Lucene search
+L

952 matches found

Vulnrichment
Vulnrichment
added 2026/02/06 6:28 p.m.5 views

CVE-2026-23989 REVA Public Link Exploit

REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious user to bypass the scope verification of a public link. By exploiting this via the the "archiver" service this can be leveraged to...

8.2CVSS5.5AI score0.00273EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/06 1:26 a.m.20 views

CVE-2025-69906

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to...

8.8CVSS8.5AI score0.00681EPSS
Exploits2References1
Cvelist
Cvelist
added 2026/02/05 12:0 a.m.31 views

CVE-2025-69906

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to...

0.00681EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2026/02/05 12:0 a.m.4 views

CVE-2025-69906

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to...

6.1AI score0.00681EPSS
Exploits2References2
CVE
CVE
added 2026/02/05 12:0 a.m.17 views

CVE-2025-69906

CVE-2025-69906 affects Monstra CMS v3.0.4, specifically the Files Manager plugin. The vulnerability arises from blacklist-based file extension validation and storing uploaded files in a web-accessible directory, enabling remote code execution when uploaded files are interpreted as executable code...

8.8CVSS8.6AI score0.00681EPSS
Exploits2References2Affected Software1
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.13 views

Monstra CMS 安全漏洞

Monstra CMS is a lightweight content management system CMS developed by Sergey Romanenko from Ukraine using PHP. Version 3.0.4 of Monstra CMS has a security vulnerability. This vulnerability stems from the Files Manager plugin, which allows arbitrary file uploads. The application relies on...

8.8CVSS7.7AI score0.00681EPSS
Exploits2References2
Github Security Blog
Github Security Blog
added 2026/02/02 9:52 p.m.12 views

CI4MS Vulnerable to Remote Code Execution (RCE) via Arbitrary File Creation and Save in File Editor

Summary A critical vulnerability has been identified in CI4MS that allows an authenticated user with file editor permissions to achieve Remote Code Execution RCE. By leveraging the file creation and save endpoints, an attacker can upload and execute arbitrary PHP code on the server. Vulnerability...

9.9CVSS6.5AI score0.00805EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/28 8:7 p.m.6 views

CVE-2026-23743 Discourse allows permalinks to restricted resources to leak resource slugs to unauthorized users

Discourse is an open source discussion platform. In versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0, permalinks pointing to access-restricted resources private topics, categories, posts, or hidden tags were redirecting users to URLs containing the resource slug, even when the user...

6.9CVSS5.9AI score0.00245EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.11 views

Tandoor Recipes: Security Vulnerabilities

Tandoor Recipes is an open-source application designed for managing recipes, planning meals, creating shopping lists, and more. Versions of Tandoor Recipes from 23.05 to 26.05 contained security vulnerabilities. These vulnerabilities stemmed from the default configuration, where database files...

8.7CVSS5.8AI score0.004EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/05 12:0 a.m.32 views

CVE-2025-67303

An issue in ComfyUI-Manager prior to version 3.38 allowed remote attackers to potentially manipulate its configuration and critical data. This was due to the application storing its files in an insufficiently protected location that was accessible via the web interface...

0.01361EPSS
Exploits3References2
CNNVD
CNNVD
added 2025/12/29 12:0 a.m.5 views

Kings KESS Enterprise 安全漏洞

Kings KESS Enterprise is an endpoint security management and document encryption system from the Korean company Kings. A security vulnerability exists in previous versions of Kings KESS Enterprise .25.9.19.Exe, which stems from the exposure of sensitive information, lack of encryption, and...

8.6CVSS5.8AI score0.00046EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/28 12:0 a.m.5 views

PbootCMS 安全漏洞

PbootCMS is a PbootCMS open source enterprise website content management system CMS developed using PHP language. A security vulnerability exists in PbootCMS 3.2.12 and earlier versions, which originates from an unknown function misoperation in the SQLite database component in file...

6.3CVSS4.7AI score0.00429EPSS
Exploits1References5
Packet Storm
Packet Storm
added 2025/12/26 12:0 a.m.222 views

📄 FuguHub 8.1 RSA Private Key Disclosure

A web-accessible documentation file in FuguHub version 8.1 was found to contain an embedded RSA private key paired with an X.509 certificate. The affected file resides within an examples directory and is intended solely for demonstration purposes...

6.1CVSS7AI score0.00218EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/12/18 12:0 a.m.496 views

📄 C‑Bitrix 25.100.500 Translate Module Arbitrary File Upload

C‑Bitrix version 25.100.500 proof of concept exploit that demonstrates an arbitrary file upload vulnerability in the translate module. ============================================================================================================================================= | Title : C‑Bitrix...

7.2AI score0.01549EPSS
Exploits4
Snyk
Snyk
added 2025/12/17 10:47 p.m.6 views

Insertion of Sensitive Information into Externally-Accessible File or Directory

Overview storybook is a frontend workshop for building UI components and pages in isolation. Affected versions of this package are vulnerable to Insertion of Sensitive Information into Externally-Accessible File or Directory via the storybook build command. An attacker can access sensitive...

7.5CVSS6.9AI score0.00239EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/17 10:47 p.m.6 views

Insertion of Sensitive Information into Externally-Accessible File or Directory

Overview @storybook/core-common is a Storybook framework-agnostic API Affected versions of this package are vulnerable to Insertion of Sensitive Information into Externally-Accessible File or Directory via the storybook build command. An attacker can access sensitive environment variables by...

7.5CVSS6.9AI score0.00239EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/13 12:9 p.m.5 views

CVE-2025-14159

The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.9.2. This is due to missing nonce validation on the 'ayssccpresultsexportfile' AJAX action. This makes it possible for unauthenticated...

4.3CVSS4.8AI score0.00139EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/12 11:15 a.m.35 views

CVE-2025-14159 Secure Copy Content Protection and Content Locking <= 4.9.2 - Cross-Site Request Forgery to Data Export

The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.9.2. This is due to missing nonce validation on the 'ayssccpresultsexportfile' AJAX action. This makes it possible for unauthenticated...

4.3CVSS0.00139EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/12 11:15 a.m.8 views

EUVD-2025-203077

The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.9.2. This is due to missing nonce validation on the 'ayssccpresultsexportfile' AJAX action. This makes it possible for unauthenticated...

4.3CVSS4.3AI score0.00139EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/12/12 11:15 a.m.4 views

CVE-2025-14442 Secure Copy Content Protection and Content Locking <= 4.9.2 - Unauthenticated Sensitive Information Exposure via Exposed CSV Export File

The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to sensitive information exposure due to storage of exported CSV files in a publicly accessible directory with predictable filenames in all versions up to, and including, 4.9.2. This makes it possible for...

5.3CVSS5.3AI score0.0028EPSS
Exploits0References4
Rows per page
Query Builder