#ExploitObserverAlert
CVE-2020-7666
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2020-7666. This affects all versions of package github.com/u-root/u-root/pkg/cpio. It is vulnerable to leading, non-leading relative path traversal attacks and symlink based (relative and absolute) path traversal attacks in cpio file extraction.
FIRST-EPSS: 0.000930000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.7780067
CVE-2020-7666
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2020-7666. This affects all versions of package github.com/u-root/u-root/pkg/cpio. It is vulnerable to leading, non-leading relative path traversal attacks and symlink based (relative and absolute) path traversal attacks in cpio file extraction.
FIRST-EPSS: 0.000930000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.7780067
#ExploitObserverAlert
CVE-2020-24914
DESCRIPTION: Exploit Observer has 13 entries in 4 file formats related to CVE-2020-24914. A PHP object injection bug in profile.php in qcubed (all versions including 3.1.1) unserializes the untrusted data of the POST-variable "strProfileData" and allows an unauthenticated attacker to execute code via a crafted POST request.
FIRST-EPSS: 0.016790000
NVD-IS: 5.9
NVD-ES: 3.9
ARPS-PRIORITY: 0.8646988
CVE-2020-24914
DESCRIPTION: Exploit Observer has 13 entries in 4 file formats related to CVE-2020-24914. A PHP object injection bug in profile.php in qcubed (all versions including 3.1.1) unserializes the untrusted data of the POST-variable "strProfileData" and allows an unauthenticated attacker to execute code via a crafted POST request.
FIRST-EPSS: 0.016790000
NVD-IS: 5.9
NVD-ES: 3.9
ARPS-PRIORITY: 0.8646988
#ExploitObserverAlert
CVE-2018-5233
DESCRIPTION: Exploit Observer has 14 entries in 6 file formats related to CVE-2018-5233. Cross-site scripting (XSS) vulnerability in system/src/Grav/Common/Twig/Twig.php in Grav CMS before 1.3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/tools.
FIRST-EPSS: 0.002940000
NVD-IS: 2.7
NVD-ES: 2.8
ARPS-PRIORITY: 0.9571319
CVE-2018-5233
DESCRIPTION: Exploit Observer has 14 entries in 6 file formats related to CVE-2018-5233. Cross-site scripting (XSS) vulnerability in system/src/Grav/Common/Twig/Twig.php in Grav CMS before 1.3.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/tools.
FIRST-EPSS: 0.002940000
NVD-IS: 2.7
NVD-ES: 2.8
ARPS-PRIORITY: 0.9571319
#ExploitObserverAlert
WLB-2024040063
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040063. Palo Alto PAN-OS Command Execution / Arbitrary File Creation.
ARPS-PRIORITY: 0.8504802
WLB-2024040063
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040063. Palo Alto PAN-OS Command Execution / Arbitrary File Creation.
ARPS-PRIORITY: 0.8504802
#ExploitObserverAlert
CVE-2015-2068
DESCRIPTION: Exploit Observer has 13 entries in 7 file formats related to CVE-2015-2068. Multiple cross-site scripting (XSS) vulnerabilities in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allow remote attackers to inject arbitrary web script or HTML via the (1) profile parameter to web/magmi.php or (2) QUERY_STRING to web/magmi_import_run.php.
FIRST-EPSS: 0.001460000
NVD-IS: 2.9
NVD-ES: 8.6
ARPS-PRIORITY: 0.9744999
CVE-2015-2068
DESCRIPTION: Exploit Observer has 13 entries in 7 file formats related to CVE-2015-2068. Multiple cross-site scripting (XSS) vulnerabilities in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allow remote attackers to inject arbitrary web script or HTML via the (1) profile parameter to web/magmi.php or (2) QUERY_STRING to web/magmi_import_run.php.
FIRST-EPSS: 0.001460000
NVD-IS: 2.9
NVD-ES: 8.6
ARPS-PRIORITY: 0.9744999
#ExploitObserverAlert
CVE-2019-6799
DESCRIPTION: Exploit Observer has 17 entries in 10 file formats related to CVE-2019-6799. An issue was discovered in phpMyAdmin before 4.8.5. When the AllowArbitraryServer configuration setting is set to true, with the use of a rogue MySQL server, an attacker can read any file on the server that the web server's user can access. This is related to the mysql.allow_local_infile PHP configuration, and the inadvertent ignoring of "options(MYSQLI_OPT_LOCAL_INFILE" calls.
FIRST-EPSS: 0.182900000
NVD-IS: 3.6
NVD-ES: 2.2
ARPS-PRIORITY: 0.9624088
CVE-2019-6799
DESCRIPTION: Exploit Observer has 17 entries in 10 file formats related to CVE-2019-6799. An issue was discovered in phpMyAdmin before 4.8.5. When the AllowArbitraryServer configuration setting is set to true, with the use of a rogue MySQL server, an attacker can read any file on the server that the web server's user can access. This is related to the mysql.allow_local_infile PHP configuration, and the inadvertent ignoring of "options(MYSQLI_OPT_LOCAL_INFILE" calls.
FIRST-EPSS: 0.182900000
NVD-IS: 3.6
NVD-ES: 2.2
ARPS-PRIORITY: 0.9624088
#ExploitObserverAlert
CVE-2018-10188
DESCRIPTION: Exploit Observer has 14 entries in 4 file formats related to CVE-2018-10188. phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to execute arbitrary SQL statements, related to js/db_operations.js, js/tbl_operations.js, libraries/classes/Operations.php, and sql.php.
FIRST-EPSS: 0.006300000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.8753146
CVE-2018-10188
DESCRIPTION: Exploit Observer has 14 entries in 4 file formats related to CVE-2018-10188. phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to execute arbitrary SQL statements, related to js/db_operations.js, js/tbl_operations.js, libraries/classes/Operations.php, and sql.php.
FIRST-EPSS: 0.006300000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.8753146
#ExploitObserverAlert
CVE-2020-29555
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2020-29555. The BackupDelete functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to delete arbitrary files on the underlying server by exploiting a path-traversal technique. (This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection.)
FIRST-EPSS: 0.000810000
NVD-IS: 5.2
NVD-ES: 2.8
ARPS-PRIORITY: 0.7616317
CVE-2020-29555
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2020-29555. The BackupDelete functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to delete arbitrary files on the underlying server by exploiting a path-traversal technique. (This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection.)
FIRST-EPSS: 0.000810000
NVD-IS: 5.2
NVD-ES: 2.8
ARPS-PRIORITY: 0.7616317
#ExploitObserverAlert
CVE-2019-16686
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2019-16686. Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin.
FIRST-EPSS: 0.000580000
NVD-IS: 2.7
NVD-ES: 2.3
ARPS-PRIORITY: 0.7616317
CVE-2019-16686
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2019-16686. Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin.
FIRST-EPSS: 0.000580000
NVD-IS: 2.7
NVD-ES: 2.3
ARPS-PRIORITY: 0.7616317
#ExploitObserverAlert
CVE-2020-29553
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2020-29553. The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin into visiting a malicious website (CSRF).
FIRST-EPSS: 0.001050000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.7616317
CVE-2020-29553
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2020-29553. The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin into visiting a malicious website (CSRF).
FIRST-EPSS: 0.001050000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.7616317
#ExploitObserverAlert
WLB-2024040064
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040064. Relate Learning And Teaching system Version before 2024.1 SSTI(Markup Sandbox function) lead to RCE.
ARPS-PRIORITY: 0.8504802
WLB-2024040064
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040064. Relate Learning And Teaching system Version before 2024.1 SSTI(Markup Sandbox function) lead to RCE.
ARPS-PRIORITY: 0.8504802
#ExploitObserverAlert
CVE-2023-25790
DESCRIPTION: Exploit Observer has 11 entries in 3 file formats related to CVE-2023-25790. Improper Authentication, Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in xtemos WoodMart allows Cross-Site Scripting (XSS).This issue affects WoodMart: from n/a through 7.0.4.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.865513
CVE-2023-25790
DESCRIPTION: Exploit Observer has 11 entries in 3 file formats related to CVE-2023-25790. Improper Authentication, Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in xtemos WoodMart allows Cross-Site Scripting (XSS).This issue affects WoodMart: from n/a through 7.0.4.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.865513
#ExploitObserverAlert
WLB-2024040065
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040065. FortiNet FortiClient EMS 7.2.2 / 7.0.10 SQL Injection / Remote Code Execution.
ARPS-PRIORITY: 0.8504802
WLB-2024040065
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040065. FortiNet FortiClient EMS 7.2.2 / 7.0.10 SQL Injection / Remote Code Execution.
ARPS-PRIORITY: 0.8504802
#ExploitObserverAlert
CVE-2019-16318
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2019-16318. In Pimcore before 5.7.1, an attacker with limited privileges can bypass file-extension restrictions via a 256-character filename, as demonstrated by the failure of automatic renaming of .php to .php.txt for long filenames, a different vulnerability than CVE-2019-10867 and CVE-2019-16317.
FIRST-EPSS: 0.001040000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.9530071
CVE-2019-16318
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2019-16318. In Pimcore before 5.7.1, an attacker with limited privileges can bypass file-extension restrictions via a 256-character filename, as demonstrated by the failure of automatic renaming of .php to .php.txt for long filenames, a different vulnerability than CVE-2019-10867 and CVE-2019-16317.
FIRST-EPSS: 0.001040000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.9530071
#ExploitObserverAlert
CVE-2018-11564
DESCRIPTION: Exploit Observer has 11 entries in 4 file formats related to CVE-2018-11564. Stored XSS in YOOtheme Pagekit 1.0.13 and earlier allows a user to upload malicious code via the picture upload feature. A user with elevated privileges could upload a photo to the system in an SVG format. This file will be uploaded to the system and it will not be stripped or filtered. The user can create a link on the website pointing to "/storage/poc.svg" that will point to http://localhost/pagekit/storage/poc.svg. When a user comes along to click that link, it will trigger a XSS attack.
FIRST-EPSS: 0.001790000
NVD-IS: 2.7
NVD-ES: 1.7
ARPS-PRIORITY: 0.8538082
CVE-2018-11564
DESCRIPTION: Exploit Observer has 11 entries in 4 file formats related to CVE-2018-11564. Stored XSS in YOOtheme Pagekit 1.0.13 and earlier allows a user to upload malicious code via the picture upload feature. A user with elevated privileges could upload a photo to the system in an SVG format. This file will be uploaded to the system and it will not be stripped or filtered. The user can create a link on the website pointing to "/storage/poc.svg" that will point to http://localhost/pagekit/storage/poc.svg. When a user comes along to click that link, it will trigger a XSS attack.
FIRST-EPSS: 0.001790000
NVD-IS: 2.7
NVD-ES: 1.7
ARPS-PRIORITY: 0.8538082
#ExploitObserverAlert
CVE-2022-3798
DESCRIPTION: Exploit Observer has 7 entries in 3 file formats related to CVE-2022-3798. A vulnerability classified as critical has been found in IBAX go-ibax. Affected is an unknown function of the file /api/v2/open/tablesInfo. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-212634 is the identifier assigned to this vulnerability.
FIRST-EPSS: 0.000930000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.9586814
CVE-2022-3798
DESCRIPTION: Exploit Observer has 7 entries in 3 file formats related to CVE-2022-3798. A vulnerability classified as critical has been found in IBAX go-ibax. Affected is an unknown function of the file /api/v2/open/tablesInfo. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-212634 is the identifier assigned to this vulnerability.
FIRST-EPSS: 0.000930000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.9586814
#ExploitObserverAlert
CVE-2020-12478
DESCRIPTION: Exploit Observer has 13 entries in 6 file formats related to CVE-2020-12478. TeamPass 2.1.27.36 allows an unauthenticated attacker to retrieve files from the TeamPass web root. This may include backups or LDAP debug files.
FIRST-EPSS: 0.014960000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.960217
CVE-2020-12478
DESCRIPTION: Exploit Observer has 13 entries in 6 file formats related to CVE-2020-12478. TeamPass 2.1.27.36 allows an unauthenticated attacker to retrieve files from the TeamPass web root. This may include backups or LDAP debug files.
FIRST-EPSS: 0.014960000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.960217
#ExploitObserverAlert
CVE-2018-12613
DESCRIPTION: Exploit Observer has 73 entries in 16 file formats related to CVE-2018-12613. An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. The vulnerability comes from a portion of code where pages are redirected and loaded within phpMyAdmin, and an improper test for whitelisted pages. An attacker must be authenticated, except in the "$cfg['AllowArbitraryServer'] = true" case (where an attacker can specify any host he/she is already in control of, and execute arbitrary code on phpMyAdmin) and the "$cfg['ServerDefault'] = 0" case (which bypasses the login requirement and runs the vulnerable code without any authentication).
FIRST-EPSS: 0.974070000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.976755
CVE-2018-12613
DESCRIPTION: Exploit Observer has 73 entries in 16 file formats related to CVE-2018-12613. An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. The vulnerability comes from a portion of code where pages are redirected and loaded within phpMyAdmin, and an improper test for whitelisted pages. An attacker must be authenticated, except in the "$cfg['AllowArbitraryServer'] = true" case (where an attacker can specify any host he/she is already in control of, and execute arbitrary code on phpMyAdmin) and the "$cfg['ServerDefault'] = 0" case (which bypasses the login requirement and runs the vulnerable code without any authentication).
FIRST-EPSS: 0.974070000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.976755
#ExploitObserverAlert
CVE-2022-3801
DESCRIPTION: Exploit Observer has 7 entries in 3 file formats related to CVE-2022-3801. A vulnerability, which was classified as critical, was found in IBAX go-ibax. This affects an unknown part of the file /api/v2/open/rowsInfo. The manipulation of the argument order leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-212637 was assigned to this vulnerability.
FIRST-EPSS: 0.000930000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.9586814
CVE-2022-3801
DESCRIPTION: Exploit Observer has 7 entries in 3 file formats related to CVE-2022-3801. A vulnerability, which was classified as critical, was found in IBAX go-ibax. This affects an unknown part of the file /api/v2/open/rowsInfo. The manipulation of the argument order leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-212637 was assigned to this vulnerability.
FIRST-EPSS: 0.000930000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.9586814
#ExploitObserverAlert
CVE-2020-13155
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2020-13155. clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI.
FIRST-EPSS: 0.002170000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.851574
CVE-2020-13155
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2020-13155. clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI.
FIRST-EPSS: 0.002170000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.851574
#ExploitObserverAlert
WLB-2024040062
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040062. Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution.
ARPS-PRIORITY: 0.8504802
WLB-2024040062
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024040062. Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution.
ARPS-PRIORITY: 0.8504802