#ExploitObserverAlert
CVE-2019-1003029
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2019-1003029. A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.
FIRST-EPSS: 0.011400000
NVD-IS: 6.0
NVD-ES: 3.1
CVE-2019-1003029
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2019-1003029. A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.
FIRST-EPSS: 0.011400000
NVD-IS: 6.0
NVD-ES: 3.1
#ExploitObserverAlert
CVE-2023-38646
DESCRIPTION: Exploit Observer has 78 entries related to CVE-2023-38646. Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary commands on the server, at the server's privilege level. Authentication is not required for exploitation. The other fixed versions are 0.45.4.1, 1.45.4.1, 0.44.7.1, 1.44.7.1, 0.43.7.2, and 1.43.7.2.
FIRST-EPSS: 0.604450000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-38646
DESCRIPTION: Exploit Observer has 78 entries related to CVE-2023-38646. Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary commands on the server, at the server's privilege level. Authentication is not required for exploitation. The other fixed versions are 0.45.4.1, 1.45.4.1, 0.44.7.1, 1.44.7.1, 0.43.7.2, and 1.43.7.2.
FIRST-EPSS: 0.604450000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-1000861
DESCRIPTION: Exploit Observer has 66 entries related to CVE-2018-1000861. A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that allows attackers to invoke some methods on Java objects by accessing crafted URLs that were not intended to be invoked this way.
FIRST-EPSS: 0.971120000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2018-1000861
DESCRIPTION: Exploit Observer has 66 entries related to CVE-2018-1000861. A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that allows attackers to invoke some methods on Java objects by accessing crafted URLs that were not intended to be invoked this way.
FIRST-EPSS: 0.971120000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-5069
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5069. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5069
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5069. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2012-2399
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2012-2399. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a different vulnerability than CVE-2012-3414.
FIRST-EPSS: 0.014630000
NVD-IS: 10.0
NVD-ES: 10.0
CVE-2012-2399
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2012-2399. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a different vulnerability than CVE-2012-3414.
FIRST-EPSS: 0.014630000
NVD-IS: 10.0
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2016-2331
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2331. The web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 has a default password, which makes it easier for remote attackers to obtain access via unspecified vectors.
FIRST-EPSS: 0.004230000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-2331
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2331. The web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 has a default password, which makes it easier for remote attackers to obtain access via unspecified vectors.
FIRST-EPSS: 0.004230000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-2333
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2333. SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 use the same hardcoded encryption key across different customers' installations, which allows attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
FIRST-EPSS: 0.000860000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2016-2333
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2333. SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 use the same hardcoded encryption key across different customers' installations, which allows attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
FIRST-EPSS: 0.000860000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-0674
DESCRIPTION: Exploit Observer has 35 entries related to CVE-2020-0674. A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0713, CVE-2020-0767.
FIRST-EPSS: 0.974230000
NVD-IS: 5.9
NVD-ES: 1.6
CVE-2020-0674
DESCRIPTION: Exploit Observer has 35 entries related to CVE-2020-0674. A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0713, CVE-2020-0767.
FIRST-EPSS: 0.974230000
NVD-IS: 5.9
NVD-ES: 1.6
#ExploitObserverAlert
CVE-2013-2205
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2013-2205. The default configuration of SWFUpload in WordPress before 3.5.2 has an unrestrictive security.allowDomain setting, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site.
FIRST-EPSS: 0.002420000
NVD-IS: 2.9
NVD-ES: 8.6
CVE-2013-2205
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2013-2205. The default configuration of SWFUpload in WordPress before 3.5.2 has an unrestrictive security.allowDomain setting, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site.
FIRST-EPSS: 0.002420000
NVD-IS: 2.9
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2016-5070
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5070. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5070
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5070. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-5066
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5066. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5066
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5066. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-2332
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2332. flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 allows remote authenticated users to execute arbitrary commands via the 5066 (aka dnsmasq) parameter.
FIRST-EPSS: 0.003040000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2016-2332
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2332. flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 allows remote authenticated users to execute arbitrary commands via the 5066 (aka dnsmasq) parameter.
FIRST-EPSS: 0.003040000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-9284
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2015-9284. The request phase of the OmniAuth Ruby gem (1.9.1 and earlier) is vulnerable to Cross-Site Request Forgery when used as part of the Ruby on Rails framework, allowing accounts to be connected without user intent, user interaction, or feedback to the user. This permits a secondary account to be able to sign into the web application as the primary account.
FIRST-EPSS: 0.001380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2015-9284
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2015-9284. The request phase of the OmniAuth Ruby gem (1.9.1 and earlier) is vulnerable to Cross-Site Request Forgery when used as part of the Ruby on Rails framework, allowing accounts to be connected without user intent, user interaction, or feedback to the user. This permits a secondary account to be able to sign into the web application as the primary account.
FIRST-EPSS: 0.001380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2019-10392
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2019-10392. Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection.
FIRST-EPSS: 0.947360000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2019-10392
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2019-10392. Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection.
FIRST-EPSS: 0.947360000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-7450
DESCRIPTION: Exploit Observer has 55 entries related to CVE-2015-7450. Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the Apache Commons Collections library.
FIRST-EPSS: 0.973900000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2015-7450
DESCRIPTION: Exploit Observer has 55 entries related to CVE-2015-7450. Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the Apache Commons Collections library.
FIRST-EPSS: 0.973900000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-1003001
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2019-1003001. A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.61 and earlier in src/main/java/org/jenkinsci/plugins/workflow/cps/CpsFlowDefinition.java, src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShellFactory.java that allows attackers with Overall/Read permission to provide a pipeline script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.
FIRST-EPSS: 0.796510000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2019-1003001
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2019-1003001. A sandbox bypass vulnerability exists in Pipeline: Groovy Plugin 2.61 and earlier in src/main/java/org/jenkinsci/plugins/workflow/cps/CpsFlowDefinition.java, src/main/java/org/jenkinsci/plugins/workflow/cps/CpsGroovyShellFactory.java that allows attackers with Overall/Read permission to provide a pipeline script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.
FIRST-EPSS: 0.796510000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-5068
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5068. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5068
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5068. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-29464
DESCRIPTION: Exploit Observer has 96 entries related to CVE-2022-29464. Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/server/webapps directory. This affects WSO2 API Manager 2.2.0 up to 4.0.0, WSO2 Identity Server 5.2.0 up to 5.11.0, WSO2 Identity Server Analytics 5.4.0, 5.4.1, 5.5.0 and 5.6.0, WSO2 Identity Server as Key Manager 5.3.0 up to 5.11.0, WSO2 Enterprise Integrator 6.2.0 up to 6.6.0, WSO2 Open Banking AM 1.4.0 up to 2.0.0 and WSO2 Open Banking KM 1.4.0, up to 2.0.0.
FIRST-EPSS: 0.973640000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-29464
DESCRIPTION: Exploit Observer has 96 entries related to CVE-2022-29464. Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/server/webapps directory. This affects WSO2 API Manager 2.2.0 up to 4.0.0, WSO2 Identity Server 5.2.0 up to 5.11.0, WSO2 Identity Server Analytics 5.4.0, 5.4.1, 5.5.0 and 5.6.0, WSO2 Identity Server as Key Manager 5.3.0 up to 5.11.0, WSO2 Enterprise Integrator 6.2.0 up to 6.6.0, WSO2 Open Banking AM 1.4.0 up to 2.0.0 and WSO2 Open Banking KM 1.4.0, up to 2.0.0.
FIRST-EPSS: 0.973640000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2001-0680
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2001-0680. Directory traversal vulnerability in ftpd in QPC QVT/Net 4.0 and AVT/Term 5.0 allows a remote attacker to traverse directories on the web server via a "dot dot" attack in a LIST (ls) command.
FIRST-EPSS: 0.286570000
NVD-IS: 2.9
NVD-ES: 10.0
CVE-2001-0680
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2001-0680. Directory traversal vulnerability in ftpd in QPC QVT/Net 4.0 and AVT/Term 5.0 allows a remote attacker to traverse directories on the web server via a "dot dot" attack in a LIST (ls) command.
FIRST-EPSS: 0.286570000
NVD-IS: 2.9
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2021-31630
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2021-31630. Command Injection in Open PLC Webserver v3 allows remote attackers to execute arbitrary code via the "Hardware Layer Code Box" component on the "/hardware" page of the application.
FIRST-EPSS: 0.005360000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-31630
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2021-31630. Command Injection in Open PLC Webserver v3 allows remote attackers to execute arbitrary code via the "Hardware Layer Code Box" component on the "/hardware" page of the application.
FIRST-EPSS: 0.005360000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2019-12725
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2019-12725. Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exploit this issue by injecting OS commands inside the vulnerable parameters.
FIRST-EPSS: 0.960080000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2019-12725
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2019-12725. Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exploit this issue by injecting OS commands inside the vulnerable parameters.
FIRST-EPSS: 0.960080000
NVD-IS: 5.9
NVD-ES: 3.9