Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/12/05 3:30 p.m.3 views

EUVD-2025-201414

Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store files in arbitrary locations and potentially modify the system configuration or other unspecified impacts...

8.3CVSS6.4AI score0.00795EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/05 12:0 a.m.18 views

CVE-2025-64056

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem...

0.00219EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/12/05 12:0 a.m.4 views

CVE-2025-64056

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem...

6.6AI score0.00219EPSS
Exploits1References2
Packet Storm
Packet Stormadded 2025/11/21 12:0 a.m.188 views

📄 eGovFramework 4.3.1 Arbitrary File Upload

eGovFramework version 4.3.1 proof of concept exploit that demonstrates an arbitrary file upload vulnerability. ============================================================================================================================================= | Title : eGovFramework 4.3.1 Unauthenticate...

6.9CVSS7.2AI score0.00503EPSS
Exploits2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-14787

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00456EPSS
Exploits0References3
NVD
NVDadded 2025/07/08 11:15 a.m.4 views

CVE-2025-40593

A vulnerability has been identified in SIMATIC CN 4100 All versions V4.0. The affected application allows to control the device by storing arbitrary files in the SFTP folder of the device. This could allow an attacker to cause a denial of service condition...

7.1CVSS0.00323EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/02 5:31 a.m.11 views

CVE-2025-31103

Untrusted data deserialization vulnerability exists in a-blog cms. Processing a specially crafted request may store arbitrary files on the server where the product is running. This can be leveraged to execute an arbitrary script on the server...

7.5CVSS7.5AI score0.00456EPSS
Exploits0References1
OSV
OSVadded 2025/03/31 5:15 a.m.4 views

CVE-2025-31103

Untrusted data deserialization vulnerability exists in a-blog cms. Processing a specially crafted request may store arbitrary files on the server where the product is running. This can be leveraged to execute an arbitrary script on the server...

7.5CVSS6AI score
Exploits0References3
CVE
CVEadded 2025/03/31 4:54 a.m.134 views

CVE-2025-31103

The CVE-2025-31103 issue affects a-blog cms and is caused by untrusted data deserialization. Multiple connected sources confirm that processing a crafted request can store arbitrary files on the server and may allow execution of arbitrary scripts. Affected versions include v2.8.x and later up to ...

7.5CVSS7.2AI score0.00456EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2025/03/28 12:0 a.m.6 views

PT-2025-13441 · Unknown · A-Blog Cms

Name of the Vulnerable Software and Affected Versions: a-blog cms affected versions not specified Description: A critical issue exists due to the deserialization of untrusted data in a-blog cms, allowing an attacker to store arbitrary files on the server. This can lead to the execution of arbitra...

7.5CVSS7.5AI score0.00456EPSS
Exploits0References15
Rows per page
Query Builder