barttran2k

2 exploits Active since Sep 2024
CVE-2024-46256 NOMISEC CRITICAL WORKING POC
NginxProxyManager 2.11.3 - Remote Code Execution via Let's Encrypt Certificate Request
A Command injection vulnerability in requestLetsEncryptSsl in NginxProxyManager 2.11.3 allows an attacker to RCE via Add Let's Encrypt Certificate.
6 stars
CVSS 9.8
CVE-2024-46257 WRITEUP MEDIUM WORKING POC
NginxProxyManager 2.11.3 - Remote Code Execution via Let's Encrypt Certificate Request
A Command injection vulnerability in requestLetsEncryptSslWithDnsChallenge in NginxProxyManager 2.11.3 allows an attacker to achieve remote code execution via Add Let's Encrypt Certificate. NOTE: this is not part of any NGINX software shipped by F5.
CVSS 6.3