Lucene search

B992B3E1-DF6B-5594-8A16-ED385E07A24C

HistoryMay 22, 2021 - 5:06 a.m.

Exploit for OS Command Injection in Zeroshell

2021-05-2205:06:33

339

python3.7

exploitation

batchscanning

showdocfileupload

fofa

multithreading

securitydisclaimer

EPSS

0.974

Percentile

99.9%

JSON

PocList

自写的漏洞POC和EXP合集。

POC脚本指定url文件后，可多线程批量扫描目标进行验证；EXP…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

checkpoint_advisories

Apache Druid Information Disclosure (CVE-2021-36749)

2022-02-02 00:00:00

Zeroshell Remote Code Execution (CVE-2019-12725)

2020-09-09 00:00:00

Atlassian Confluence Remote Code Execution (CVE-2021-26084)

2021-09-05 00:00:00

cnvd

Apache Druid LoadData has an arbitrary file reading vulnerability

2021-11-19 00:00:00

packetstorm

ZeroShell 3.9.0 Remote Command Execution

2021-05-13 00:00:00

ZeroShell 3.9.0 Remote Command Execution

2020-11-24 00:00:00

Atlassian Confluence WebWork OGNL Injection

2021-09-10 00:00:00

attackerkb

CVE-2019-12725

2019-07-19 00:00:00

CVE-2021-26084 Confluence Server OGNL injection

2021-08-10 00:00:00

CVE-2020-14883 — Authenticated RCE in Console component of Oracle WebLogic Server

2020-10-21 00:00:00

githubexploit

Exploit for OS Command Injection in Zeroshell

2021-04-27 03:36:33

Exploit for OS Command Injection in Zeroshell

2021-06-13 23:57:37

Exploit for OS Command Injection in Zeroshell

2021-06-29 06:24:22

veracode

Information Disclosure

2021-09-27 04:04:57

zdt

ZeroShell 3.9.0 - (cgi-bin/kerbynet) Remote Root Command Injection Exploit

2020-11-24 00:00:00

ZeroShell 3.9.0 - Remote Command Execution Exploit

2021-05-13 00:00:00

Confluence Server 7.12.4 - (OGNL injection) Remote Code Execution Exploit

2021-09-01 00:00:00

exploitdb

ZeroShell 3.9.0 - 'cgi-bin/kerbynet' Remote Root Command Injection (Metasploit)

2020-11-24 00:00:00

ZeroShell 3.9.0 - Remote Command Execution

2021-05-13 00:00:00

Confluence Server 7.12.4 - 'OGNL injection' Remote Code Execution (RCE) (Unauthenticated)

2021-09-01 00:00:00

openvas

ZeroShell < 3.9.3 RCE Vulnerability

2020-10-19 00:00:00

cvelist

CVE-2019-12725

2019-07-19 22:17:52

CVE-2021-26084

2021-08-30 06:30:14

CVE-2021-36749 Apache Druid: The HTTP inputSource allows authenticated users to read data from other sources than intended (incomplete fix of CVE-2021-26920)

2021-09-24 09:30:11

nvd

CVE-2019-12725

2019-07-19 23:15:10

CVE-2021-26084

2021-08-30 07:15:06

CVE-2021-36749

2021-09-24 10:15:07

nuclei

Zeroshell 3.9.0 - Remote Command Execution

2020-11-26 04:24:02

Confluence Server - Remote Code Execution

2021-08-31 20:40:27

Apache Druid - Local File Inclusion

2021-10-25 12:00:48

prion

Command injection

2019-07-19 23:15:00

Code injection

2021-08-30 07:15:00

Privilege escalation

2021-09-24 10:15:00

cve

CVE-2019-12725

2019-07-19 23:15:10

CVE-2021-26084

2021-08-30 07:15:06

CVE-2021-36749

2021-09-24 10:15:07

thn

U.S. Cyber Command Warns of Ongoing Attacks Exploiting Atlassian Confluence Flaw

2021-09-04 07:19:00

Atlassian Confluence RCE Flaw Abused in Multiple Cyberattack Campaigns

2021-09-28 15:31:00

Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server

2021-09-07 10:05:00

rapid7blog

Metasploit Wrap-Up

2021-10-22 14:25:55

Active Exploitation of Confluence Server & Confluence Data Center: CVE-2021-26084

2021-09-02 15:44:36

Metasploit Wrap-Up

2021-09-10 18:32:40

hackerone

U.S. Dept Of Defense: RCE on ███████ [CVE-2021-26084]

2021-09-02 02:58:10

U.S. Dept Of Defense: RCE in ███ [CVE-2021-26084]

2021-09-02 05:49:27

trendmicroblog

Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage

2021-09-21 00:00:00

Tracking CVE-2021-26084 and Other Server-Based Vulnerability Exploits via Trend Micro Cloud One and Trend Micro Vision One

2021-10-18 00:00:00

Tracking CVE-2021-26084 and Other Server-Based Vulnerability Exploits via Trend Micro Cloud One and Trend Micro Vision One

2021-10-18 00:00:00

akamaiblog

Confluence Server Webwork OGNL Injection (CVE-2021-26084): How Akamai Helps You Protect Against Zero-Day Attacks

2021-09-15 07:00:00

Confluence Server Webwork OGNL Injection (CVE-2021-26084): How Akamai Helps You Protect Against Zero-Day Attacks

2021-09-15 07:00:00

cisa

Atlassian Releases Security Updates for Confluence Server and Data Center

2021-09-03 00:00:00

atlassian

Confluence Server Webwork OGNL injection - CVE-2021-26084

2021-07-27 05:13:48

RCE on Confluence Data Center via OGNL Injection - CVE-2021-39114

2021-08-27 03:55:57

Confluence Server Webwork OGNL injection - CVE-2021-26084

2021-07-27 05:13:48

nessus

Atlassian Confluence Server Webwork OGNL Injection (CVE-2021-26084)

2021-09-07 00:00:00

Atlassian Confluence < 6.13.23 / 6.14 < 7.4.11 / 7.5 < 7.11.6 / 7.12 < 7.12.5 Webwork OGNL Injection (CONFSERVER-67940)

2021-08-26 00:00:00

Apache Druid < 0.22.0 Incorrect Authorization

2023-09-20 00:00:00

threatpost

Log4JShell Used to Swarm VMware Servers with Miners, Backdoors

2022-03-29 20:33:08

Jenkins Hit as Atlassian Confluence Cyberattacks Widen

2021-09-07 16:07:58

Zoho ManageEngine Password Manager Zero-Day Gets Fix

2021-09-09 12:58:48

metasploit

Atlassian Confluence WebWork OGNL Injection

2021-10-14 21:58:04

cisa_kev

Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability

2021-11-03 00:00:00

redhatcve

CVE-2021-36749

2021-09-24 17:31:48

osv

CVE-2021-36749

2021-09-24 10:15:07

Druid ingestion system Authenticated users can read data from other sources than intended

2021-09-27 20:13:25

github

Druid ingestion system Authenticated users can read data from other sources than intended

2021-09-27 20:13:25

Bypassing OGNL sandboxes for fun and charities

2023-01-27 16:00:49

impervablog

2021 in Review, Part 2: 5 Top Cybersecurity Stories

2021-12-29 12:03:19

New Sysrv Botnet Variant Makes Use of Google Subdomain to Spread XMRig Miner

2024-03-20 16:56:29

Attackers Quick to Weaponize CVE-2023-22527 for Malware Delivery

2024-02-21 09:28:01

hivepro

Cerber targeting organizations with publicly available exploits

2021-12-14 13:50:15

malwarebytes

Update now! Atlassian Confluence vulnerability is being actively exploited

2023-10-12 04:00:00

2022's most routinely exploited vulnerabilities—history repeats

2023-08-07 18:30:00

The top 5 most routinely exploited vulnerabilities of 2021

2022-04-29 16:28:20

mmpc

Cadet Blizzard emerges as a novel and distinct Russian threat actor

2023-06-14 16:00:00

Guidance for preventing, detecting, and hunting for exploitation of the Log4j 2 vulnerability

2021-12-12 05:29:03

mssecure

Cadet Blizzard emerges as a novel and distinct Russian threat actor

2023-06-14 16:00:00

Guidance for preventing, detecting, and hunting for exploitation of the Log4j 2 vulnerability

2021-12-12 05:29:03

ics

People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action

2024-07-08 12:00:00

Russian Military Cyber Actors Target US and Global Critical Infrastructure

2024-09-05 12:00:00

Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors

2022-10-06 12:00:00

avleonov

Security News: Microsoft Patch Tuesday September 2021, OMIGOD, MSHTML RCE, Confluence RCE, Ghostscript RCE, FORCEDENTRY Pegasus

2021-09-18 23:22:00

Joint Advisory AA22-279A and Vulristics

2022-10-21 20:10:13

qualysblog

Qualys Tackles 2022’s Top Routinely Exploited Cyber Vulnerabilities

2023-08-24 19:07:05

CISA Alert: Top 15 Routinely Exploited Vulnerabilities

2022-05-06 12:19:24

NSA Alert: Topmost CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors

2022-10-07 20:03:01

googleprojectzero

2022 0-day In-the-Wild Exploitation…so far

2022-06-30 00:00:00

securelist

IT threat evolution in Q3 2021. PC statistics

2021-11-26 12:00:36

EPSS

0.974

Percentile

99.9%

JSON

Exploit for OS Command Injection in Zeroshell

PocList

Related