Lucene search
K

2125 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-43477

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00386EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-43299

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00221EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-52656

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00534EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-37622

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00207EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28375

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00224EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-46691

Malicious code in bioql PyPI...

4.9CVSS5.2AI score0.00645EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-38962

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00334EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-27567

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.00379EPSS
Exploits0References1
NVD
NVD
added 2025/09/23 7:15 p.m.5 views

CVE-2025-45326

An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code via the submitsize.php component...

6.5CVSS0.0032EPSS
Exploits0References2
OSV
OSV
added 2025/09/23 7:15 p.m.2 views

CVE-2025-45326

An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code via the submitsize.php component...

6.5CVSS6.2AI score
Exploits0References2
CVE
CVE
added 2025/09/23 12:0 a.m.31 views

CVE-2025-45326

CVE-2025-45326 affects PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1. The issue resides in the submit_size.php component and enables remote attackers to execute arbitrary code. Documented impact is consistent with a remote code execution vulnerability (CVSSv3.1 base score 6.5; Network attack vector; no us...

6.5CVSS7.7AI score0.0032EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.5 views

PT-2025-39208

Name of the Vulnerable Software and Affected Versions PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 Description An issue allows remote attackers to execute arbitrary code via the submit size.php component. Recommendations At the moment, there is no information about a newer version that contains a...

6.5CVSS7.5AI score0.0032EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/23 12:0 a.m.1 views

PocketVJ CP 安全漏洞

PocketVJ CP is a control panel software by magdesign individual developers. A security vulnerability exists in PocketVJ CP version 3.9.1, which stems from a flaw in the submitsize.php component that could lead to the execution of arbitrary code...

6.5CVSS6.9AI score0.0032EPSS
Exploits0References3
OSV
OSV
added 2025/09/15 9:4 p.m.4 views

CVE-2025-59056 FreePBX vulnerable to unauthenticated Denial of Service

FreePBX is an open-source web-based graphical user interface. In FreePBX 15, 16, and 17, malicious connections to the Administrator Control Panel web interface can cause the uninstall function to be triggered for certain modules. This function drops the module's database tables, which is where mo...

8.7CVSS6.8AI score0.00434EPSS
Exploits0References4
CVE
CVE
added 2025/09/15 9:0 p.m.16 views

CVE-2025-55211

CVE-2025-55211 affects FreePBX up to version 17.0.21, where authenticated users in the Administrator Control Panel could execute arbitrary shell commands by maliciously changing the language setting of the framework module. Root cause: language manipulation in the framework module allows command ...

8.8CVSS6.6AI score0.004EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/15 9:0 p.m.8 views

CVE-2025-55211 FreePBX Post-Authenticated Command Injection

FreePBX is an open-source web-based graphical user interface. From 17.0.19.11 to before 17.0.21, authenticated users of the Administrator Control Panel ACP can run arbitrary shell commands by maliciously changing languages of the framework module. This vulnerability is fixed in 17.0.21...

8.7CVSS0.004EPSS
Exploits0References1
OSV
OSV
added 2025/09/15 9:0 p.m.4 views

CVE-2025-55211 FreePBX Post-Authenticated Command Injection

FreePBX is an open-source web-based graphical user interface. From 17.0.19.11 to before 17.0.21, authenticated users of the Administrator Control Panel ACP can run arbitrary shell commands by maliciously changing languages of the framework module. This vulnerability is fixed in 17.0.21...

8.7CVSS7.1AI score0.004EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.6 views

PT-2025-37763

Name of the Vulnerable Software and Affected Versions: FreePBX versions 17.0.19.11 through 17.0.20 Description: FreePBX is a web-based graphical user interface. Authenticated users of the Administrator Control Panel ACP can execute arbitrary shell commands by manipulating the framework module's...

8.7CVSS7.1AI score0.004EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2018-19274

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Passing an absolute path to a fileexists check in phpBB before 3.2.4 allows Remote Code Execution through Object Injection by employing Phar deserialization whe...

7.2CVSS7.3AI score0.05201EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/06 11:27 p.m.7 views

CVE-2025-55209

contactmanager is a module for FreePBX@, which is an open source GUI that controls and manages Asterisk© PBX. In versions 15.0.14 and below, 16.0.0 through 16.0.26.4 and 17.0.0 through 17.0.5, a stored cross-site scripting XSS vulnerability in FreePBX allows a low-privileged User Control Panel UC...

5.1CVSS5.9AI score0.00323EPSS
Exploits0References1
Rows per page
Query Builder