Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2026/03/23 4:16 p.m.2 views

CVE-2026-33493

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the objects/import.json.php endpoint accepts a user-controlled fileURI POST parameter with only a regex check that the value ends in .mp4. Unlike objects/listFiles.json.php, which was hardened with a realpath +...

8.1CVSS0.00335EPSS
Exploits1References2
Circl
Circladded 2026/03/20 5:44 p.m.2 views

CVE-2026-33493

creationtimestamp| type| source ---|---|--- 2026-03-20 17:44:30+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-83xq-8jxj-4rxm 2026-03-25 04:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhuaeo5amk2u...

8.1CVSS5.7AI score0.00335EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 2:3 a.m.5 views

CVE-2023-33493

An Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer ajaxmanager module for PrestaShop through 2.3.0, allows remote attackers to upload dangerous files without restrictions...

9.8CVSS7.1AI score0.0067EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/14 10:2 a.m.17 views

CVE-2024-33493

A vulnerability has been identified in Solid Edge All versions V224.0 Update 5. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current...

7.8CVSS7AI score0.00235EPSS
Exploits0References1
Circl
Circladded 2023/08/01 8:38 p.m.2 views

CVE-2023-33493

creationtimestamp| type| source ---|---|--- 2023-08-01 20:38:35+00:00| seen| https://t.me/cibsecurity/67531...

9.8CVSS8.7AI score0.0067EPSS
Exploits0References1
CVE
CVEadded 2023/08/01 12:0 a.m.43 views

CVE-2023-33493

The CVE-2023-33493 entry concerns PrestaShop’s Ajaxmanager (File and Database explorer) module up to version 2.3.0, where an Unrestricted Upload of File with Dangerous Type vulnerability allows remote attackers to upload dangerous files without restrictions. The core issue is an insecure file upl...

9.8CVSS9.3AI score0.0067EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2021/11/22 8:24 a.m.61 views

CVE-2021-33493

CVE-2021-33493 pertains to Open-Xchange OX App Suite (OX App Suite/OX Documents) up to version 7.10.5, where the middleware component allows Code Injection via YAML-formatted Java classes. The root cause is the handling of YAML-based Java class definitions in the middleware, enabling an attacker ...

6CVSS6.2AI score0.00479EPSS
Exploits3References3Affected Software1
Cvelist
Cvelistadded 2021/11/22 8:24 a.m.14 views

CVE-2021-33493

The middleware component in OX App Suite through 7.10.5 allows Code Injection via Java classes in a YAML format...

6.5AI score0.00479EPSS
Exploits3References3
Packet Storm
Packet Stormadded 2021/11/22 12:0 a.m.459 views

OX App Suite / Ox Documents 7.10.x XSS / Code Injection / Traversal

Product: OX App Suite, OX Documents Vendor: OX Software GmbH Internal reference: MWB-993 Vulnerability type: Cross-Site Scripting CWE-80 Vulnerable version: 7.10.5 and earlier Vulnerable component: backend Report confidence: Confirmed Solution status: Fixed by Vendor Fixed version: 7.10.3-rev35,...

6.3AI score0.02435EPSS
Exploits10
Rows per page
Query Builder