lyy289065406

8 exploits Active since Sep 2019
CVE-2021-22192 NOMISEC CRITICAL WORKING POC
GitLab CE/EE <13.2 - Authenticated RCE
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server.
36 stars
CVSS 9.9
CVE-2020-13277 NOMISEC MEDIUM WORKING POC
GitLab CE/EE <13.0.5 - Info Disclosure
An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5
27 stars
CVSS 6.3
CVE-2019-5475 NOMISEC HIGH WORKING POC
Sonatype Nexus Repository Manager 2.0-2.14.8 - Remote Code Execution via Yum Configuration Capability
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
4 stars
CVSS 8.8
CVE-2019-15588 NOMISEC HIGH SUSPICIOUS
Nexus Repository Manager <= 2.14.14 - OS Command Injection via CommandLineExecutor.java
There is an OS Command Injection in Nexus Repository Manager <= 2.14.14 (bypass CVE-2019-5475) that could allow an attacker a Remote Code Execution (RCE). All instances using CommandLineExecutor.java with user-supplied data is vulnerable, such as the Yum Configuration Capability.
CVSS 7.2
CVE-2021-22192 INTHEWILD CRITICAL WORKING POC
GitLab CE/EE <13.2 - Authenticated RCE
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server.
CVSS 9.9
CVE-2019-5475 INTHEWILD HIGH WORKING POC
Sonatype Nexus Repository Manager 2.0-2.14.8 - Remote Code Execution via Yum Configuration Capability
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability.
CVSS 8.8
CVE-2020-13277 INTHEWILD MEDIUM WORKING POC
GitLab CE/EE <13.0.5 - Info Disclosure
An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5
CVSS 6.3
CVE-2020-13933 INTHEWILD HIGH WORKING POC
Apache Shiro < 1.6.0 - Authentication Bypass via Specially Crafted HTTP Request
Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass.
CVSS 7.5