EUVD-2025-198052

An arbitrary file upload vulnerability in the /php/UploadHandler.php component of RichFilemanager v2.7.6 allows attackers to execute arbitrary code via uploading a crafted file...

PT-2025-47373

Name of the Vulnerable Software and Affected Versions RichFilemanager version 2.7.6 Description A flaw exists in the /php/UploadHandler.php component that permits unauthorized file uploads. Successful exploitation allows attackers to execute arbitrary code by uploading a specially crafted file...

EUVD-2025-197756

A vulnerability was determined in lsfusion platform up to 6.1. Affected by this vulnerability is the function UploadFileRequestHandler of the file platform/web-client/src/main/java/lsfusion/http/controller/file/UploadFileRequestHandler.java. Executing manipulation of the argument sid can lead to...

EUVD-2020-6102

Malware in sbrugna...

EUVD-2017-16378

Malware in sbrugna...

Code-Projects Student Crud Operation 代码问题漏洞

Code-Projects Student Crud Operation is a Code-Projects open source student information system. A code issue vulnerability exists in Code-Projects Student Crud Operation version 3.3 and earlier, which stems from improper manipulation of the moveuploadedfile function in the file add.php, which can...

EUVD-2025-17464

Malicious code in bioql PyPI...

EUVD-2024-51373

Malicious code in bioql PyPI...

EUVD-2023-23967

Malicious code in bioql PyPI...

EUVD-2023-47626

Malicious code in bioql PyPI...

EUVD-2022-39022

Malicious code in bioql PyPI...

EUVD-2022-37058

Malicious code in bioql PyPI...

EUVD-2023-57380

Malicious code in bioql PyPI...

EUVD-2023-34372

Malicious code in bioql PyPI...

EUVD-2023-34113

Malicious code in bioql PyPI...

EUVD-2024-49128

Malicious code in bioql PyPI...

EUVD-2023-59090

Malicious code in bioql PyPI...

CVE-2025-10669

A vulnerability was detected in Airsonic-Advanced up to 10.6.0. This vulnerability affects unknown code of the component Playlist Upload Handler. Performing manipulation results in unrestricted upload. It is possible to initiate the attack remotely. The exploit is now public and may be used...

CVE-2025-10669

CVE-2025-10669 affects Airsonic-Advanced up to version 10.6.0 and is linked to the Playlist Upload Handler. The issue allows manipulation leading to unrestricted uploads, with remote initiation possible and public exploits available. Several sources (including PT-2025-38382) indicate a fix is to ...

CVE-2025-10669 Airsonic-Advanced Playlist Upload unrestricted upload

A vulnerability was detected in Airsonic-Advanced up to 10.6.0. This vulnerability affects unknown code of the component Playlist Upload Handler. Performing manipulation results in unrestricted upload. It is possible to initiate the attack remotely. The exploit is now public and may be used...