Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

273 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 11:59 a.m.4 views

CVE-2018-19180

statics/app/index/controller/Install.php in YUNUCMS 1.1.5 if install.lock is not present allows remote attackers to execute arbitrary PHP code by placing this code in the index.php?s=index/install/setup2 DBPREFIX field, which is written to database.php...

9.8CVSS7.9AI score0.0074EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:28 a.m.5 views

CVE-2019-12204

In SilverStripe through 4.3.3, a missing warning about leaving install.php in a public webroot can lead to unauthenticated admin access...

9.8CVSS6.8AI score0.00832EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/12/16 11:55 p.m.3 views

CVE-2025-58173

FreshRSS is a self-hosted RSS feed aggregator. In versions 1.23.0 through 1.27.0, using a path traversal inside the language user configuration parameter, it's possible to call install.php and perform various administrative actions as an unprivileged user. These actions include logging in as the...

8.8CVSS7.3AI score0.00157EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/12/15 11:7 p.m.2 views

CVE-2025-58173 FreshRSS vulnerable to authenticated RCE via path traversal inside include()

FreshRSS is a self-hosted RSS feed aggregator. In versions 1.23.0 through 1.27.0, using a path traversal inside the language user configuration parameter, it's possible to call install.php and perform various administrative actions as an unprivileged user. These actions include logging in as the...

8.7CVSS6.9AI score0.00157EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/10 9:31 p.m.2 views

EUVD-2025-33763

e107 CMS thru 2.3.3 are vulnerable to insecure deserialization in the install.php script. The script processes user-controlled input in the previoussteps POST parameter using unserializebase64decode without validation, allowing attackers to craft malicious serialized data. This could lead to remo...

6.5CVSS7.5AI score0.00552EPSS
Exploits1References3
OSV
OSVadded 2025/10/10 7:15 p.m.1 views

CVE-2025-61505

e107 CMS thru 2.3.3 are vulnerable to insecure deserialization in the install.php script. The script processes user-controlled input in the previoussteps POST parameter using unserializebase64decode without validation, allowing attackers to craft malicious serialized data. This could lead to remo...

6.5CVSS7.9AI score
Exploits0References2
Cvelist
Cvelistadded 2025/10/10 12:0 a.m.5 views

CVE-2025-61505

e107 CMS thru 2.3.3 are vulnerable to insecure deserialization in the install.php script. The script processes user-controlled input in the previoussteps POST parameter using unserializebase64decode without validation, allowing attackers to craft malicious serialized data. This could lead to remo...

0.00552EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/10/10 12:0 a.m.1 views

e107 安全漏洞

e107 is an open source, free and PHP and MySQL based content management system CMS by the E107 team. The system supports a wide range of plug-ins and look-alike themes, and can be used as a personal blog, discussion community, archive repository, and so on. A security vulnerability exists in e107...

6.5CVSS8.1AI score0.00552EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-17251

Malware in sbrugna...

9.8CVSS9.5AI score0.00513EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2007-1445

Malware in sbrugna...

6.4CVSS6.4AI score0.01124EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2008-0136

Malware in sbrugna...

4.3CVSS6.1AI score0.01066EPSS
Exploits2References11
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2007-0701

Malware in sbrugna...

7.5CVSS6.4AI score0.04865EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2005-0801

Malware in sbrugna...

7.5CVSS6.4AI score0.019EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2013-7224

Malware in sbrugna...

8.8CVSS8.8AI score0.01377EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-5886

Malware in sbrugna...

9.8CVSS9.5AI score0.00477EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2006-2540

Malware in sbrugna...

5CVSS6.4AI score0.00408EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-10603

Malware in sbrugna...

9.8CVSS9.5AI score0.01125EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-2501

Malware in sbrugna...

9.8CVSS9.5AI score0.00486EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-17252

Malware in sbrugna...

9.8CVSS9.5AI score0.00477EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2014-9388

Malware in sbrugna...

9.3CVSS6.4AI score0.00914EPSS
Exploits1References4
Rows per page
Query Builder