CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

203 matches found

RedhatCVE•added 2026/03/27 2:24 p.m.•5 views

CVE-2021-27672

SQL Injection in the "adminboxes.ajax.php" component of Tribal Systems Zenario CMS v8.8.52729 allows remote attackers to obtain sesnitive database information by injecting SQL commands into the "cID" parameter when creating a new HTML component...

4.9CVSS7.8AI score0.00388EPSS

Exploits1References1

GithubExploit•added 2026/02/19 6:19 a.m.•160 views

Exploit for Path Traversal in Welcart Welcart_E-Commerce

Zenario CMS 9.3 - Unauthenticated RCE Exploit CVE-2022-418...

9.8CVSS6.7AI score0.65737EPSS

Exploits2

RedhatCVE•added 2026/01/09 11:29 a.m.•3 views

CVE-2021-27673

Cross Site Scripting XSS in the "adminboxes.ajax.php" component of Tribal Systems Zenario CMS v8.8.52729 allows remote attackers to execute arbitrary code by injecting arbitrary HTML into the "cID" parameter when creating a new HTML component...

4.8CVSS6.7AI score0.00222EPSS

Exploits4References1

RedhatCVE•added 2026/01/09 10:54 a.m.•4 views

CVE-2022-23043

Zenario CMS 9.2 allows an authenticated admin user to bypass the file upload restriction by creating a new 'File/MIME Types' using the '.phar' extension. Then an attacker can upload a malicious file, intercept the request and change the extension to '.phar' in order to run commands on the server...

7.2CVSS6.9AI score0.00578EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-1293

Malware in sbrugna...

4.8CVSS5.1AI score0.00222EPSS

Exploits4References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-1331

Malware in sbrugna...

4.9CVSS5.2AI score0.00388EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-0870