CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

50 matches found

Packet Storm•added 2026/02/17 12:0 a.m.•135 views

📄 Extensis Portfolio Manager 4.0.1 Shell Upload

This Metasploit module exploits multiple vulnerabilities in Extensis Portfolio Server to achieve remote code execution. It leverages CVE-2022-24251 and related issues to upload a JSP webshell and execute arbitrary commands. Version 4.0.1 is affected...

8.8CVSS6.4AI score0.00492EPSS

RedhatCVE•added 2026/01/09 10:34 a.m.•7 views

CVE-2017-18006

netpub/server.np in Extensis Portfolio NetPublish has XSS in the quickfind parameter, aka Open Bug Bounty ID OBB-290447...

6.1CVSS6.1AI score0.00328EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-9147

Malware in sbrugna...

6.1CVSS6.3AI score0.00328EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-29159

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.02155EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-29160

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00492EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-29158

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.00492EPSS

Exploits2References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-29161

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.02636EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-29162

Malicious code in bioql PyPI...

9CVSS8.6AI score0.00318EPSS

Exploits1References3

RedhatCVE•added 2025/05/22 11:58 p.m.•2 views

CVE-2022-24252

An unrestricted file upload vulnerability in the FileTransferServlet component of Extensis Portfolio v4.0 allows remote attackers to execute arbitrary code via a crafted file...

8.8CVSS8AI score0.02155EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:58 p.m.•3 views

CVE-2022-24253

Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted file upload vulnerability via the component AdminFileTransferServlet...

8.8CVSS7.3AI score0.00492EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:58 p.m.•4 views

CVE-2022-24251

Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted file upload vulnerability via the Catalog Asset Upload function...

8.8CVSS7.3AI score0.00492EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 10:29 p.m.•5 views

CVE-2022-24255

Extensis Portfolio v4.0 was discovered to contain hardcoded credentials which allows attackers to gain administrator privileges...

9CVSS7.6AI score0.00318EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:29 p.m.•8 views

CVE-2022-24254

An unrestricted file upload vulnerability in the Backup/Restore Archive component of Extensis Portfolio v4.0 allows remote attackers to execute arbitrary code via a crafted ZIP file...

8.8CVSS8AI score0.02636EPSS

Exploits1References1

Check Point Advisories•added 2022/03/21 12:0 a.m.•12 views

Extensis Portfolio Multiple Vulnerabilities (CVE-2022-24251; CVE-2022-24252; CVE-2022-24253; CVE-2022-24254)

Multiple vulnerabilities exist in Extensis Portfolio. Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary commands on the affected system...

6.5CVSS4.9AI score0.02636EPSS

OSV•added 2022/03/01 11:15 p.m.•1 views

CVE-2022-24253

Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted file upload vulnerability via the component AdminFileTransferServlet...

8.8CVSS5.8AI score

Exploits0References3

OSV•added 2022/03/01 11:15 p.m.•1 views

CVE-2022-24254

An unrestricted file upload vulnerability in the Backup/Restore Archive component of Extensis Portfolio v4.0 allows remote attackers to execute arbitrary code via a crafted ZIP file...

8.8CVSS7.6AI score

Exploits0References4

ATTACKERKB•added 2022/03/01 11:15 p.m.•1 views

CVE-2022-24255

Extensis Portfolio v4.0 was discovered to contain hardcoded credentials which allows attackers to gain administrator privileges...

9CVSS7.3AI score0.00318EPSS

Exploits1References4

ATTACKERKB•added 2022/03/01 11:15 p.m.•4 views

CVE-2022-24251

Extensis Portfolio v4.0 was discovered to contain an authenticated unrestricted file upload vulnerability via the Catalog Asset Upload function...

8.8CVSS7.3AI score0.00492EPSS

Exploits2References4

OSV•added 2022/03/01 11:15 p.m.•1 views

CVE-2022-24252

An unrestricted file upload vulnerability in the FileTransferServlet component of Extensis Portfolio v4.0 allows remote attackers to execute arbitrary code via a crafted file...

8.8CVSS7.6AI score0.02155EPSS

Exploits1References3

NVD•added 2022/03/01 11:15 p.m.•12 views

CVE-2022-24255

Extensis Portfolio v4.0 was discovered to contain hardcoded credentials which allows attackers to gain administrator privileges...

9CVSS0.00318EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by