Lucene search
Jc21 Security Vulnerabilities
cve
An issue found in NginxProxyManager v.2.9.19 allows an attacker to execute arbitrary code via a lua script to the configuration...
9.8CVSS
9.5AI Score
0.003EPSS
2023-03-22 08:15 PM
37
cve
jc21 NGINX Proxy Manager through 2.9.19 allows OS command injection. When creating an access list, the backend builds an htpasswd file with crafted username and/or password input that is concatenated without any validation, and is directly passed to the exec command, potentially allowing an...
8.8CVSS
9.3AI Score
0.021EPSS
2023-01-20 08:15 AM
41
5.5CVSS
5.5AI Score
0.0004EPSS
2019-08-23 03:15 PM
54