Lucene search
+L

169 matches found

OSV
OSV
added 2025/12/15 8:22 p.m.6 views

CVE-2023-53868 Coppermine Gallery 1.6.25 Remote Code Execution via Plugin Upload

Coppermine Gallery 1.6.25 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the plugin manager. Attackers can upload a zipped PHP file with system commands to the plugin directory and execute arbitrary code by accessing the...

8.7CVSS6.8AI score0.00744EPSS
Exploits1References5
CVE
CVE
added 2025/12/15 8:22 p.m.16 views

CVE-2023-53868

CVE-2023-53868 affects Coppermine Gallery 1.6.25. The Red Hat and other connected sources confirm a remote code execution vulnerability in the plugin manager that lets an authenticated user upload a zipped PHP file containing system commands to the plugin directory and then execute code by access...

8.8CVSS8.4AI score0.00744EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.7 views

Coppermine Photo Gallery 安全漏洞

Coppermine Photo Gallery CPG is a web-based photo album management system written in PHP by Coppermine team. The system provides user management, album password access restrictions and automatic generation of thumbnails and other features. A security vulnerability exists in Coppermine Photo Galle...

8.8CVSS8.2AI score0.00744EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.9 views

PT-2025-51310

Name of the Vulnerable Software and Affected Versions Blackcat CMS version 1.4 Description Blackcat CMS version 1.4 has a remote code execution issue. Authenticated administrators can upload malicious PHP files using the jquery plugin manager. An attacker can upload a zip file containing a PHP...

8.6CVSS8.3AI score0.00797EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.6 views

PT-2025-51286

Name of the Vulnerable Software and Affected Versions Coppermine Gallery version 1.6.25 Description Coppermine Gallery version 1.6.25 has a remote code execution issue. Authenticated attackers can upload malicious PHP files through the plugin manager. Attackers can upload a zipped PHP file...

8.8CVSS8.4AI score0.00744EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.6 views

Blackcat CMS 安全漏洞

Blackcat CMS is a content management system from the German company Blackcat. A security vulnerability exists in Blackcat CMS version 1.4 that stems from allowing authenticated administrators to upload malicious PHP files via the jquery plugin manager, which could lead to remote code execution...

8.6CVSS7.8AI score0.00797EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/11/14 10:11 a.m.9 views

CVE-2025-64271

Cross-Site Request Forgery CSRF vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through = 1.4.7...

6.5CVSS6.9AI score0.00105EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/13 12:31 p.m.6 views

EUVD-2025-163777

Cross-Site Request Forgery CSRF vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through = 1.4.7...

6.5CVSS6.3AI score0.00105EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/13 10:34 a.m.9 views

WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Mika in WordPress Plugin WP Plugin Manager versions = 1.4.7...

6.5CVSS6.7AI score0.00105EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/11/13 9:24 a.m.12 views

CVE-2025-64271 WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through = 1.4.7...

4.3CVSS0.00105EPSS
Exploits0References1
CVE
CVE
added 2025/11/13 9:24 a.m.13 views

CVE-2025-64271

CVE-2025-64271 describes a Cross-Site Request Forgery (CSRF) vulnerability in HasThemes WP Plugin Manager (wp-plugin-manager) affecting version range up to and including 1.4.7. The issue arises from insufficient validation of requests from trusted users, enabling authenticated actions to be spoof...

6.5CVSS6.5AI score0.00105EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/13 9:24 a.m.4 views

CVE-2025-64271 WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through = 1.4.7...

4.3CVSS6.5AI score0.00105EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.5 views

WordPress plugin WP Plugin Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress WP Manager plugin, which arises from a web application that does not adequately validate that a request is...

6.5CVSS6.4AI score0.00105EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.7 views

PT-2025-46804

Name of the Vulnerable Software and Affected Versions HasThemes WP Plugin Manager versions through 1.4.7 Description The software is susceptible to a Cross-Site Request Forgery CSRF issue. This allows an attacker to potentially perform actions on behalf of an authenticated user without their...

6.5AI score0.00105EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2018-17012

Malware in sbrugna...

5.4CVSS5.4AI score0.00591EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2018-12799

Malware in sbrugna...

6.5CVSS6.5AI score0.01818EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2019-6087

Malware in sbrugna...

4.3CVSS4.8AI score0.00555EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-4520

Malware in sbrugna...

4.3CVSS6.4AI score0.01629EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-7003

Malware in sbrugna...

7.2CVSS7AI score0.01301EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30910

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00353EPSS
Exploits1References2
Rows per page
Query Builder