Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

Packet Storm
Packet Stormadded 2026/02/19 12:0 a.m.113 views

📄 SofaWiki 3.9.2 Shell Upload

This is a proof of concept remote shell upload exploit for SofaWiki version 3.9.2 that leverages an issue originally discovered in 2024. ============================================================================================================================================= | Title : SofaWiki...

5.6AI score
Exploits0
Packet Storm News
Packet Storm Newsadded 2026/02/19 12:0 a.m.3 views

SofaWiki 3.9.2 Shell Upload

This is a proof of concept remote shell upload exploit for SofaWiki version 3.9.2 that leverages an issue originally discovered in 2024...

6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/01/09 12:38 p.m.3 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.8CVSS7AI score0.01372EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-33258

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00218EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-33259

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01372EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 3:41 a.m.3 views

CVE-2023-29720

SofaWiki =3.8.9 is vulnerable to Cross Site Scripting XSS via index.php...

6.1CVSS6AI score0.00218EPSS
Exploits1References1
0day.today
0day.todayadded 2024/10/22 12:0 a.m.246 views

SofaWiki 3.9.2 Cross Site Scripting Vulnerability

Exploit Title: SofaWiki 3.9.2 - Stored XSS Authenticated Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A stored XSS exists in SofaWiki's Open Ticket feature. An...

7.4AI score
Exploits0
0day.today
0day.todayadded 2024/10/22 12:0 a.m.276 views

SofaWiki 3.9.2 Shell Upload Exploit

Exploit Title: SofaWiki 3.9.2 - Remote Code Execution RCE via Open Ticket File Upload Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A remote code execution RCE...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/10/17 12:0 a.m.398 views

SofaWiki 3.9.2 Shell Upload

Exploit Title: SofaWiki 3.9.2 - Remote Code Execution RCE via Open Ticket File Upload Date: 10/17/2024 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A remote co...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/10/17 12:0 a.m.318 views

SofaWiki 3.9.2 Cross Site Scripting

Exploit Title: SofaWiki 3.9.2 - Reflected XSS Authenticated via Regex Replace Preview Date: 10/17/2024 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A reflected...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/10/17 12:0 a.m.333 views

SofaWiki 3.9.2 Cross Site Scripting

Exploit Title: SofaWiki 3.9.2 - Stored XSS Authenticated Date: 10/17/2024 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A stored XSS exists in SofaWiki's Open...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/04/22 12:0 a.m.217 views

SofaWiki 3.9.2 Shell Upload

Exploit Title: SofaWiki 3.9.2 - Remote Command Execution RCE Authenticated Discovered by: Ahmet Ümit BAYRAM Discovered Date: 18.04.2024 Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Tested Version: v3.9.2 latest Tested on: MacOS import...

7.4AI score
Exploits0
0day.today
0day.todayadded 2024/04/21 12:0 a.m.272 views

SofaWiki 3.9.2 - Remote Command Execution (Authenticated) Exploit

Exploit Title: SofaWiki 3.9.2 - Remote Command Execution RCE Authenticated Discovered by: Ahmet Ümit BAYRAM Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Tested Version: v3.9.2 latest Tested on: MacOS import requests import random import...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2024/04/21 12:0 a.m.275 views

SofaWiki 3.9.2 - Remote Command Execution (RCE) (Authenticated)

Exploit Title: SofaWiki 3.9.2 - Remote Command Execution RCE Authenticated Discovered by: Ahmet Ümit BAYRAM Discovered Date: 18.04.2024 Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Tested Version: v3.9.2 latest Tested on: MacOS import...

7.4AI score
Exploits0
NVD
NVDadded 2023/05/24 9:15 p.m.11 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.8CVSS9.7AI score0.01372EPSS
Exploits1References2
OSV
OSVadded 2023/05/24 9:15 p.m.0 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.8CVSS7.3AI score0.01372EPSS
Exploits1References2
Prion
Prionadded 2023/05/24 9:15 p.m.10 views

Privilege escalation

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

7.5CVSS9.6AI score0.01372EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2023/05/24 12:0 a.m.1 views

PT-2023-22373 · Sofawiki · Sofawiki

Name of the Vulnerable Software and Affected Versions: SofaWiki versions prior to 3.8.9 Description: The issue is related to a file upload vulnerability that can lead to command execution. Recommendations: For versions prior to 3.8.9, update to version 3.8.9 or later to resolve the issue...

9.8CVSS9.5AI score0.01372EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2023/05/24 12:0 a.m.8 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.7AI score0.01372EPSS
Exploits1References2
CVE
CVEadded 2023/05/24 12:0 a.m.50 views

CVE-2023-29721

CVE-2023-29721 affects SofaWiki versions up to 3.8.9. A file-upload vulnerability allows command execution, per multiple connected records (e.g., Red Hat, NVD, CNNVD). The CVSS indicates critical impact with network attack vector and no user interaction required. Remediation guidance found in PT-...

9.8CVSS9.5AI score0.01372EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder