CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...

7.2CVSS7.1AI score0.0118EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:19 a.m.•5 views

CVE-2022-46059

AeroCMS v0.0.1 is vulnerable to Cross Site Request Forgery CSRF...

6.5CVSS6.9AI score0.00327EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:17 a.m.•7 views

CVE-2022-45536

AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the id parameter at \admin\postcomments.php. This vulnerability allows attackers to access database information...

4.9CVSS8.1AI score0.00809EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:7 p.m.•9 views

CVE-2022-46137

AeroCMS v0.0.1 is vulnerable to Directory Traversal. The impact is: obtain sensitive information remote. The component is: AeroCMS v0.0.1...

7.5CVSS6.4AI score0.01416EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 9:49 p.m.•6 views

CVE-2022-27063

AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting XSS vulnerability via viewallcomments.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comments text field...

6.1CVSS5.8AI score0.01402EPSS

Exploits3References1

Vulnrichment•added 2022/12/16 12:0 a.m.•4 views

CVE-2022-46137

AeroCMS v0.0.1 is vulnerable to Directory Traversal. The impact is: obtain sensitive information remote. The component is: AeroCMS v0.0.1...

7.4AI score0.01416EPSS

Exploits1References1

Vulnrichment•added 2022/12/16 12:0 a.m.•5 views

CVE-2022-46135

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=editpost , through which we can upload webshell and control the web server...

7.2AI score0.0118EPSS

Exploits1References1

Positive Technologies•added 2022/12/16 12:0 a.m.•2 views

PT-2022-27755 · Aerocms · Aerocms

Name of the Vulnerable Software and Affected Versions: AeroCms version 0.0.1 Description: The issue is related to an arbitrary file upload vulnerability. This vulnerability is located at the "/admin/posts.php?source=edit post" API endpoint, which allows uploading a webshell and potentially...

7.2CVSS6.9AI score0.0118EPSS

Exploits1References4