commercial environments. These controllers use Ethernet and TCP/IP networking with embedded XML, support BACn...

10CVSS5.7AI score0.05585EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/24 12:0 a.m.โ€ข192 views

Tattile Cameras 1.181.5 Use of Default Credentials

Summary Tattile is an Italian manufacturer specializing in advanced ANPR/ALPR, trafficโ€‘enforcement, and machineโ€‘vision camera systems used across intelligent transportation networks, tolling infrastructures, accessโ€‘control environments, and industrial automation. Their portfolio includes...

9.8CVSS5.8AI score0.02663EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/24 12:0 a.m.โ€ข137 views

Tattile Cameras 1.181.5 Insufficient Token (X-User-Token) Expiration

Summary Tattile is an Italian manufacturer specializing in advanced ANPR/ALPR, trafficโ€‘enforcement, and machineโ€‘vision camera systems used across intelligent transportation networks, tolling infrastructures, accessโ€‘control environments, and industrial automation. Their portfolio includes...

9.8CVSS5.8AI score0.00716EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/24 12:0 a.m.โ€ข126 views

Tattile Cameras 1.181.5 Unauthenticated RTSP Stream Disclosure

Summary Tattile is an Italian manufacturer specializing in advanced ANPR/ALPR, trafficโ€‘enforcement, and machineโ€‘vision camera systems used across intelligent transportation networks, tolling infrastructures, accessโ€‘control environments, and industrial automation. Their portfolio includes...

8.7CVSS5.8AI score0.00807EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/14 12:0 a.m.โ€ข138 views

eNet SMART HOME server 2.3.1 (resetUserPassword) Account Takeover

Summary Two German specialists in building systems technology are jointly bringing a new, wireless-based smart home system to the market. Gira and JUNG are the companies behind the eNet SMART HOME brand with our subsidiary, INSTA, responsible for developing the system. All three of us are old han...

8.8CVSS6AI score0.00529EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/14 12:0 a.m.โ€ข148 views

eNet SMART HOME server 2.3.1 (setUserGroup) Remote Privilege Escalation

Summary Two German specialists in building systems technology are jointly bringing a new, wireless-based smart home system to the market. Gira and JUNG are the companies behind the eNet SMART HOME brand with our subsidiary, INSTA, responsible for developing the system. All three of us are old han...

9.8CVSS5.8AI score0.00637EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/14 12:0 a.m.โ€ข134 views

eNet SMART HOME server 2.3.1 Use of Default Credentials

Summary Two German specialists in building systems technology are jointly bringing a new, wireless-based smart home system to the market. Gira and JUNG are the companies behind the eNet SMART HOME brand with our subsidiary, INSTA, responsible for developing the system. All three of us are old han...

9.8CVSS5.8AI score0.00652EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/14 12:0 a.m.โ€ข128 views

eNet SMART HOME server 2.3.1 (deleteUserAccount) Arbitrary User Deletion

Summary Two German specialists in building systems technology are jointly bringing a new, wireless-based smart home system to the market. Gira and JUNG are the companies behind the eNet SMART HOME brand with our subsidiary, INSTA, responsible for developing the system. All three of us are old han...

8.1CVSS6AI score0.00373EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/12 12:0 a.m.โ€ข164 views

JUNG Smart Visu Server 1.1.1050 Remote Server Shutdown

Summary The Smart Visu Server makes your intelligent building control convenient. With the user-friendly operating concept, you can control both the KNX system and other systems such as Philips Hue or Sonos on your mobile devices. You can likewise connect voice control to your KNX system with...

8.7CVSS5.8AI score0.01784EPSS
Exploits5
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/12 12:0 a.m.โ€ข159 views

JUNG Smart Visu Server 1.1.1050 Request URL Override

Summary The Smart Visu Server makes your intelligent building control convenient. With the user-friendly operating concept, you can control both the KNX system and other systems such as Philips Hue or Sonos on your mobile devices. You can likewise connect voice control to your KNX system with...

8.8CVSS5.9AI score0.00496EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/02/10 12:0 a.m.โ€ข152 views

JUNG Smart Panel 5.1 KNX Unauthenticated Absolute File Path Traversal

Summary The JUNG Smart Panel 5.1 KNX is a flush-mounted 5-inch touch-sensitive controller designed for managing smart building automation via the KNX system. It serves as a, intuitive, centralized interface for controlling lighting, shading, heating, and security, utilizing a 640 x 480-pixel colo...

6.9CVSS7.4AI score0.00703EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2026/01/23 12:0 a.m.โ€ข228 views

Lighttpd 1.4.56 - 1.4.66 Resource Leak Denial of Service PoC

Summary lighttpd pronounced /lighty/ is a secure, fast, compliant, and very flexible web server that has been optimized for high-performance environments. lighttpd uses memory and CPU efficiently and has lower resource use than other popular web servers. Its advanced feature-set FastCGI, CGI, Aut...

7.5CVSS7AI score0.02714EPSS
Exploits4
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/11/13 12:0 a.m.โ€ข176 views

Logitech Streamlabs Desktop 1.19.6 (overlay) CPU Exhaustion

Summary Streamlabs Desktop is a free streaming and recording software, built on OBS Studio, for content creators to stream live to platforms like Twitch, YouTube, and Facebook. It is designed to be beginner-friendly and offers tools for creating engaging streams, such as customizable overlays,...

5.8AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/11/13 12:0 a.m.โ€ข188 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Authenticated Remote Command Injections

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

8.8CVSS6AI score0.02043EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/11/06 12:0 a.m.โ€ข228 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Insecure Hashing Algorithm

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

8.2CVSS5.8AI score0.00287EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/11/06 12:0 a.m.โ€ข168 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Root Privilege Escalation

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.8CVSS6AI score0.07449EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/11/03 12:0 a.m.โ€ข173 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Default Credentials

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.8CVSS5.8AI score0.00545EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/10/16 12:0 a.m.โ€ข138 views

Ilevia EVE X1 Server 4.7.18.0.eden (mbus) Unauthenticated Remote Command Injection

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.8CVSS6.1AI score0.07616EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/10/16 12:0 a.m.โ€ข146 views

Ilevia EVE X1 Server 4.7.18.0.eden Unauthenticated Reflected XSS

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

6.1CVSS6.1AI score0.0038EPSS
Exploits3
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/10/16 12:0 a.m.โ€ข130 views

Ilevia EVE X1 Server 4.7.18.0.eden Parameter Traversal Arbitrary File Access

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

8.7CVSS5.9AI score0.00613EPSS
Exploits4
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/09/05 12:0 a.m.โ€ข177 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Reverse Rootshell

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.3CVSS5.9AI score0.03161EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/08/26 12:0 a.m.โ€ข215 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Authentication Bypass Exploit

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.8CVSS6AI score0.00829EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/08/19 12:0 a.m.โ€ข295 views

Ilevia EVE X1 Server 4.7.18.0.eden Credentials Leak Through Log Disclosure

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.3CVSS5.8AI score0.00655EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/07/31 12:0 a.m.โ€ข266 views

Ilevia EVE X1 Server 4.7.18.0.eden (db_log) Pre-Auth File Disclosure

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

8.7CVSS5.9AI score0.00793EPSS
Exploits1
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/07/31 12:0 a.m.โ€ข302 views

Ilevia EVE X1 Server 4.7.18.0.eden Neuro-Core Unauth Code Invasion

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.8CVSS6.1AI score0.02743EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/06/04 12:0 a.m.โ€ข233 views

ABB Cylon Aspect 3.08.04 (DeploySource) Unauthenticated Remote Code Execution

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect BMS/BAS is vulnerable to a critical flaw in the...

6.1AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข277 views

ABB Cylon Aspect 3.08.03 (MIX->IPConfigServlet) Network Manipulation

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect MIX's IPConfigServlet allows unauthenticated network...

5.8AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข204 views

ABB Cylon Aspect 3.08.03 (MIX->HTTPDownloadServlet) Remote Code Execution

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect BMS/BAS is vulnerable to a critical flaw in the...

6.1AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข197 views

ABB Cylon Aspect 3.08.03 (MIX->HTTPDownloadServlet) File Deletion

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect BMS/BAS is vulnerable to a critical flaw in the...

6AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข239 views

ABB Cylon Aspect 3.08.03 (MIX->NTPServlet) Time Manipulation

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect MIX's NTPServlet allows NTP config changes via the...

5.8AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข217 views

ABB Cylon Aspect 3.08.03 (MIX->UserManager) Auth Bypass Create MIXAdmin

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description ABB Cylon Aspect BMS/BAS is vulnerable to a critical flaw in the...

5.9AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข169 views

ABB Cylon Aspect 3.08.03 (projectUpdateBSXFileProcess.php) Remote Guest2Root Exploit

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB BMS/BAS controller is vulnerable to code execution and sudo...

6.7AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข220 views

ABB Cylon Aspect 3.08.03 (logYumLookup.php) Hybrid Path Traversal

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB Cylon Aspect BAS controller is vulnerable to an authenticated...

5.9AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข258 views

ABB Cylon Aspect 3.08.03 (Java/PHP) Log Forging

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description Multiple PHP and Java components across the system fail to properly...

6.9CVSS5.9AI score0.00316EPSS
Exploits2
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข309 views

ABB Cylon Aspect 3.08.03 (login.php) Obscure Authentication Bypass

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB Cylon Aspect BAS controller allows login using guest:guest,...

5.8AI score
Exploits0
Zero Science Lab
Zero Science Lab
โ€ขadded 2025/05/22 12:0 a.m.โ€ข271 views

ABB Cylon Aspect Studio 3.08.03 Insecure Permissions

Summary ABB Cylon ASPECT Studio is a graphical programming tool and integrated development environment IDE for ABB Cylon ASPECT products. It's used to engineer comprehensive area control and graphical user interface GUI solutions, containing a library of logical and graphical widgets. It allows...

7.3CVSS5.8AI score0.00132EPSS
Exploits2
Total number of security vulnerabilities1103