Lucene search
K

45738 matches found

Cvelist
Cvelist
added 2026/05/29 2:46 p.m.30 views

CVE-2018-25388 HaPe PKH 1.1 Arbitrary File Upload via aksi_foto.php

HaPe PKH 1.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by bypassing file type validation. Attackers can upload PHP files through multiple endpoints including aksifoto.php, aksiuser.php, and aksikecamatan.php to execute arbitrary...

8.8CVSS0.00519EPSS
Exploits0References4
NVD
NVD
added 2026/05/29 2:16 p.m.18 views

CVE-2026-10072

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS0.00456EPSS
Exploits0References2
NVD
NVD
added 2026/05/29 1:16 p.m.14 views

CVE-2026-10071

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS0.00508EPSS
Exploits0References2
CVE
CVE
added 2026/05/29 12:36 p.m.21 views

CVE-2026-10072

DreamMaker (Interinfo) is affected by an Arbitrary File Upload vulnerability that enables privileged remote attackers to upload and execute web shell backdoors, resulting in arbitrary code execution on the server. The issue is documented in CVE-2026-10072 with CVSS metrics indicating high severit...

8.6CVSS6.4AI score0.00456EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/29 12:36 p.m.12 views

CVE-2026-10072 Interinfo|DreamMaker - Arbitrary File Upload

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS6.4AI score0.00456EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/29 12:36 p.m.9 views

EUVD-2026-33291

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS6.4AI score0.00456EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/29 12:36 p.m.38 views

CVE-2026-10072 Interinfo|DreamMaker - Arbitrary File Upload

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS0.00456EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/29 12:36 p.m.9 views

CVE-2026-10072

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS6.4AI score0.00456EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/29 12:32 p.m.11 views

EUVD-2026-33288

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS6.4AI score0.00508EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/29 12:32 p.m.9 views

CVE-2026-10071 Interinfo|DreamMaker - Arbitrary File Upload

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS6.4AI score0.00508EPSS
Exploits0References2
CVE
CVE
added 2026/05/29 12:32 p.m.37 views

CVE-2026-10071

DreamMaker by Interinfo is affected by an Arbitrary File Upload vulnerability that allows unauthenticated remote attackers to upload and execute web shell backdoors, enabling arbitrary code execution on the server. The publicly referenced entries (CVE-2026-10071) confirm a high-severity issue wit...

9.8CVSS6.4AI score0.00508EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/29 12:32 p.m.9 views

CVE-2026-10071

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS6.4AI score0.00508EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/29 12:32 p.m.31 views

CVE-2026-10071 Interinfo|DreamMaker - Arbitrary File Upload

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS0.00508EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/05/29 6:37 a.m.10 views

WordPress WPify Woo Czech plugin <= 5.4.1 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by kai63001 in WordPress Plugin WPify Woo Czech versions = 5.4.1...

9.9CVSS5.8AI score0.00266EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.12 views

PT-2026-44904

Name of the Vulnerable Software and Affected Versions Dokploy versions prior to 0.29.2 Description An authenticated user can execute arbitrary OS commands on the host system through the Docker file upload functionality. The issue occurs because the destinationPath parameter is not properly...

9.9CVSS6.2AI score0.00866EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.9 views

PT-2026-44836

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.6CVSS6.4AI score0.00456EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/29 12:0 a.m.12 views

CVE-2026-39292

Falco Solutions PHPPageBuilder v0.31.0 contains an unrestricted file upload vulnerability in the pagemanager/pagebuilder module that allows remote attackers to upload arbitrary files and achieve remote code execution. The vulnerability exists due to insufficient validation of uploaded file types...

6.3AI score0.00472EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.12 views

PT-2026-44824

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS6.4AI score0.00508EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.8 views

PHPagebuilder 安全漏洞

PHPagebuilder is a drag-and-drop page building tool developed by Hans Schouten. It is used to quickly create and manage websites. Version PHPagebuilder v0.31.0 contains a security vulnerability. This vulnerability stems from an unlimited file upload vulnerability in the pagmanager/pagebuilder...

7.3CVSS5.9AI score0.00472EPSS
Exploits1References3
EUVD
EUVD
added 2026/05/29 12:0 a.m.10 views

EUVD-2026-33329

Falco Solutions PHPPageBuilder v0.31.0 contains an unrestricted file upload vulnerability in the pagemanager/pagebuilder module that allows remote attackers to upload arbitrary files and achieve remote code execution. The vulnerability exists due to insufficient validation of uploaded file types...

6.3AI score0.00472EPSS
Exploits1References2
Rows per page
Query Builder