CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

708 matches found

0day.today•added 2023/04/05 12:0 a.m.•238 views

Responsive FileManager 9.9.5 - Remote Code Execution Exploit

Exploit Title: Responsive FileManager 9.9.5 - Remote Code Execution RCE Exploit Author: Galoget Latorre @galoget Vendor Homepage: https://responsivefilemanager.com Software Link: https://github.com/trippo/ResponsiveFilemanager/releases/download/v9.9.5/responsivefilemanager.zip Dockerfile:...

8.8CVSS8.7AI score0.36582EPSS

Exploits5

Packet Storm•added 2023/03/07 12:0 a.m.•433 views

ZwiiCMS 12.2.04 Remote Code Execution

Exploit Title: ZwiiCMS 12.2.04 Remote Code Execution Authenticated Date: 03/06/2023 Exploit Author: Hadi Mene Vendor Homepage: https://zwiicms.fr/ Version: 12.2.04 and potentially lower versions CVE: CVE-2020-10567 Category: webapps ZwiiCMS 12.2.04 uses "Responible FileManager" 9.14.0 for its fil...

9.8CVSS9.7AI score0.10721EPSS

Exploits5

GithubExploit•added 2023/02/03 8:56 a.m.•223 views

Exploit for Unrestricted Upload of File with Dangerous Type in Tecrail Responsive_Filemanager

ResponsiveFileManager-CVE-2022-46604 Responsive FileManager v...

8.8CVSS8.8AI score0.36582EPSS

Exploits5

OSV•added 2023/02/02 1:15 p.m.•9 views

CVE-2022-46604

An issue in Tecrail Responsive FileManager v9.9.5 and below allows attackers to bypass the file extension check mechanism and upload a crafted PHP file, leading to arbitrary code execution...

8.8CVSS9AI score

Exploits0References4

NVD•added 2023/02/02 1:15 p.m.•13 views

CVE-2022-46604

An issue in Tecrail Responsive FileManager v9.9.5 and below allows attackers to bypass the file extension check mechanism and upload a crafted PHP file, leading to arbitrary code execution...

8.8CVSS8.9AI score0.36582EPSS

Exploits5References4

Prion•added 2023/02/02 1:15 p.m.•14 views

Design/Logic Flaw

An issue in Tecrail Responsive FileManager v9.9.5 and below allows attackers to bypass the file extension check mechanism and upload a crafted PHP file, leading to arbitrary code execution...

6.5CVSS8.9AI score0.36582EPSS

Exploits5References4Affected Software1

CVE•added 2023/02/02 12:0 a.m.•62 views

CVE-2022-46604

The CVE-2022-46604 issue affects Tecrail Responsive FileManager v9.9.5 and earlier. A vulnerability in the file-extension check allows an attacker to upload a crafted PHP file, enabling arbitrary code execution on the server. Connected exploit sources describe remediating factors such as director...

8.8CVSS8.8AI score0.36582EPSS

Exploits5References4Affected Software1

CNNVD•added 2023/02/02 12:0 a.m.•1 views

Tecrail Responsive FileManager 代码问题漏洞

Tecrail Responsive FileManager is an open source file manager written in PHP by Tecrail Italy. The product supports the uploading and management of videos, images or other files. A security vulnerability exists in Tecrail Responsive FileManager v9.9.5 and earlier versions, which originates from a...

8.8CVSS8.3AI score0.36582EPSS

Exploits5References6

Vulnrichment•added 2023/02/02 12:0 a.m.•6 views

CVE-2022-46604

An issue in Tecrail Responsive FileManager v9.9.5 and below allows attackers to bypass the file extension check mechanism and upload a crafted PHP file, leading to arbitrary code execution...

8.9AI score0.36582EPSS

Exploits5References4

Cvelist•added 2023/02/02 12:0 a.m.•12 views

CVE-2022-46604

An issue in Tecrail Responsive FileManager v9.9.5 and below allows attackers to bypass the file extension check mechanism and upload a crafted PHP file, leading to arbitrary code execution...

9.2AI score0.36582EPSS

Exploits5References4

NVD•added 2023/01/20 7:15 p.m.•16 views

CVE-2022-45542

EyouCMS = 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file...

5.4CVSS5.5AI score0.00285EPSS

Exploits1References1

NVD•added 2023/01/20 7:15 p.m.•15 views

CVE-2022-45539

EyouCMS = 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file...

6.1CVSS6.2AI score0.00215EPSS

Exploits1References1

OSV•added 2023/01/20 7:15 p.m.•1 views

CVE-2022-45539

EyouCMS = 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file...

6.1CVSS5.8AI score

Exploits0References1

Prion•added 2023/01/20 7:15 p.m.•15 views

Cross site scripting

EyouCMS = 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file...

4.9CVSS5.5AI score0.00285EPSS

Exploits1References1Affected Software1

Prion•added 2023/01/20 7:15 p.m.•13 views

Cross site scripting

EyouCMS = 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file...

5.8CVSS6.2AI score0.00215EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2023/01/20 12:0 a.m.•1 views

PT-2023-14698 · Eyoucms · Eyoucms

Name of the Vulnerable Software and Affected Versions: EyouCMS versions prior to 1.6.0 Description: A reflected-XSS issue was discovered in the FileManager component. The issue occurs in the GET parameter filename when editing any file. Recommendations: For EyouCMS versions prior to 1.6.0, update...

5.4CVSS5.4AI score0.00285EPSS

Exploits1References2

Vulnrichment•added 2023/01/20 12:0 a.m.•5 views

CVE-2022-45542

EyouCMS = 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file...

5.7AI score0.00285EPSS

Exploits1References1

CVE•added 2023/01/20 12:0 a.m.•36 views

CVE-2022-45539

CVE-2022-45539 affects EyouCMS

6.1CVSS6.2AI score0.00215EPSS

Exploits1References1Affected Software1