Lucene search
K

142 matches found

Positive Technologies
Positive Technologies
added 2025/10/16 12:0 a.m.8 views

PT-2025-42500

Name of the Vulnerable Software and Affected Versions Ilevia EVE X1 Server firmware versions through 4.7.18.0.eden Description The software contains a reflected cross-site scripting XSS issue in the index.php file. An unauthenticated attacker can leverage this to execute arbitrary code. The vendo...

6.1CVSS5.9AI score0.00371EPSS
Exploits3References10
Vulnrichment
Vulnrichment
added 2025/10/08 1:32 p.m.4 views

CVE-2025-11476 SourceCodester Simple E-Commerce Bookstore index.php sql injection

A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument loginusername leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

7.5CVSS7.2AI score0.00387EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-1068

Malware in sbrugna...

4.3CVSS6.4AI score0.03693EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-3828

Malware in sbrugna...

5CVSS6.4AI score0.00973EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-2164

Malware in sbrugna...

5.3CVSS5.5AI score0.0123EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2003-1165

Malware in sbrugna...

6.8CVSS6.4AI score0.01981EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-2573

Malware in sbrugna...

5.1CVSS6.4AI score0.01092EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-5788

Malware in sbrugna...

6.8CVSS6.4AI score0.01955EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10585

Malware in sbrugna...

9.8CVSS9.5AI score0.02062EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-22302

Malicious code in bioql PyPI...

5.3CVSS6.3AI score0.01567EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53639

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00767EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.10 views

PT-2025-33145 · Unknown · Lepszy Bip

Name of the Vulnerable Software and Affected Versions: Lepszy BIP affected versions not specified Description: Lepszy BIP is susceptible to a Reflected Cross-Site Scripting XSS issue. Insufficient input validation within the index.php form allows for the execution of arbitrary JavaScript code in ...

5.1CVSS6.3AI score0.00417EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.7 views

The vulnerability of the index.php file of the WeGIA web manager allows attackers to perform cross-site scripting attacks.

The vulnerability of the index.php file of the WeGIA web manager is related to the failure to protect the structure of the web page when processing the erro parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks XSS remotely...

7.8CVSS5.2AI score0.0024EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/20 5:0 a.m.4 views

CVE-2025-6310 PHPGurukul Emergency Ambulance Hiring Portal index.php sql injection

A vulnerability, which was classified as critical, has been found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument Message leads to sql injection. The attack may be launched remotely...

7.5CVSS7.6AI score0.00394EPSS
Exploits1References5
CVE
CVE
added 2025/06/05 1:31 a.m.67 views

CVE-2025-5628

CVE-2025-5628 affects SourceCodester Food Menu Manager 1.0. The vulnerability lies in the Add Menu Handler’s file, specifically the /index.php, where manipulation of the name/description parameter enables a cross-site scripting (XSS) attack. The issue can be triggered remotely and the exploit has...

5.4CVSS3.8AI score0.0027EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/05/22 1:15 a.m.16 views

CVE-2025-3883

eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this...

8.8CVSS0.00789EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/22 12:48 a.m.15 views

CVE-2025-3883 eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability

eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of eCharge Hardy Barth cPH2 charging stations. Authentication is not required to exploit this...

8.8CVSS0.00789EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/23 12:0 a.m.7 views

PT-2025-17685 · Echarge · Echarge

Name of the Vulnerable Software and Affected Versions: eCharge Hardy Barth cPH2 affected versions not specified Description: The issue is related to a command injection remote code execution problem. It affects the index.php file. Recommendations: At the moment, there is no information about a...

8.8CVSS9.1AI score0.00789EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/02/27 5:31 p.m.19 views

CVE-2025-1743 zyx0814 Pichome index.php path traversal

A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown part of the file /index.php?mod=textviewer. The manipulation of the argument src leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed t...

6.9CVSS0.0161EPSS
Exploits0References4
NVD
NVD
added 2025/02/12 6:15 p.m.21 views

CVE-2025-1213

A vulnerability was found in pihome-shc PiHome 1.77. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument $SERVER'PHPSELF' leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.4CVSS0.00461EPSS
Exploits1References4
Rows per page
Query Builder