CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

ATTACKERKB•added 2026/04/06 7:11 p.m.•0 views

CVE-2026-35183

Brave CMS is an open-source CMS. Prior to 2.0.6, an Insecure Direct Object Reference IDOR vulnerability exists in the article image deletion feature. It is located in app/Http/Controllers/Dashboard/ArticleController.php within the deleteImage method. The endpoint accepts a filename from the URL b...

7.1CVSS5.9AI score0.00039EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2025/05/23 6:17 a.m.•0 views

CVE-2024-48177

MRCMS 3.1.2 contains a SQL injection vulnerability via the RID parameter in /admin/article/delete.do...

8.8CVSS5.9AI score0.00275EPSS

Exploits1References1

Positive Technologies•added 2023/12/25 12:0 a.m.•3 views

PT-2023-30389 · Sysaid · Sysaid On-Premise

Name of the Vulnerable Software and Affected Versions: SysAid On-Premise versions prior to 23.3.34 Description: The issue allows an end user to delete a Knowledge Base article under certain conditions. Recommendations: For versions prior to 23.3.34, update to version 23.3.34 or later to resolve t...

4.3CVSS4.6AI score0.00056EPSS

Exploits0References6

CNNVD•added 2023/12/13 12:0 a.m.•1 views

IceCMS Authorization Issues Vulnerability

IceCMS is a content management system based on Spring Boot + Vue front-end and back-end separation of NgShow individual developers. IceCMS 2.0.1 version of the authorization problem vulnerability , the vulnerability stems from the Article Handler component of the /article/DelectArticleById/ there...

5.5CVSS6.8AI score0.00091EPSS

Exploits1References4

Prion•added 2021/05/17 10:15 p.m.•11 views

Cross site request forgery (csrf)

Cross Site Request Forgery CSRF in Pluck CMS v4.7.9 allows remote attackers to execute arbitrary code and delete a specific article via the component " /admin.php?action=page."...

6.8CVSS9.1AI score0.00346EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/05/17 9:1 p.m.•12 views

CVE-2020-18195

Cross Site Request Forgery CSRF in Pluck CMS v4.7.9 allows remote attackers to execute arbitrary code and delete a specific article via the component " /admin.php?action=page."...

9.1AI score0.00346EPSS

Exploits1References1

Cvelist•added 2020/03/12 1:5 p.m.•16 views

CVE-2020-10492

CSRF in admin/manage-templates.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete an article template via a crafted request...

4.6AI score0.00147EPSS

Exploits1References2

Cvelist•added 2020/03/12 1:5 p.m.•13 views

CVE-2020-10485

CSRF in admin/manage-articles.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to delete an article via a crafted request...

4.6AI score0.00147EPSS

Exploits1References2

OSV•added 2018/06/19 6:29 p.m.•1 views

CVE-2018-12583

An issue was discovered in AKCMS 6.1. CSRF can delete an article via an admincp deleteitem action to index.php...

6.5CVSS5.8AI score

Exploits0References2

NVD•added 2018/06/19 6:29 p.m.•7 views

CVE-2018-12583

An issue was discovered in AKCMS 6.1. CSRF can delete an article via an admincp deleteitem action to index.php...

6.5CVSS6.5AI score0.00117EPSS

Exploits1References2

Cvelist•added 2018/04/20 5:0 p.m.•12 views

CVE-2018-10248

An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can delete any article via index.php?m=content&f=content&v=recycledelete...

6.5AI score0.00117EPSS

Exploits1References1

myhack58•added 2012/03/01 12:0 a.m.•11 views

ContaoCMS (aka TYPOlight) <= 2.11 CSRF (delete admin/delete articles)-vulnerability warning-the black bar safety net

Title: ContaoCMS aka TYPOlight = 2.11 CSRF Delete Admin - Delete Article Author: Ivano Binetti http://ivanobinetti.com Download address: http://www.contao.org/en/download.html The development of this website: http://www.contao.org Affects versions: 2.11.0 latestand earlier Test platform: Debian...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by