nn0nkey

11 exploits Active since Aug 2024
CVE-2025-65964 NOMISEC HIGH STUB
n8n 0.123.1-1.119.1 - Remote Code Execution via Git Hook Path Manipulation
n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 do not have adequate protections to prevent RCE through the project's pre-commit hooks. The Add Config operation allows workflows to set arbitrary Git configuration values, including core.hooksPath, which can point to a malicious Git hook that executes arbitrary commands on the n8n host during subsequent Git operations. Exploitation requires the ability to create or modify an n8n workflow using the Git node. This issue is fixed in version 1.119.2. Workarounds include excluding the Git Node (Docs) and avoiding cloning or interacting with untrusted repositories using the Git Node.
CVSS 8.8
CVE-2026-7711 WRITEUP HIGH WRITEUP
MindsDB Engine proc_wrapper.py exec unrestricted upload
A weakness has been identified in MindsDB up to 26.01. This impacts the function exec of the file mindsdb/integrations/handlers/byom_handler/proc_wrapper.py of the component Engine Handler. Executing a manipulation can lead to unrestricted upload. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 7.3
CVE-2026-7712 WRITEUP MEDIUM WORKING POC
MindsDB Pickle pickle.loads deserialization
A security vulnerability has been detected in MindsDB up to 26.01. Affected is the function pickle.loads of the component Pickle Handler. The manipulation leads to deserialization. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 6.3
CVE-2024-11210 WRITEUP MEDIUM WRITEUP
EyouCMS 1.51 - Path Traversal via FilemanagerLogic.php editFile Function
A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the function editFile of the file application/admin/logic/FilemanagerLogic.php. The manipulation of the argument activepath leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 5.4
CVE-2024-44916 WRITEUP HIGH WORKING POC
Seacms v13.1 - OS Command Injection via admin_ip.php IP Parameter
Vulnerability in admin_ip.php in Seacms v13.1, when action=set, allows attackers to control IP parameters that are written to the data/admin/ip.php file and could result in arbitrary command execution.
CVSS 7.2
CVE-2024-44918 WRITEUP LOW WRITEUP
SeaCMS 12.9 - Cross-Site Scripting in admin_datarelate.php
A cross-site scripting (XSS) vulnerability in the component admin_datarelate.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVSS 3.5
CVE-2024-44919 WRITEUP MEDIUM WRITEUP
SeaCMS 12.9 - Stored Cross-Site Scripting in admin_ads.php via Ad Description Parameter
A cross-site scripting (XSS) vulnerability in the component admin_ads.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the ad description parameter.
CVSS 5.4
CVE-2024-44920 WRITEUP MEDIUM WRITEUP
SeaCMS 12.9 - Stored Cross-Site Scripting via admin_collect_news.php siteurl Parameter
A cross-site scripting (XSS) vulnerability in the component admin_collect_news.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the siteurl parameter.
CVSS 6.1
CVE-2024-44921 WRITEUP CRITICAL WRITEUP
SeaCMS v12.9 - SQL Injection via id Parameter
SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del.
CVSS 9.8
CVE-2024-48112 WRITEUP CRITICAL WORKING POC
Thinkphp 6.1.3-8.0.4 - Remote Code Execution via Deserialization in Index.php Controller
A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.
CVSS 9.8
CVE-2025-8775 WRITEUP MEDIUM WORKING POC
Qiyuesuo Electronic Signature Platform <= 4.34 - Unrestricted File Upload via Scheduled Task Handler
A vulnerability was found in Qiyuesuo Eelectronic Signature Platform up to 4.34 and classified as critical. Affected by this issue is the function execute of the file /api/code/upload of the component Scheduled Task Handler. The manipulation of the argument File leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS 6.3