Skip to main content
CVE-2020-8657 CRITICAL POC KEV THREAT Emergency

An issue was discovered in EyesOfNetwork 5.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP Eyesofnetwork
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
91.9%
CVE-2020-8772 CRITICAL POC THREAT Emergency

The InfiniteWP Client plugin before 1.9.4.5 for WordPress has a missing authorization check in iwp_mmb_set_request in init.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass PHP Infinitewp Client
NVD
CVSS 3.1
9.8
EPSS
87.9%
CVE-2020-6760 CRITICAL POC Act Now

Schmid ZI 620 V400 VPN 090 routers allow an attacker to execute OS commands as root via shell metacharacters to an entry on the SSH subcommand menu, as demonstrated by ping. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Zi 620 V400 Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
1.7%
CVE-2020-8771 CRITICAL POC THREAT Act Now

The Time Capsule plugin before 1.21.16 for WordPress has an authentication bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Wp Time Capsule
NVD
CVSS 3.1
9.8
EPSS
46.5%
CVE-2020-8636 CRITICAL Act Now

An issue was discovered in OpServices OpMon 9.3.2 that allows Remote Code Execution . Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Authentication Bypass Opmon
NVD
CVSS 3.1
9.8
EPSS
4.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy