CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

129 matches found

EUVD•added 2026/02/03 1:28 a.m.•3 views

EUVD-2025-206759

A vulnerability in the migration script for Brocade SANnav before 3.0 could allow the collection of database sql queries in the SANnav support save file. An attacker with access to Brocade SANnav supportsave file, could open the file and then obtain sensitive information such as details of databa...

4.6CVSS5.3AI score0.0001EPSS

Exploits0References1

Positive Technologies•added 2026/02/03 12:0 a.m.•7 views

PT-2026-5755

4.6CVSS5.3AI score0.0001EPSS

Exploits0References2

OSV•added 2026/01/01 2:16 p.m.•3 views

CVE-2025-15404

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...

8.8CVSS5.5AI score0.00043EPSS

Exploits1References5

NVD•added 2026/01/01 2:16 p.m.•4 views

CVE-2025-15404

8.8CVSS0.00043EPSS

Exploits1References5

CVE•added 2026/01/01 1:32 p.m.•9 views

CVE-2025-15404

CVE-2025-15404 affects CampCodes School File Management System 1.0. A vulnerability in an unknown function within /save_file.php allows manipulation of the File argument that leads to unrestricted upload. The issue appears to be exploitable remotely, and multiple sources indicate the exploit has ...

8.8CVSS6.4AI score0.00043EPSS

Exploits1References5Affected Software1

EUVD•added 2026/01/01 1:32 p.m.•4 views

EUVD-2026-0018

6.5CVSS6.3AI score0.00043EPSS

Exploits1References7

Positive Technologies•added 2026/01/01 12:0 a.m.•5 views

PT-2026-1004

Name of the Vulnerable Software and Affected Versions campcodes School File Management System version 1.0 Description A security issue exists in campcodes School File Management System 1.0. The issue involves unrestricted file upload due to manipulation of the File argument within an unknown...

8.8CVSS6.1AI score0.00043EPSS

Exploits1References9

Vulnrichment•added 2025/12/29 12:0 a.m.•1 views

CVE-2024-25181

A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side Request Forgery SSRF and arbitrary file reading. The vulnerability stems from improper handling of user-supplied URLs in the "filegetcontents" function within the "save.php" file...

6.8AI score0.00084EPSS

Exploits0References1

RedhatCVE•added 2025/12/25 12:34 a.m.•5 views

CVE-2025-15050

A security vulnerability has been detected in code-projects Student File Management System 1.0. This affects an unknown part of the file /savefile.php. Such manipulation of the argument File leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed publicly...

8.8CVSS6.3AI score0.00062EPSS

Exploits1References1

NVD•added 2025/12/24 1:16 a.m.•5 views

CVE-2025-15050

8.8CVSS0.00062EPSS

Exploits1References6

OSV•added 2025/12/24 1:16 a.m.•3 views

CVE-2025-15050

8.8CVSS5.5AI score0.00062EPSS

Exploits1References6

Positive Technologies•added 2025/12/24 12:0 a.m.•4 views

PT-2025-52865

Name of the Vulnerable Software and Affected Versions code-projects Student File Management System version 1.0 Description A security issue has been identified in code-projects Student File Management System version 1.0. The issue affects an unknown part of the file /save file.php. Manipulation o...

8.8CVSS6.5AI score0.00062EPSS

Exploits1References12

NVD•added 2025/12/10 7:16 p.m.•2 views

CVE-2025-34428

MailEnable versions prior to 10.54 contain a cleartext storage of credentials vulnerability that can lead to local credential compromise and account takeover. The product stores user and administrative passwords in plaintext within AUTH.SAV with overly permissive filesystem access. A local...

8.4CVSS0.00003EPSS

Exploits0References3

NVD•added 2025/10/28 3:15 a.m.•4 views

CVE-2025-12347

A flaw has been found in MaxSite CMS up to 109. This issue affects some unknown processing of the file application/maxsite/admin/plugins/editorfiles/save-file-ajax.php. Executing manipulation of the argument filepath/content can lead to unrestricted upload. The attack can be executed remotely. Th...

8.8CVSS0.0005EPSS

Exploits1References4

OSV•added 2025/10/28 3:15 a.m.•2 views

CVE-2025-12347

8.8CVSS6.6AI score

Exploits0References4

CVE•added 2025/10/28 2:2 a.m.•9 views

CVE-2025-12347

CVE-2025-12347 affects MaxSite CMS up to version 109. The vulnerability resides in the interactive handling of file_path/content in the file application/maxsite/admin/plugins/editor_files/save-file-ajax.php, where manipulation can lead to unrestricted file uploads. Exploitation can be performed r...

8.8CVSS6.2AI score0.0005EPSS

Exploits1References4Affected Software1

EUVD•added 2025/10/28 2:2 a.m.•3 views

EUVD-2025-36424

6.5CVSS6.1AI score0.0005EPSS

Exploits1References5

Cvelist•added 2025/10/28 2:2 a.m.•9 views

CVE-2025-12347 MaxSite CMS save-file-ajax.php unrestricted upload

6.5CVSS0.0005EPSS

Exploits1References4

Vulnrichment•added 2025/10/28 2:2 a.m.•2 views

CVE-2025-12347 MaxSite CMS save-file-ajax.php unrestricted upload

6.5CVSS6.3AI score0.0005EPSS

Exploits1References4

CNNVD•added 2025/10/28 12:0 a.m.•2 views

MaxSite CMS 代码问题漏洞

MaxSite CMS is a Russian open source web content management system from MaxSite CMS. A code issue vulnerability exists in MaxSite CMS version 109 and prior versions, which stems from incorrect manipulation of the parameters filepath or content in the file...

8.8CVSS6.5AI score0.0005EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by