CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

RedhatCVE•added 2025/05/23 7:53 a.m.•6 views

CVE-2024-42523

publiccms V4.0.202302.e and before is vulnerable to Any File Upload via publiccms/admin/cmsTemplate/saveMetaData...

7.2CVSS7AI score0.0051EPSS

Exploits1References1

OSV•added 2024/07/12 4:15 p.m.•4 views

CVE-2024-40550

An arbitrary file upload vulnerability in the component /admin/cmsTemplate/savePlaceMetaData of Public CMS v.4.0.202302.e allows attackers to execute arbitrary code via uploading a crafted file...

8.8CVSS7.7AI score

Exploits0References1

Cvelist•added 2024/07/12 12:0 a.m.•15 views

CVE-2024-40547

PublicCMS v4.0.202302.e was discovered to contain an arbitrary file content replacement vulnerability via the component /admin/cmsTemplate/replace...

0.00328EPSS

Exploits1References1

CNNVD•added 2024/07/12 12:0 a.m.•2 views

PublicCMS Code Issues Vulnerabilities

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A code issue vulnerability exists in PublicCMS version v4.0.202302.e, which stems from vulnerability to server-side request forgery attacks...

8.8CVSS7.1AI score0.00302EPSS

Exploits1References2

CNNVD•added 2024/07/12 12:0 a.m.•2 views

PublicCMS Security Vulnerabilities

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A security vulnerability exists in PublicCMS version v4.0.202302.e, which originates from a Contains Arbitrary File Content Replacement vulnerability...

6.5CVSS6.8AI score0.00328EPSS

Exploits1References2

CNNVD•added 2024/07/12 12:0 a.m.•2 views

PublicCMS Code Issues Vulnerabilities

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A code issue vulnerability exists in PublicCMS version v4.0.202302.e. The vulnerability stems from the presence of an arbitrary file upload vulnerability, which allows an attacker to execute arbitrary co...

8.8CVSS7.7AI score0.00667EPSS

Exploits1References2

CNNVD•added 2024/07/12 12:0 a.m.•3 views

PublicCMS Code Issues Vulnerabilities

8.8CVSS7.7AI score0.00667EPSS

Exploits1References2

CNNVD•added 2024/07/12 12:0 a.m.•4 views

PublicCMS Code Issues Vulnerabilities

8.8CVSS7.7AI score0.00423EPSS

Exploits1References2

CNNVD•added 2024/07/12 12:0 a.m.•2 views

PublicCMS Security Vulnerabilities

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A security vulnerability exists in PublicCMS version v4.0.202302.e, which stems from the presence of remote command execution...

8.8CVSS7.2AI score0.00721EPSS

Exploits1References2

Positive Technologies•added 2024/07/12 12:0 a.m.•2 views

PT-2024-28912 · Publiccms · Publiccms

Name of the Vulnerable Software and Affected Versions: PublicCMS version 4.0.202302.e Description: The issue allows for arbitrary file content replacement via the /admin/cmsTemplate/replace API endpoint. Recommendations: For PublicCMS version 4.0.202302.e, consider restricting access to the...

6.5CVSS6.8AI score0.00328EPSS

Exploits1References4

CNNVD•added 2024/04/16 12:0 a.m.•2 views

PublicCMS 安全漏洞

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A security vulnerability exists in PublicCMS version v.4.0.202302.e. The vulnerability stems from an issue that allows an attacker to escalate privileges via the Change Password feature...

8.8CVSS7.1AI score0.00875EPSS

Exploits1References4

CNVD•added 2024/03/28 12:0 a.m.•6 views

PublicCMS Cross-Site Request Forgery Vulnerability

PublicCMS is a content management system. A cross-site request forgery vulnerability exists in PubliCMS version 4.0.202302.e. The vulnerability stems from a WEB application that does not adequately validate that a request is coming from a trusted user. The vulnerability can be exploited to forge ...

6.9CVSS6.6AI score0.00322EPSS

Exploits0References1

CNNVD•added 2024/03/26 12:0 a.m.•4 views

PublicCMS 跨站请求伪造漏洞

6.9CVSS6.8AI score0.00322EPSS

Exploits0References6

NVD•added 2023/11/20 8:15 p.m.•10 views

CVE-2023-46990

Deserialization of Untrusted Data in PublicCMS v.4.0.202302.e allows a remote attacker to execute arbitrary code via a crafted script to the writeReplace function...

9.8CVSS0.01458EPSS

Exploits1References1

CNNVD•added 2023/11/20 12:0 a.m.•2 views

PublicCMS Security Vulnerabilities

PublicCMS is an open source content management system CMS written in Java by PublicCMS China. A security vulnerability exists in PublicCMS version v.4.0.202302.e, which stems from the presence of a deserialization vulnerability. An attacker can exploit the vulnerability to execute arbitrary code...

9.8CVSS7.8AI score0.01458EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by