XunM

2 exploits Active since Nov 2025

CVE-2025-63749 WRITEUP MEDIUM WRITEUP

pnetlab <5.3.11 - Command Injection

pnetlab 5.3.11 is vulnerable to Command Injection via the qemu_options parameter.

CVSS 6.5

View Code

CVE-2025-67442 WRITEUP HIGH WRITEUP

EVE-NG 6.4.0-13-PRO - Authenticated Directory Traversal via Export API

EVE-NG 6.4.0-13-PRO is vulnerable to Directory Traversal. The /api/export interface allows authenticated users to export lab files. This interface lacks effective input validation and filtering when processing file path parameters submitted by users.

CVSS 7.6

View Code