CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Vulnrichment•added 2026/04/05 3:0 a.m.•1 views

CVE-2026-5537 halex CourseSEL HTTP GET Parameter IndexController.class.php check_sel sql injection

A security vulnerability has been detected in halex CourseSEL up to 1.1.0. Affected by this vulnerability is the function checksel of the file Apps/Index/Controller/IndexController.class.php of the component HTTP GET Parameter Handler. The manipulation of the argument seid leads to sql injection...

6.5CVSS6.4AI score0.00011EPSS

Exploits0References4

Cvelist•added 2026/04/05 3:0 a.m.•27 views

CVE-2026-5537 halex CourseSEL HTTP GET Parameter IndexController.class.php check_sel sql injection

6.5CVSS0.00011EPSS

Exploits0References4

Cvelist•added 2025/07/18 3:14 p.m.•20 views

CVE-2025-7789 Xuxueli xxl-job Token Generation IndexController.java makeToken weak password hash

A vulnerability was found in Xuxueli xxl-job up to 3.1.1 and classified as problematic. Affected by this issue is the function makeToken of the file src/main/java/com/xxl/job/admin/controller/IndexController.java of the component Token Generation. The manipulation leads to password hash with...

6.3CVSS0.00134EPSS

Exploits1References4

RedhatCVE•added 2025/05/23 3:30 a.m.•5 views

CVE-2023-27088

feiqu-opensource Background Vertical authorization vulnerability exists in IndexController.java. demo users with low permission can perform operations within the permission of the admin super administrator and can use this vulnerability to change the blacklist IP address in the system at will...

8.8CVSS6.8AI score0.00246EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:16 a.m.•6 views

CVE-2022-45290

Kbase Doc v1.0 was discovered to contain an arbitrary file deletion vulnerability via the component /web/IndexController.java...

9.1CVSS7.5AI score0.00664EPSS

Exploits1References1

OSV•added 2024/12/19 6:15 p.m.•0 views

CVE-2024-12793

A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3. Affected by this issue is some unknown functionality of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to path traversal. The attack may be launched remotel...

4.3CVSS5AI score0.0041EPSS

Exploits0References4

Vulnrichment•added 2024/12/19 6:0 p.m.•10 views

CVE-2024-12793 PbootCMS IndexController.php path traversal

5.3CVSS6.9AI score0.0041EPSS

Exploits0References4

OSV•added 2024/12/19 5:15 p.m.•0 views

CVE-2024-12789

A vulnerability was found in PbootCMS up to 3.2.3. It has been classified as critical. This affects an unknown part of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to code injection. It is possible to initiate the attack remotely. The exploit has...

9.8CVSS5.5AI score

Exploits0References4

CNNVD•added 2024/12/19 12:0 a.m.•0 views

PbootCMS 路径遍历漏洞

PbootCMS is PbootCMS open source an open source enterprise website content management system CMS developed using the PHP language. A path traversal vulnerability exists in PbootCMS version 3.2.3 and earlier versions, which originates from the tag parameter of the...

5.3CVSS4.9AI score0.0041EPSS

Exploits0References4

Positive Technologies•added 2024/12/19 12:0 a.m.•3 views

PT-2024-17739 · Pbootcms · Pbootcms

Name of the Vulnerable Software and Affected Versions: PbootCMS versions up to 3.2.3 Description: A critical issue has been found in PbootCMS, affecting an unknown part of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to code injection. It is possib...

9.8CVSS7.2AI score0.00657EPSS

Exploits0References9

Positive Technologies•added 2024/12/19 12:0 a.m.•2 views

PT-2024-17744 · Pbootcms · Pbootcms

Name of the Vulnerable Software and Affected Versions: PbootCMS versions prior to 5.2.4 Description: A problem has been found in some unknown functionality of the file apps/home/controller/IndexController.php. The manipulation of the argument tag leads to path traversal. The attack may be launche...

5.3CVSS5AI score0.0041EPSS

Exploits0References8

NVD•added 2022/12/09 7:15 p.m.•9 views

CVE-2022-45290

Kbase Doc v1.0 was discovered to contain an arbitrary file deletion vulnerability via the component /web/IndexController.java...

9.1CVSS0.00664EPSS

Exploits1References1

Positive Technologies•added 2022/12/09 12:0 a.m.•2 views

PT-2022-27459 · Kbase Doc · Kbase Doc

Name of the Vulnerable Software and Affected Versions: Kbase Doc version 1.0 Description: The issue is related to an arbitrary file deletion vulnerability. It affects the component /web/IndexController.java. There is no information provided about the estimated number of potentially affected devic...

9.1CVSS9AI score0.00664EPSS

Exploits1References3