CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2011-1416

Malware in sbrugna...

5CVSS6.1AI score0.00676EPSS

Exploits0References7

OSV•added 2022/03/17 4:15 p.m.•1 views

DEBIAN-CVE-2020-15591

fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...

9.8CVSS8.9AI score0.05254EPSS

Exploits1References1

Prion•added 2022/03/17 4:15 p.m.•12 views

Remote code execution

fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...

7.5CVSS9.8AI score0.05254EPSS

Exploits1References3Affected Software1

OSV•added 2022/03/17 4:15 p.m.•0 views

UBUNTU-CVE-2020-15591

fexsrv in FEX aka Frams' Fast File EXchange before fex-201609192 allows eval injection for unauthenticated remote code execution...

9.8CVSS7.5AI score0.05254EPSS

Exploits1References4

Positive Technologies•added 2022/03/17 12:0 a.m.•2 views

PT-2022-8576 · F*Ex · F*Ex

Name of the Vulnerable Software and Affected Versions: FEX aka Frams' Fast File EXchange versions prior to fex-20160919 2 Description: The issue allows for eval injection, which can be used for unauthenticated remote code execution. Recommendations: For versions prior to fex-20160919 2, update to...

9.8CVSS9.8AI score0.05254EPSS

Exploits1References10

OSV•added 2019/11/27 7:15 p.m.•1 views

DEBIAN-CVE-2014-3875

The addto parameter to fup in Frams' Fast File EXchange FEX, aka fex before fex-2014053 allows remote attackers to conduct cross-site scripting XSS attacks...

6.1CVSS5.8AI score0.00789EPSS

Exploits3References1

Prion•added 2019/11/27 7:15 p.m.•20 views

Cross site scripting

The addto parameter to fup in Frams' Fast File EXchange FEX, aka fex before fex-2014053 allows remote attackers to conduct cross-site scripting XSS attacks...

4.3CVSS6AI score0.00789EPSS

Exploits3References5Affected Software1

CVE•added 2019/11/27 6:35 p.m.•56 views

CVE-2014-3875

The CVE-2014-3875 entry documents a cross-site scripting (XSS) vulnerability in Frams’ Fast File Exchange (F*EX, fex) prior to fex-2014053, where the addto parameter of fup can be exploited to inject HTML/headers. Debian DLA-68-1 confirms this issue and lists fixes for the fex package (versions a...

6.1CVSS5.8AI score0.00789EPSS

Exploits3References5Affected Software1

NVD•added 2014/06/18 2:55 p.m.•22 views

CVE-2014-3876

Multiple cross-site scripting XSS vulnerabilities in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the 1 akey parameter to rup or 2 disclaimer or 3 gm parameter to fuc...

4.3CVSS5.6AI score0.00254EPSS

Exploits3References3

NVD•added 2014/06/18 2:55 p.m.•22 views

CVE-2014-3877

Incomplete blacklist vulnerability in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allows remote attackers to conduct cross-site scripting XSS attacks via the addto parameter to fup...

4.3CVSS5.6AI score0.00274EPSS

Exploits3References3

Prion•added 2014/06/18 2:55 p.m.•15 views

Cross site scripting

Incomplete blacklist vulnerability in Frams' Fast File EXchange FEX, aka fex before fex-20140530 allows remote attackers to conduct cross-site scripting XSS attacks via the addto parameter to fup...

4.3CVSS6AI score0.00274EPSS

Exploits3References3Affected Software1

CVE•added 2014/06/18 2:0 p.m.•72 views

CVE-2014-3877

CVE-2014-3877 affects Frams"e; Fast File EXchange (F*EX, fex) prior to fex-20140530. The issue is an incomplete blacklist that allows remote XSS via the addto parameter to fup. Connected advisories confirm multiple vendors/publications (e.g., Debian DLA-68-1) documenting fex exposure and release ...

4.3CVSS5.8AI score0.00274EPSS

Exploits3References3Affected Software1

Debian CVE•added 2014/06/18 2:0 p.m.•34 views

CVE-2014-3876

4.3CVSS5.7AI score0.00254EPSS

Exploits3

CVE•added 2014/06/18 2:0 p.m.•61 views

CVE-2014-3876

CVE-2014-3876 relates to Frams’ Fast File Exchange (Fex) prior to fex-20140530, where multiple XSS vulnerabilities allow an attacker to inject script/HTML via the (1) akey parameter to rup, (2) disclaimer, or (3) gm parameter to fuc. The related OpenVAS entry confirms “Frams&qt Fast File EXchange...

4.3CVSS5.9AI score0.00254EPSS

Exploits3References3Affected Software1

securityvulns•added 2014/06/14 12:0 a.m.•83 views

LSE Leading Security Experts GmbH - LSE-2014-05-22 - F*EX - Multiple Issues

4.3CVSS6.2AI score0.00789EPSS

Exploits5

NVD•added 2012/09/25 11:55 p.m.•14 views

CVE-2012-1293

Multiple cross-site scripting XSS vulnerabilities in fup in Frams' Fast File EXchange FEX, aka fex before 20111129-2 allow remote attackers to inject arbitrary web script or HTML via the 1 to or 2 from parameters...

4.3CVSS5.7AI score0.0053EPSS

Exploits1References10

OSV•added 2012/09/25 11:55 p.m.•0 views

DEBIAN-CVE-2012-0869

Cross-site scripting XSS vulnerability in fup in Frams' Fast File EXchange FEX, aka fex before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter...

4.3CVSS5.7AI score0.11917EPSS

Exploits0References1

UbuntuCve•added 2012/09/25 11:55 p.m.•31 views

CVE-2012-1293

4.3CVSS5.9AI score0.0053EPSS

Exploits1References1

CVE•added 2012/09/25 11:0 p.m.•70 views

CVE-2012-0869

CVE-2012-0869 concerns FEX (Frams’ Fast File Exchange) via the vulnerable fup script. The issue is a Cross-Site Scripting (XSS) vulnerability exploitable through the id parameter, due to insufficient input sanitization. Affected product: F EX’s web service (fex) and its fup component, prior to 20...

4.3CVSS5.5AI score0.11917EPSS

Exploits0References11Affected Software1

OSV•added 2011/06/24 8:55 p.m.•1 views

DEBIAN-CVE-2011-1409

Frams's Fast File EXchange FEX, aka fex 20100208, and possibly other versions before 20110610, allows remote attackers to bypass authentication and upload arbitrary files via a request that lacks an authentication ID...

5CVSS7.1AI score0.00676EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by