Lucene search
K

5 matches found

OSV
OSV
added 2025/12/17 7:3 p.m.6 views

CVE-2025-62521 ChurchCRM has unauthenticated RCE in its Install Wizard

ChurchCRM is an open-source church management system. Prior to version 5.21.0, a pre-authentication remote code execution vulnerability in ChurchCRM's setup wizard allows unauthenticated attackers to inject arbitrary PHP code during the initial installation process, leading to complete server...

10CVSS8.2AI score0.04151EPSS
Exploits3References3
CVE
CVE
added 2025/11/26 2:1 a.m.14 views

CVE-2025-66026

CVE-2025-66026 is a reflected XSS in REDAXO CMS (pre-5.20.1) affecting the Mediapool view where args[types] is echoed into an info banner without escaping. The root cause is lack of HTML-escaping when rendering the value, allowing an authenticated user to trigger arbitrary JavaScript execution in...

6.1CVSS5.4AI score0.00228EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2021/06/28 12:0 a.m.6 views

SICK Visionary-S CX 加密问题漏洞

SICK Visionary-S CX is a 3D vision sensor from SICK, Germany. It provides direct output of color and depth values via Ethernet. The SICK Visionary-S CX has a security vulnerability in versions prior to 5.21.2.29154R, which can be exploited by an attacker with a weak password to more easily...

5.3CVSS5.6AI score0.00264EPSS
Exploits0References1
PyPA
PyPA
added 2021/06/08 6:15 p.m.8 views

PYSEC-2021-104

Zope is an open-source web application server. This advisory extends the previous advisory at https://github.com/zopefoundation/Zope/security/advisories/GHSA-5pr9-v234-jw36 with additional cases of TAL expression traversal vulnerabilities. Most Python modules are not available for using in TAL...

8.8CVSS6.9AI score0.01574EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2019/04/09 5:29 a.m.5 views

CVE-2019-10631

Shell Metacharacter Injection in the package installer on Zyxel NAS 326 version 5.21 and below allows an authenticated attacker to execute arbitrary code via multiple different requests...

8.8CVSS7.6AI score0.02291EPSS
Exploits1References1
Rows per page
Query Builder