Lucene search
+L

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2021-31405

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00989EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:6 p.m.5 views

CVE-2021-42675

Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution...

9.8CVSS7.7AI score0.02243EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/06/14 5:15 p.m.2 views

CVE-2021-42675

Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution...

9.8CVSS6.1AI score0.02243EPSS
Exploits1References4
OSV
OSV
added 2022/06/14 5:15 p.m.3 views

CVE-2021-42675

Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution...

9.8CVSS6.1AI score0.02243EPSS
Exploits1References3
NVD
NVD
added 2022/06/14 5:15 p.m.14 views

CVE-2021-42675

Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution...

9.8CVSS0.02243EPSS
Exploits1References1
CVE
CVE
added 2022/06/14 4:29 p.m.65 views

CVE-2021-42675

Kreado Kreasfero 1.5 contains a vulnerability where uploaded files to the media directory are not properly sanitized, allowing an attacker to upload a malicious PHP file and obtain remote code execution. This CVE entry documents the impact as remote code execution with network access and no authe...

9.8CVSS9.8AI score0.02243EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/06/14 4:29 p.m.21 views

CVE-2021-42675

Kreado Kreasfero 1.5 does not properly sanitize uploaded files to the media directory. One can upload a malicious PHP file and obtain remote code execution...

10AI score0.02243EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/06/14 12:0 a.m.6 views

Kreado Kreasfero 代码问题漏洞

Kreado Kreasfero is an open source CMS from the German company Kreado. A security vulnerability exists in Kreado Kreasfero version 1.5, which stems from an inability to properly clean up files uploaded to the media directory, and can be exploited by an attacker to upload malicious PHP files and...

9.8CVSS8.7AI score0.02243EPSS
Exploits1References4
NVD
NVD
added 2022/03/29 1:15 a.m.19 views

CVE-2021-44581

An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via the id parameter...

7.5CVSS0.00989EPSS
Exploits0References2
OSV
OSV
added 2022/03/29 1:15 a.m.6 views

CVE-2021-44581

An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via the id parameter...

7.5CVSS7.2AI score0.00989EPSS
Exploits0References2
Prion
Prion
added 2022/03/29 1:15 a.m.16 views

Sql injection

An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via the id parameter...

5CVSS8AI score0.00989EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/03/29 12:45 a.m.64 views

CVE-2021-44581

CVE-2021-44581 affects Kreado Kreasfero 1.5 (an open-source CMS). The vulnerability is an SQL injection via the id parameter, with CVSS v3.1 base score 7.5 (high impact, network access, no user interaction). Connected sources confirm the root cause is improper handling of the id parameter leading...

7.5CVSS8AI score0.00989EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/03/29 12:45 a.m.23 views

CVE-2021-44581

An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via the id parameter...

8.2AI score0.00989EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/03/29 12:0 a.m.5 views

Kreado Kreasfero SQL注入漏洞

Kreado Kreasfero is an open source CMS from the German company Kreado. A security vulnerability exists in Kreado Kreasfero version 1.5, which is caused by a SQL injection vulnerability in the id parameter...

7.5CVSS7.5AI score0.00989EPSS
Exploits0References3
Rows per page
Query Builder