CVE-2024-45216: Improper Authentication in Apache Solr, 9.8 rating 🔥

Fake ending in Solr API URLs allows attackers to bypass authentication, which can lead to sensitive data leakage.

Search at Netlas.io:
👉 Link: https://nt.ls/x1SZG
👉 Dork: tag.name:"apache_solr"

Vendor's advisory: https://solr.apache.org/security.html#cve-2024-45216-apache-solr-authentication-bypass-possible-using-a-fake-url-path-ending

CVE-2024-9264: Execute Arbitrary Code in Grafana, 9.9 rating 🔥🔥🔥

Grafana users at Viewer level and above can perform command injection using a vulnerability in SQL Expressions.

More then 104k instances at Netlas.io:
👉 Link: https://nt.ls/oQJHO
👉 Dork: http.favicon.hash_sha256:80a7f87a79169cf0ac1ed3250d7c509368190a97bc7182cd4705deb8f8c70174 AND http.noscript:"Grafana"

Vendor's advisory: https://grafana.com/blog/2024/10/17/grafana-security-release-critical-severity-fix-for-cve-2024-9264/

CVE-2024-20329: Improper Neutralization of Command Delimiters in Cisco ASA, 9.9 rating 🔥🔥🔥

The vulnerability allows an attacker with low privileges to remotely execute commands via SSH and thus gain full control of the system.

More then 140k instances at Netlas.io:
👉 Link: https://nt.ls/Rfjme
👉 Dork: http.body:"/+CSCOE+/logon.html"

Vendor's advisory: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ssh-rce-gRAuPEUF

CVE-2024-45157: Credentials exposure in Rancher, 9.1 rating 🔥

Due to a discovered vulnerability, Rancher stored vSphere CPI/CSI passwords as a plaintext object.

Search at Netlas.io:
👉 Link: https://nt.ls/9fDwE
👉 Dork: http.favicon.hash_sha256:2d7adbc74e7c8941927d04e702acbff577d219fef8617c8c3014d34ae395525b

Vendor's advisory: https://github.com/rancher/rancher/security/advisories/GHSA-xj7w-r753-vj8v

🔥 Netlas.io beta testing is finally over! 🔥

In version 1.0, we've added a final touch — recurring payments to simplify the payment process for subscribers.

❓ How to enable recurring payments ❓

If you haven’t subscribed yet, simply select the "Recurring Payments" option at checkout.

If you're already a subscriber, wait until the end of your current billing period, then renew your subnoscription by choosing the "Recurring Payments" option.

👉 Read more in the changelog: https://docs.netlas.io/changelog/

CVE-2024-46483: Integer Overflow in Xlight FTP Server, 9.8 rating 🔥

By overflowing the variable, an attacker could cause remote code execution on the host or a denial of service.

Search at Netlas.io:
👉 Link: https://nt.ls/M8D2R
👉 Dork: \*.banner:"Xlight" OR raw_tcp.response_data:"Xlight"

Read more: https://github.com/kn32/cve-2024-46483

CVE-2024-50388: OS Command Injection in QNAP NAS, critical rating 🔥

A vulnerability exploited on Pwn2Own and affecting HBS 3 Hybrid Backup Sync allows attackers to carry out remote command execution.

More then 113k instances at Netlas.io:
👉 Link: https://nt.ls/MBHWB
👉 Dork: certificate.issuer_dn:"QNAP NAS" OR http.body_sha256:4a1815f3e87d6d623c22921d9c39b2de614351d71831976bbc807f571953ff21

Vendor's advisory: https://www.qnap.com/en-us/security-advisory/qsa-24-41

Pre-Auth RCE CyberPanel 0day by Chirag Artani 🔥

Useful video from our friend's channel about one of the freshest big vulnerabilities with Netlas search 🔎

We also recommend checking out his website and Twitter for more tips:

👉 Site: 3rag.com
👉 Twitter: x.com/Chirag99Artani

CVE-2024-50550: Privilege Escalation in LiteSpeed Cache WP Plugin, 8.1 rating 🔥

Weak security hash verification vulnerability allows an attacker to gain administrative privileges.

Search at Netlas.io:
👉 Link: https://nt.ls/A60iV
👉 Dork: http.body:"plugins/litespeed-cache"

Read more: https://patchstack.com/articles/rare-case-of-privilege-escalation-patched-in-litespeed-cache-plugin/

CVE-2024-49768: Race Condition in Waitress Python server, 9.1 rating 🔥

Due to an error, the server can process a request even if the connection should have been closed.

Search at Netlas.io:
👉 Link: https://nt.ls/VYS9t
👉 Dork: http.headers.server:"waitress"

Vendor's advisory: https://github.com/Pylons/waitress/security/advisories/GHSA-9298-4cf8-g4wj

CVE-2024-46538: XSS in pfSense, 9.3 rating 🔥

XSS injection allows an attacker to perform arbitrary code execution in the user's browser. The vulnerability is not the freshest, but now it has a PoC!

Search at Netlas.io:
👉 Link: https://nt.ls/BuwaN
👉 Dork: http.noscript:"pfSense - Login"

Vendor's advisory: https://redmine.pfsense.org/issues/15778

🚧 Planned Maintenance 🚧
The application will be unavailable for a period of time❗️

The maintenance is scheduled to start on November 6, 2024, at 08:00 UTC ⏰. It is expected to take about an hour, and we will do our best to complete it as quickly as possible.

Please remember to save your work before this time.

Reminder: The maintenance begins in one hour. Netlas will be temporarily offline. We apologize for any inconvenience caused.

💯 Planned Maintenance completed 💯

Netlas.io is online again and you can get back to your projects! 👾

Smart Recon to PWN the Panel with Netlas.io 🔥

There's nothing we enjoy more than seeing Netlas in action, uncovering real vulnerabilities. This time, we're excited to share a write-up from Rood Space!

👉 Read it now: https://ro0od.medium.com/smart-recon-to-pwn-the-panel-a23b0b9466bb
👉 Check author's TG: @alien_rood

🚧 Planned Maintenance 🚧
The application will be unavailable for a period of time❗️

The maintenance is scheduled to start on November 10, 2024, at 08:00 UTC ⏰. It is expected to take about an hour, and we will do our best to complete it as quickly as possible.

Please remember to save your work before this time.

CVE-2024-42509: RCE in Aruba, 9.8 rating 🔥

The vulnerability allows an attacker to perform RCE by sending specially crafted packets.

Search at Netlas.io:
👉 Link: https://nt.ls/Q71sc
👉 Dork: http.favicon.hash_sha256:dfa04944308ed6c96563ff88cdb767ed5177c76c8a386f7a5803b534e9bff753

Vendor's advisory: https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04722en_us&docLocale=en_US

PAN-SA-2024-0015: RCE in Palo Alto PAN-OS 🔥

In a recent advisory from Palo Alto, developers warn about the emergence of an RCE vulnerability. Administrators of potentially vulnerable devices are advised to take action as quickly as possible to minimize the damage.

Search at Netlas.io:
👉 Link: https://nt.ls/UdzF8
👉 Dork: http.body_sha256:"7bc15a9ba71464596444ad648fa144937b848b302459c4103deae105cf42ce42" OR http.favicon.hash_sha256:a03ff6778b0535b9c4388e88c674eeeac91c0cc4b25bd23bf30f8d0bd98ac854

Vendor's advisory: https://security.paloaltonetworks.com/PAN-SA-2024-0015

CVE-2024-45763 and other: Multiple vulnerabilities in Dell Sonic OS, 9.0 - 9.1 rating 🔥

Some Sonic OS entities are vulnerable to OS Command Injection. Additionally, the vulnerabilities include a weakness in the authentication process that could allow a remote attacker to gain unauthorized access.

Search at Netlas.io:
👉 Link: https://nt.ls/TAX1W
👉 Dork: http.favicon.hash_sha256:d39342cbe7b9717529eb07f697779c55cdae7e0fc26c9672f64c49cbd8411eea

Vendor's advisory: https://www.dell.com/support/kbdoc/en-us/000245655/dsa-2024-449-security-update-for-dell-enterprise-sonic-distribution-vulnerabilities

CVE-2024-39710 and other: Multiple vulnerabilities in Ivanti Connect Secure, 4.4 - 9.1 rating 🔥

Lots (25!) of vulnerabilities in the latest Ivanti bulletin. DoS, RCE, Auth Bypass - vulnerabilities on every taste.

Search at Netlas.io:
👉 Link: https://nt.ls/v0fEW
👉 Dork: http.body:"welcome.cgi?p=logo"

Vendor's advisory: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs?language=en_US

CVE-2024-52301: Improper Input Validation in Laravel Framework, 8.7 rating❗️

The vulnerability allows an attacker to change environment using a special crafted query string.

More then 830k instances at Netlas.io:
👉 Link: https://nt.ls/CDJgv
👉 Dork: http.headers.set_cookie:"laravel_session="

Vendor's advisory: https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h