Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2001-0471

Malware in sbrugna...

7.5CVSS6.4AI score0.02762EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-1902

Malware in sbrugna...

9CVSS7AI score0.01989EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-4223

Malware in sbrugna...

5CVSS6.4AI score0.01064EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1413

Malware in sbrugna...

5CVSS6.4AI score0.01566EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.19 views

EUVD-2022-42601

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.11626EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/25 2:45 p.m.6 views

CVE-2021-4457 ZoomSounds < 6.05 - Unauthenticated Arbitrary File Upload

The ZoomSounds plugin before 6.05 contains a PHP file allowing unauthenticated users to upload an arbitrary file anywhere on the web server...

7.5AI score0.00382EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:51 a.m.14 views

CVE-2024-25846

In the module "Product Catalog CSV, Excel Import" simpleimportproduct = 6.7.0 from MyPrestaModules for PrestaShop, a guest can upload files with extensions .php...

9.1CVSS7AI score0.00789EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:56 p.m.12 views

CVE-2020-18917

The plus/search.php component in DedeCMS 5.7 SP2 allows remote attackers to execute arbitrary PHP code via the typename parameter because the contents of typename.inc are under an attacker's control...

8.8CVSS7.9AI score0.00836EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 1:30 p.m.10 views

CVE-2014-8939

Lexiglot through 2014-11-20 allows remote attackers to obtain sensitive information full path via an include/smarty/plugins/modifier.dateformat.php request if PHP has a non-recommended configuration that produces warning messages...

5.3CVSS6.7AI score0.01368EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:54 a.m.4 views

CVE-2013-5931

SQL injection vulnerability in propertylistingsdetail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter...

7.5CVSS9.2AI score0.01224EPSS
Exploits1References1
Veracode
Veracode
added 2024/06/25 12:0 p.m.12 views

Sensitive Information Disclosure

zendframework/zend-developer-tools is vulnerable to Sensitive Information Disclosure. The vulnerability is due to a change made during the update to support PHP 7.3 that potentially prevents toolbar entries, which are enabled by default, from being disabled. The attacker can exploit this by...

6.9AI score
Exploits0
CNVD
CNVD
added 2020/12/04 12:0 a.m.2 views

DedeCMSV6 suffers from information leakage vulnerability

DedeCMSV6 is based on PHP 7.x development, is scalable and fully open source. An information disclosure vulnerability exists in DedeCMSV6. An attacker can exploit the vulnerability to obtain sensitive information...

6.5AI score
Exploits0
CNVD
CNVD
added 2015/06/05 12:0 a.m.4 views

Moodle Lesson Module Cross-Site Scripting Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment.Lesson is one of the modules for selecting courses online. A security vulnerability exists in the access.php script in the Lesson modul...

3.5CVSS6.3AI score0.01459EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/05/14 12:0 a.m.34 views

CodeThatShoppingCart Multiple Remote Vulnerabilities (SQLi, XSS, ID)

The remote host is running the CodeThat.com ShoppingCart, a shopping cart program written in PHP. The remote version of this software fails to sanitize input to the 'id' parameter of the 'catalog.php' script before using it in a database query. An unauthenticated, remote attacker could leverage...

7.5CVSS5.6AI score0.04228EPSS
Exploits3References4
Cvelist
Cvelist
added 2005/02/20 5:0 a.m.17 views

CVE-2004-1581

BlackBoard 1.5.1 allows remote attackers to gain sensitive information via a direct request to 1 checkdb.inc.php, 2 admin.inc.php or 3 cp.inc.php, which reveals the path in a PHP error message...

6.6AI score0.01181EPSS
Exploits0References2
exploitpack
exploitpack
added 2004/12/16 12:0 a.m.15 views

MediaWiki 1.3.x - Arbitrary Script Upload

MediaWiki 1.3.x - Arbitrary Script Upload source: https://www.securityfocus.com/bid/11985/info MediaWiki is reported prone to a vulnerability that can allow a remote attacker to upload arbitrary PHP scripts to a vulnerable server. This issue results from insufficient sanitization of user-supplied...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2004/09/30 12:0 a.m.33 views

Multiple Vulnerabilities in Silent Storm Portal

CHT Security Research-2004 http://www.CyberSpy.Org Turkey Software: Silent Storm Portal Web Site: http://www.silent-storm.co.uk/ssp/ Affected Versions: 2.1,2.2 Description: Silent Storm Portal is a PHP based portal system.It requires PHP4 or above.no MySQL needed. Multiple Vulnerabilities in Sile...

0.2AI score
Exploits0
Rows per page
Query Builder