Skip to main content
CVE-2015-3306 CRITICAL POC THREAT Emergency

The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 93.7%.

Authentication Bypass Proftpd
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
93.7%
Threat
6.3
CVE-2014-8383 CRITICAL POC Act Now

The InFocus IN3128HD projector with firmware 0.26 allows remote attackers to bypass authentication via a direct request to main.html. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass In3128Hd Firmware
NVD
CVSS 2.0
10.0
EPSS
4.5%
CVE-2014-8384 CRITICAL POC Act Now

The InFocus IN3128HD projector with firmware 0.26 does not restrict access to cgi-bin/webctrl.cgi.elf, which allows remote attackers to modify the DHCP server and device IP configuration, reboot the. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure In3128Hd Firmware
NVD
CVSS 2.0
9.4
EPSS
1.1%
CVE-2015-0278 CRITICAL PATCH Act Now

libuv before 0.10.34 does not properly drop group privileges, which allows context-dependent attackers to gain privileges via unspecified vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Fedora Libuv Node Js
NVD GitHub
CVSS 2.0
10.0
EPSS
1.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy