Lucene search
+L

1115 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-16134

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00465EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-33715

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01194EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-46319

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00443EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-50396

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00239EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/01 2:16 p.m.1 views

CVE-2012-10062

A vulnerability in XAMPP, developed by Apache Friends, version 1.7.3's default WebDAV configuration allows remote authenticated attackers to upload and execute arbitrary PHP code. The WebDAV service, accessible via /webdav/, accepts HTTP PUT requests using default credentials. This permits...

8.7CVSS8.5AI score0.01209EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2025/08/30 1:57 p.m.17 views

CVE-2012-10062

A vulnerability in XAMPP, developed by Apache Friends, version 1.7.3's default WebDAV configuration allows remote authenticated attackers to upload and execute arbitrary PHP code. The WebDAV service, accessible via /webdav/, accepts HTTP PUT requests using default credentials. This permits...

8.7CVSS6.6AI score0.01209EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2025/08/30 1:57 p.m.3 views

CVE-2012-10062 XAMPP WebDAV PHP Upload Authentication Bypass RCE

A vulnerability in XAMPP, developed by Apache Friends, version 1.7.3's default WebDAV configuration allows remote authenticated attackers to upload and execute arbitrary PHP code. The WebDAV service, accessible via /webdav/, accepts HTTP PUT requests using default credentials. This permits...

8.7CVSS8AI score0.01209EPSS
Exploits2References4
CVE
CVE
added 2025/08/30 1:57 p.m.21 views

CVE-2012-10062

CVE-2012-10062 affects XAMPP 1.7.3 with default WebDAV configuration, where the WebDAV service at /webdav/ accepts HTTP PUT using default credentials, allowing remote authenticated attackers to upload a PHP payload and trigger execution via a GET request, resulting in remote code execution on the...

8.7CVSS8AI score0.01209EPSS
Exploits2References4
Cvelist
Cvelist
added 2025/08/30 1:57 p.m.14 views

CVE-2012-10062 XAMPP WebDAV PHP Upload Authentication Bypass RCE

A vulnerability in XAMPP, developed by Apache Friends, version 1.7.3's default WebDAV configuration allows remote authenticated attackers to upload and execute arbitrary PHP code. The WebDAV service, accessible via /webdav/, accepts HTTP PUT requests using default credentials. This permits...

8.7CVSS0.01209EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/08/30 12:0 a.m.4 views

XAMPP 安全漏洞

XAMPP is an easy-to-install Apache distribution that includes MariaDB, PHP, and Perl.The product is primarily used for building web servers. A security vulnerability exists in Apache Friends XAMPP version 1.7.3, which stems from the default WebDAV configuration using default credentials, and coul...

8.7CVSS7.3AI score0.01209EPSS
Exploits2References6
RedhatCVE
RedhatCVE
added 2025/05/23 12:26 a.m.14 views

CVE-2022-47637

The installer in XAMPP through 8.1.12 allows local users to write to the C:\xampp directory. Common use cases execute files under C:\xampp with administrative privileges...

6.7CVSS6.9AI score0.00239EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:45 p.m.12 views

CVE-2022-29376

Xampp for Windows v8.1.4 and below was discovered to contain insecure permissions for its install directory, allowing attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS8.4AI score0.01194EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 a.m.7 views

CVE-2019-8920

iart.php in XAMPP 1.7.0 has XSS, a related issue to CVE-2008-3569...

6.1CVSS6.8AI score0.03037EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:55 a.m.12 views

CVE-2017-20018

A vulnerability was found in XAMPP 7.1.1-0-VC14. It has been classified as problematic. Affected is an unknown function of the component Installer. The manipulation leads to privilege escalation. It is possible to launch the attack remotely...

7.8CVSS7AI score0.00595EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2025/04/22 12:0 a.m.302 views

📄 Online Exam Mastering System 1.0 Cross Site Scripting

Online Exam Mastering System version 1.0 suffers from a cross site scripting vulnerability. Exploit Title: code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting XSS Google Dork: inurl:/exam/feedback.php Date: 2025-04-19 Exploit Author: Pruthu Raut Vendor Homepage:...

6.1CVSS6.2AI score0.00779EPSS
Exploits4
Packet Storm
Packet Storm
added 2025/03/28 12:0 a.m.229 views

Kyaan 1.0 SQL Injection

Kyaan version 1.0 suffers from a remote SQL injection vulnerability. Exploit Title: kyaan - Multiple Vulnerabilities Date: March 27, 2025 Exploit Author: wa03 Telegram: @wa03 Vendor Homepage: https://kyaan.co Version: 1.0 Tested on: Windows local xampp DBMS: MySQL CVE: N/A Google Dork:...

8.5AI score
Exploits0
GithubExploit
GithubExploit
added 2025/03/20 12:5 p.m.512 views

Exploit for Out-of-bounds Write in Gibbonedu Gibbon

CVE-2023-45878-POC CVE-2023-45878 poc for gibbon LMS on xampp...

9.8CVSS7.4AI score0.63113EPSS
Exploits8
Packet Storm
Packet Storm
added 2024/12/02 12:0 a.m.304 views

Simple Chat System 1.0 Cross Site Scripting

Exploit Title:Simple Chat System 1.0 Reflected XSS Date:05/12/2024 Exploit Author:Merve Hatice Arslan Vendor Homepage:https://code-projects.org/simple-chat-system/ Sofware Link:https://download.code-projects.org/details/ec6340ea-ef68-48d9-b9b2-da397f52b2dc Version:1.0 Tested on:Linux / XAMPP...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/09/23 12:0 a.m.177 views

BlackNET 3.7.0.0 Missing Authentication / File Deletion / Traversal Exploit

BlackNET version 3.7.0.0 appears to allow unauthenticated access to modify data and suffers from arbitrary file deletion and directory traversal vulnerabilities while authenticated. Exploit Title: BlackNET - Multiple Vulnerabilities Exploit Author: bRpsd Date: 20/09/2024 Vendor Homepage:...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2024/09/20 12:0 a.m.393 views

BlackNET 3.7.0.0 Missing Authentication / File Deletion / Traversal

Exploit Title: BlackNET - Multiple Vulnerabilities Exploit Author: bRpsd Date: 20/09/2024 Vendor Homepage: https://github.com/AndroVirus Software Link: https://github.com/AndroVirus/BlackNET/ Version: v3.7.0.0 Tested on: MacOS - Xampp CVE: NA import requests Define the target URL for the POST...

7.4AI score
Exploits0
Rows per page
Query Builder