Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

CVE
CVEadded 2026/02/03 4:52 p.m.6 views

CVE-2020-37110

60CycleCMS 2.5.2 contains an SQL injection vulnerability in news.php and common/lib.php that allows manipulation of database queries via unvalidated input (e.g., the 'title' parameter). Impact includes potential data extraction or modification (confidentiality and integrity). Root cause: unvalida...

9.8CVSS5.2AI score0.00047EPSS
Exploits1References3Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2010-1970

Malware in sbrugna...

6.8CVSS6.4AI score0.02293EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2011-3655

Malware in sbrugna...

5CVSS6.4AI score0.00317EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 4:27 a.m.7 views

CVE-2011-3696

60cycleCMS 2.5.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by post.php and certain other files...

5CVSS6.5AI score0.00317EPSS
Exploits1References1
exploitpack
exploitpackadded 2020/03/09 12:0 a.m.100 views

60CycleCMS - news.php SQL Injection

60CycleCMS - news.php SQL Injection Exploit Title: 60CycleCMS - 'news.php' Multiple vulnerability Google Dork: N/A Date: 2020-02-10 Exploit Author: Unkn0wn Vendor Homepage: http://davidvg.com/ Software Link: https://www.opensourcecms.com/60cyclecms Version: 2.5.2 Tested on: Ubuntu CVE : N/A...

Exploits0
0day.today
0day.todayadded 2020/03/09 12:0 a.m.173 views

60CycleCMS - (news.php) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: 60CycleCMS 2.5.2 - 'news.php' SQL Injection Exploit Author: Unkn0wn Vendor Homepage: http://davidvg.com/ Software Link: https://www.opensourcecms.com/60cyclecms Version: 2.5.2 Tested on: Ubuntu CVE : N/A...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2020/03/09 12:0 a.m.173 views

60CycleCMS - 'news.php' SQL Injection

Exploit Title: 60CycleCMS - 'news.php' Multiple vulnerability Google Dork: N/A Date: 2020-02-10 Exploit Author: Unkn0wn Vendor Homepage: http://davidvg.com/ Software Link: https://www.opensourcecms.com/60cyclecms Version: 2.5.2 Tested on: Ubuntu CVE : N/A...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2020/03/09 12:0 a.m.151 views

60CycleCMS 2.5.2 SQL Injection

Exploit Title: 60CycleCMS 2.5.2 - 'news.php' SQL Injection Google Dork: N/A Date: 2020-03-07 Exploit Author: Unkn0wn Vendor Homepage: http://davidvg.com/ Software Link: https://www.opensourcecms.com/60cyclecms Version: 2.5.2 Tested on: Ubuntu CVE : N/A...

Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.10 views

60cycleCMS 'select.php' Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.13 views

60cycleCMS 2.5.2 - (DOCUMENT_ROOT) Multiple Local File Inclusion Vulnerability

No description provided by source...

7.1AI score
Exploits0
NVD
NVDadded 2011/09/23 11:55 p.m.13 views

CVE-2011-3696

60cycleCMS 2.5.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by post.php and certain other files...

5CVSS6.1AI score0.00317EPSS
Exploits1References3
Prion
Prionadded 2011/09/23 11:55 p.m.13 views

Information disclosure

60cycleCMS 2.5.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by post.php and certain other files...

5CVSS6.7AI score0.00317EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2011/09/23 11:0 p.m.46 views

CVE-2011-3696

CVE-2011-3696 affects 60cycleCMS 2.5.2. An attacker can trigger a direct request to a PHP file (e.g., post.php) and cause an error message that reveals the installation path, leading to information disclosure. The documented impact is exposure of sensitive filesystem paths; no additional exploit ...

5CVSS6.3AI score0.00317EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2011/09/23 11:0 p.m.21 views

CVE-2011-3696

60cycleCMS 2.5.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by post.php and certain other files...

6.1AI score0.00317EPSS
Exploits1References3
NVD
NVDadded 2010/05/19 12:7 p.m.11 views

CVE-2010-1951

Multiple directory traversal vulnerabilities in 60cycleCMS allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the DOCUMENTROOT parameter to 1 news.php, 2 submitComment.php, and 3 sqlConnect.php...

6.8CVSS7.3AI score0.02293EPSS
Exploits1References4
Prion
Prionadded 2010/05/19 12:7 p.m.11 views

Directory traversal

Multiple directory traversal vulnerabilities in 60cycleCMS allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the DOCUMENTROOT parameter to 1 news.php, 2 submitComment.php, and 3 sqlConnect.php...

6.8CVSS7.9AI score0.02293EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2010/05/19 12:7 p.m.0 views

CVE-2010-1951

Multiple directory traversal vulnerabilities in 60cycleCMS allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the DOCUMENTROOT parameter to 1 news.php, 2 submitComment.php, and 3 sqlConnect.php...

6.8CVSS5.9AI score0.02293EPSS
Exploits1References5
Cvelist
Cvelistadded 2010/05/18 7:0 p.m.17 views

CVE-2010-1951

Multiple directory traversal vulnerabilities in 60cycleCMS allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the DOCUMENTROOT parameter to 1 news.php, 2 submitComment.php, and 3 sqlConnect.php...

7.3AI score0.02293EPSS
Exploits1References4
CVE
CVEadded 2010/05/18 7:0 p.m.43 views

CVE-2010-1951

CVE-2010-1951 affects 60cycleCMS. The flaw is a directory traversal vulnerability in the DOCUMENT_ROOT parameter exploited by (1) news.php, (2) submitComment.php, and (3) sqlConnect.php, allowing remote attackers to include and execute local files. Root cause: directory traversal sequences enable...

6.8CVSS7.5AI score0.02293EPSS
Exploits1References4Affected Software1
0day.today
0day.todayadded 2010/04/18 12:0 a.m.18 views

60cycleCMS V 2.5.3 CSRF Change Username & Password Exploit

Exploit for php platform in category web applications ========================================================== 60cycleCMS V 2.5.3 CSRF Change Username & Password Exploit ========================================================== Title : 60 cycleCMS V 2.5.3 CSRF Change Username & Password Exploi...

7.1AI score
Exploits0
Rows per page
Query Builder