2024-04-28 08:00:08.073532 (UTC +09:00)
1. Exploit for CVE-2024-27956 exploit
– Sat, 27 Apr 2024 11:03:36 +0000
– https://sploitus.com/exploit?id=CAD433EE-C330-5C86-BB2B-A69E658CD0C1
2. Exploit for CVE-2023-2255 exploit
– Sat, 27 Apr 2024 11:21:11 +0000
– https://sploitus.com/exploit?id=BB753E63-A8B0-5993-ACC5-0AEDF4F69422
3. Exploit for Command Injection in Paloaltonetworks Pan-Os exploit
– Sat, 27 Apr 2024 18:58:41 +0000
– https://sploitus.com/exploit?id=4FF9C780-5604-5F08-8675-E134C577AA3E
2024-04-28 06:00:03.658209 (UTC +09:00)
1. CVE-2024-23334 (2024-01-30) brian-edgar-re/poc-cve-2024-23334
– Sat, 27 Apr 2024 22:21:50 +0900
– https://github.com/brian-edgar-re/poc-cve-2024-23334
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When using aiohttp as a web server and configuring static routes,…
2024-04-28 06:00:05.393762 (UTC +09:00)
1. CVE-2024-3342
– Source: security@wordfence.com
– Published: 2024-04-27 09:15:09
– LastModified: 2024-04-27 09:15:09
– CVSS: 9.9 (CRITICAL)
– Exploitability: 3.1
– Impact: 6.0
– CWE: None
– Interesting: WordPress, SQL injection, Plugin
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to SQL Injection via the ‘events’ attribute of the ‘mp…
>> https://www.cve.org/CVERecord?id=CVE-2024-3342
– Ref.
(1) https://plugins.trac.wordpress.org/changeset/3077596/mp-timetable/trunk/classes/models/class-events.php
(2) https://www.wordfence.com/threat-intel/vulnerabilities/id/9670bd32-34ce-48b1-82d9-62ab8869a89b?source=cve
2. CVE-2024-4246
– Source: cna@vuldb.com
– Published: 2024-04-27 09:15:09
– LastModified: 2024-04-27 09:15:09
– CVSS: 8.8 (HIGH)
– Exploitability: 2.8
– Impact: 5.9
– CWE: CWE-121 Stack-based Buffer Overflow
– Interesting: Buffer Overflow, Critical
A vulnerability, which was classified as critical, was found in Tenda i21 1.0.0.14(4656). This affects the function formQosManageDouble…
>> https://www.cve.org/CVERecord?id=CVE-2024-4246
– Ref.
(1) https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/i/i21/formQosManageDouble_user.md
(2) https://vuldb.com/?ctiid.262137
(3) https://vuldb.com/?id.262137
(4) https://vuldb.com/?submit.319831
3. CVE-2024-4247
– Source: cna@vuldb.com
– Published: 2024-04-27 10:15:08
– LastModified: 2024-04-27 10:15:08
– CVSS: 8.8 (HIGH)
– Exploitability: 2.8
– Impact: 5.9
– CWE: CWE-121 Stack-based Buffer Overflow
– Interesting: Buffer Overflow, Critical
A vulnerability has been found in Tenda i21 1.0.0.14(4656) and classified as critical. This vulnerability affects the function formQosM…
>> https://www.cve.org/CVERecord?id=CVE-2024-4247
– Ref.
(1) https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/i/i21/formQosManage_auto.md
(2) https://vuldb.com/?ctiid.262138
(3) https://vuldb.com/?id.262138
(4) https://vuldb.com/?submit.319832
4. CVE-2024-4248
– Source: cna@vuldb.com
– Published: 2024-04-27 11:15:06
– LastModified: 2024-04-27 11:15:06
– CVSS: 8.8 (HIGH)
– Exploitability: 2.8
– Impact: 5.9
– CWE: CWE-121 Stack-based Buffer Overflow
– Interesting: Buffer Overflow, Critical
A vulnerability was found in Tenda i21 1.0.0.14(4656) and classified as critical. This issue affects the function formQosManage_user. T…
>> https://www.cve.org/CVERecord?id=CVE-2024-4248
– Ref.
(1) https://github.com/abcdefg-png/IoT-vulnerable/blob/main/Tenda/i/i21/formQosManage_user.md
(2) https://vuldb.com/?ctiid.262139
(3) https://vuldb.com/?id.262139
(4) https://vuldb.com/?submit.319833
