Skip to main content
CVE-2013-1362 HIGH POC THREAT Act Now

Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) before 2.14 might allow remote attackers to execute arbitrary shell commands via "$()" shell metacharacters,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.4%.

Information Disclosure Opensuse Remote Plug In Executor
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
76.4%
Threat
5.3
CVE-2013-2118 HIGH POC THREAT Act Now

SPIP 3.0.x before 3.0.9, 2.1.x before 2.1.22, and 2.0.x before 2.0.23 allows remote attackers to gain privileges and "take editorial control" via vectors related to ecrire/inc/filtres.php. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.0%.

PHP Information Disclosure Spip
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
12.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy