#ExploitObserverAlert
CVE-2016-4385
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2016-4385. The RMI service in HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) and Commons BeanUtils libraries.
FIRST-EPSS: 0.070670000
NVD-IS: 3.4
NVD-ES: 3.9
CVE-2016-4385
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2016-4385. The RMI service in HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) and Commons BeanUtils libraries.
FIRST-EPSS: 0.070670000
NVD-IS: 3.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-49639
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49639. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customer_details' parameter of the buyer_invoice_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-49639
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49639. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customer_details' parameter of the buyer_invoice_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-17240
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2018-17240. There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an unauthenticated attacker to exfiltrate sensitive information from the network configuration (e.g., username and password).
FIRST-EPSS: 0.002190000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2018-17240
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2018-17240. There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an unauthenticated attacker to exfiltrate sensitive information from the network configuration (e.g., username and password).
FIRST-EPSS: 0.002190000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-3287
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-3287. Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution due to a general bypass in the deserialization class.
FIRST-EPSS: 0.373730000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-3287
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-3287. Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution due to a general bypass in the deserialization class.
FIRST-EPSS: 0.373730000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-51154
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-51154. Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php.
CVE-2023-51154
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-51154. Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php.
#ExploitObserverAlert
CVE-2023-49633
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49633. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'buyer_address' parameter of the buyer_detail_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-49633
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49633. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'buyer_address' parameter of the buyer_detail_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-4589
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4589. IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 184585.
FIRST-EPSS: 0.004210000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-4589
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4589. IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 184585.
FIRST-EPSS: 0.004210000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-5pq7-52mg-hr42
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-5PQ7-52MG-HR42. I found "multipart/form-data request tampering vulnerability" caused by Content-Disposition "filename" lack of escaping in httparty.
GHSS: 6.5
GHSA-5pq7-52mg-hr42
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-5PQ7-52MG-HR42. I found "multipart/form-data request tampering vulnerability" caused by Content-Disposition "filename" lack of escaping in httparty.
GHSS: 6.5
#ExploitObserverAlert
CVE-2021-36369
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-36369. An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2 tokens or SSH-Askpass. Thus, it allows an attacker to abuse a forwarded agent for logging on to another server unnoticed.
FIRST-EPSS: 0.000870000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-36369
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-36369. An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2 tokens or SSH-Askpass. Thus, it allows an attacker to abuse a forwarded agent for logging on to another server unnoticed.
FIRST-EPSS: 0.000870000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-4521
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4521. IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.
FIRST-EPSS: 0.009200000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-4521
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4521. IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.
FIRST-EPSS: 0.009200000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-8765
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2015-8765. Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.006040000
NVD-IS: 3.7
NVD-ES: 3.9
CVE-2015-8765
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2015-8765. Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.006040000
NVD-IS: 3.7
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-5878
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2017-5878. The AMF unmarshallers in Red5 Media Server before 1.0.8 do not restrict the classes for which it performs deserialization, which allows remote attackers to execute arbitrary code via crafted serialized Java data.
FIRST-EPSS: 0.008450000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2017-5878
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2017-5878. The AMF unmarshallers in Red5 Media Server before 1.0.8 do not restrict the classes for which it performs deserialization, which allows remote attackers to execute arbitrary code via crafted serialized Java data.
FIRST-EPSS: 0.008450000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-w7jx-j77m-wp65
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-W7JX-J77M-WP65. A cross-site scripting (XSS) vulnerability was discovered in the URL sanitization logic of the core parser. The vulnerability allowed arbitrary JavaScript execution when inserting a specially crafted piece of content into the editor using the clipboard or APIs. This impacts all users who are using TinyMCE 5.5.1 or lower.
GHSA-w7jx-j77m-wp65
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-W7JX-J77M-WP65. A cross-site scripting (XSS) vulnerability was discovered in the URL sanitization logic of the core parser. The vulnerability allowed arbitrary JavaScript execution when inserting a specially crafted piece of content into the editor using the clipboard or APIs. This impacts all users who are using TinyMCE 5.5.1 or lower.
#ExploitObserverAlert
CVE-2018-8018
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2018-8018. In Apache Ignite before 2.4.8 and 2.5.x before 2.5.3, the serialization mechanism does not have a list of classes allowed for serialization/deserialization, which makes it possible to run arbitrary code when 3-rd party vulnerable classes are present in Ignite classpath. The vulnerability can be exploited if the one sends a specially prepared form of a serialized object to GridClientJdkMarshaller deserialization endpoint.
FIRST-EPSS: 0.023360000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2018-8018
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2018-8018. In Apache Ignite before 2.4.8 and 2.5.x before 2.5.3, the serialization mechanism does not have a list of classes allowed for serialization/deserialization, which makes it possible to run arbitrary code when 3-rd party vulnerable classes are present in Ignite classpath. The vulnerability can be exploited if the one sends a specially prepared form of a serialized object to GridClientJdkMarshaller deserialization endpoint.
FIRST-EPSS: 0.023360000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-0958
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2016-0958. Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an unspecified impact via a crafted serialized Java object.
FIRST-EPSS: 0.003910000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2016-0958
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2016-0958. Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an unspecified impact via a crafted serialized Java object.
FIRST-EPSS: 0.003910000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-10917
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-10917. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-10007.
FIRST-EPSS: 0.009370000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-10917
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-10917. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NEC ESMPRO Manager 6.42. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RMI service. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-10007.
FIRST-EPSS: 0.009370000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-50866
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-50866. Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the loginAction.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-50866
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-50866. Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the loginAction.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-6493
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-6493. The Depicter Slider – Responsive Image Slider, Video Slider & Post Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.6. This is due to missing or incorrect nonce validation on the 'save' function. This makes it possible for unauthenticated attackers to modify the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. CVE-2023-51491 appears to be a duplicate of this issue.
CVE-2023-6493
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-6493. The Depicter Slider – Responsive Image Slider, Video Slider & Post Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.6. This is due to missing or incorrect nonce validation on the 'save' function. This makes it possible for unauthenticated attackers to modify the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. CVE-2023-51491 appears to be a duplicate of this issue.
#ExploitObserverAlert
CVE-2023-5203
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-5203. The WP Sessions Time Monitoring Full Automatic WordPress plugin before 1.0.9 does not sanitize the request URL or query parameters before using them in an SQL query, allowing unauthenticated attackers to extract sensitive data from the database via blind time based SQL injection techniques, or in some cases an error/union based technique.
FIRST-EPSS: 0.001900000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2023-5203
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-5203. The WP Sessions Time Monitoring Full Automatic WordPress plugin before 1.0.9 does not sanitize the request URL or query parameters before using them in an SQL query, allowing unauthenticated attackers to extract sensitive data from the database via blind time based SQL injection techniques, or in some cases an error/union based technique.
FIRST-EPSS: 0.001900000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-50743
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-50743. Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the registration.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-50743
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-50743. Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the registration.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-12634
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2017-12634. The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.
FIRST-EPSS: 0.003610000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2017-12634
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2017-12634. The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.
FIRST-EPSS: 0.003610000
NVD-IS: 5.9
NVD-ES: 3.9