CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-16400

Malware in sbrugna...

5.4CVSS5.6AI score0.00191EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2004-1718

Malware in sbrugna...

7.5CVSS6.4AI score0.03633EPSS

Exploits1References5

IBM Security Bulletins•added 2025/05/31 2:6 p.m.•27 views

Security Bulletin: There are multiple vulnerabilities that can affect IBM Fusion

Summary Multiple vulnerabilities affecting IBM Fusion could have resulted in reduced security. These issues have since been resolved. CVE-2024-6783, CVE-2024-9880, CVE-2024-51744, CVE-2024-47764, CVE-2024-9506, CVE-2024-45338, CVE-2025-25193, CVE-2024-21538, CVE-2025-27152, CVE-2024-47535,...

9.8CVSS8.5AI score0.26297EPSS

Exploits8Affected Software1

Cvelist•added 2025/01/28 1:50 a.m.•8 views

CVE-2024-22315 IBM Fusion improper communication restriction

IBM Fusion and IBM Fusion HCI 2.3.0 through 2.8.2 is vulnerable to insecure network connection by allowing an attacker who gains access to a Fusion container to establish an external network connection...

4CVSS0.00021EPSS

Exploits0References1

CNVD•added 2021/07/05 12:0 a.m.•5 views

Unspecified Vulnerability in PHP-Fusion

PHP-Fusion is a Malaysian company PHP-Fusion open source lightweight content management system based on MySql and PHP . The system contains modules such as news, articles and forums. PHP-Fusion suffers from a security vulnerability that stems from a session cookie not being deleted when a user lo...

5.5CVSS6.8AI score0.00127EPSS

Exploits1References1

OSV•added 2020/05/08 12:15 a.m.•1 views

CVE-2020-12718

In administration/comments.php in PHP-Fusion 9.03.50, an authenticated attacker can take advantage of a stored XSS vulnerability in the Preview Comment feature. The protection mechanism can be bypassed by using HTML event handlers such as ontoggle...

5.4CVSS5.8AI score

Exploits0References1

NVD•added 2019/05/14 9:29 p.m.•9 views

CVE-2019-12099

In PHP-Fusion 9.03.00, editprofile.php allows remote authenticated users to execute arbitrary code because includes/dynamics/includes/formfileinput.php and includes/classes/PHPFusion/Installer/Lib/Core.settings.inc mishandle executable files during avatar upload...

9CVSS8.8AI score0.45961EPSS

Exploits1References3

Tenable Nessus•added 2005/03/09 12:0 a.m.•66 views

PHP-Fusion BBCode IMG Tag XSS

The remote host is running a version of PHP-Fusion that does not sufficiently sanitize JavaScript code. Specifically, an attacker can inject JavaScript code that bypasses the filters in 'fusioncore.php' by HTML-encoding it. This code will then be executed in the context of a user's browser when...

4.3CVSS5.7AI score0.00335EPSS

Exploits0References2

Exploit DB•added 2005/03/08 12:0 a.m.•23 views

PHP-Fusion 5.0 - BBCode IMG Tag Script Injection

source: https://www.securityfocus.com/bid/12751/info PHP-Fusion is reported prone to a script injection vulnerability. This issue is due to the application failing to properly sanitize user-supplied input prior to including it in dynamically generated content. An attacker can supply ASCII...

7.4AI score

Exploits0