kelemao - Security Researcher - Exploit Intelligence Platform

CVE-2021-46422 NOMISEC CRITICAL WORKING POC

Telesquare SDT-CW3B1 1.1.0 - Command Injection

Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.

2 stars

CVSS 9.8

View Code

CVE-2022-26134 NOMISEC CRITICAL WORKING POC

Confluence - Remote Code Execution

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are from 1.3.0 before 7.4.17, from 7.13.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and from 7.18.0 before 7.18.1.

1 stars

CVSS 9.8

View Code

CVE-2021-46422 NOMISEC CRITICAL WORKING POC

Telesquare SDT-CW3B1 1.1.0 - Command Injection

Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.

CVSS 9.8

View Code

CVE-2022-26134 NOMISEC CRITICAL WORKING POC

Confluence - Remote Code Execution

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are from 1.3.0 before 7.4.17, from 7.13.0 before 7.13.7, from 7.14.0 before 7.14.3, from 7.15.0 before 7.15.2, from 7.16.0 before 7.16.4, from 7.17.0 before 7.17.4, and from 7.18.0 before 7.18.1.

CVSS 9.8

View Code