Tenable NS

6 exploits Active since Dec 2004
EIP-2026-117548 EXPLOITDB c++ WORKING POC
Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass)
EIP-2026-116224 EXPLOITDB text WORKING POC
Schneider Electric InduSoft Web Studio and InTouch Machine Edition - Denial of Service
CVE-2007-0168 EXPLOITDB perl WORKING POC
CA BrightStor ARCserve <11.5 - RCE
The Tape Engine service in Computer Associates (CA) BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allows remote attackers to execute arbitrary code via certain data in opnum 0xBF in an RPC request, which is directly executed.
CVE-2004-1584 EXPLOITDB text SCANNER
WordPress 1.2 - HTTP Response Splitting
CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.
CVE-2012-6272 EXPLOITDB text WORKING POC
Dell Openmanage Server Administrator - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/index_main.htm in (1) help/sm/en/Output/wwhelp/wwhimpl/js/, (2) help/sm/es/Output/wwhelp/wwhimpl/js/, (3) help/sm/ja/Output/wwhelp/wwhimpl/js/, (4) help/sm/de/Output/wwhelp/wwhimpl/js/, (5) help/sm/fr/Output/wwhelp/wwhimpl/js/, (6) help/sm/zh/Output/wwhelp/wwhimpl/js/, (7) help/hip/en/msgguide/wwhelp/wwhimpl/js/, or (8) help/hip/en/msgguide/wwhelp/wwhimpl/common/.
CVE-2018-1160 EXPLOITDB CRITICAL python WORKING POC
Netatalk <3.1.12 - RCE
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.
CVSS 9.8