Skip to main content
CVE-2019-5096 CRITICAL POC THREAT Act Now

An exploitable code execution vulnerability exists in the processing of multi-part/form-data requests within the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Use After Free RCE Memory Corruption Goahead
NVD
CVSS 3.1
9.8
EPSS
67.0%
CVE-2019-19459 CRITICAL POC Act Now

An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Proaccess Space
NVD
CVSS 3.1
9.8
EPSS
3.5%
CVE-2019-16885 CRITICAL POC Act Now

In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remote code execution by injecting a malicious PHP object via a crafted cookie. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection PHP RCE Okaycms
NVD
CVSS 3.1
9.8
EPSS
4.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy