CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

305 matches found

CVE•added 2025/11/06 3:54 p.m.•11 views

CVE-2025-53283

The CVE-2025-53283 entry concerns the WordPress plugin Drop Uploader for CF7 - Drag&Drop File Uploader Addon (versions up to and including 2.4.1). The vulnerability is described as Unrestricted Upload of File with Dangerous Type, allowing an attacker to upload a Web Shell to the web server. Multi...

10CVSS6.5AI score0.00372EPSS

Exploits0References1

RedhatCVE•added 2025/10/24 2:33 p.m.•4 views

CVE-2025-58963

Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows Upload a Web Shell to a Web Server.This issue affects Medcity: from n/a through 1.1.9...

10CVSS6.9AI score0.00446EPSS

Exploits0References1

NVD•added 2025/10/22 3:15 p.m.•4 views

CVE-2025-58963

Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows Upload a Web Shell to a Web Server.This issue affects Medcity: from n/a through 1.1.9...

10CVSS0.00446EPSS

Exploits0References1

Vulnrichment•added 2025/10/22 2:32 p.m.•3 views

CVE-2025-58963 WordPress Medcity theme < 1.1.9 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows Upload a Web Shell to a Web Server.This issue affects Medcity: from n/a through 1.1.9...

10CVSS6.5AI score0.00446EPSS

Exploits0References1

CVE•added 2025/10/22 2:32 p.m.•10 views

CVE-2025-58963

CVE-2025-58963 affects WordPress Medcity theme (versions prior to 1.1.9). The Red Hat and NVD entries, EUVD/ENISA records, and CVE listings consistently describe an unrestricted upload of files with dangerous types in the Medcity plugin/theme, enabling upload of a Web Shell to the web server. Roo...

10CVSS6.5AI score0.00446EPSS

Exploits0References1

Cvelist•added 2025/10/22 2:32 p.m.•11 views

CVE-2025-58963 WordPress Medcity theme < 1.1.9 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows Upload a Web Shell to a Web Server.This issue affects Medcity: from n/a through 1.1.9...

10CVSS0.00446EPSS

Exploits0References1

Cvelist•added 2025/10/22 2:32 p.m.•7 views

CVE-2025-49060 WordPress Wastia theme < 1.1.3 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in CMSSuperHeroes Wastia wastia allows Upload a Web Shell to a Web Server.This issue affects Wastia: from n/a through 1.1.3...

10CVSS0.00415EPSS

Exploits0References1

Positive Technologies•added 2025/10/22 12:0 a.m.•4 views

PT-2025-43164

Name of the Vulnerable Software and Affected Versions CMSSuperHeroes Wastia versions prior to 1.1.3 Description A flaw exists in CMSSuperHeroes Wastia that permits the unrestricted upload of files with dangerous types. This allows for the upload of a Web Shell to a Web Server. Recommendations...

10CVSS6.7AI score0.00415EPSS

Exploits0References4