EUVD-2011-0786

Malware in sbrugna...

EUVD-2011-0785

Malware in sbrugna...

EUVD-2011-1051

Malware in sbrugna...

EUVD-2011-0787

Malware in sbrugna...

EUVD-2017-16575

Malware in sbrugna...

PivotX 3.0.0 RC3 - Remote Code Execution (RCE)

Exploit Title: PivotX v3.0.0 RC3 - Stored XSS to Remote Code Execution RCE Date: July 2025 Exploit Author: HayToN Vendor Homepage: https://github.com/pivotx Software Link: https://github.com/pivotx/PivotX Version: 3.0.0 RC3 Tested on: Debian 11, PHP 7.4 CVE : CVE-2025-52367 Vulnerability Type:...

SUSE CVE-2017-9332

The smartyself function in modules/modulesmarty.php in PivotX 2.3.11 mishandles the URI, allowing XSS via vectors involving quotes in the self Smarty tag...

CVE-2017-8402

PivotX 2.3.11 allows remote authenticated users to execute arbitrary PHP code via vectors involving an upload of a .htaccess file...

Stored Cross-Site Scripting Vulnerability in Pivotx

Pivotx is an open source blog content management system. Pivotx 2.3.11 and prior versions have a stored cross-site scripting vulnerability at the home page message comments. A lack of filtering in the lib.php file allows an attacker to inject cross-site statements using only supported tags...