Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:19 p.m.9 views

CVE-2018-10522

In CMS Made Simple CMSMS through 2.2.7, the "file view" operation in the admin dashboard contains a sensitive information disclosure vulnerability, exploitable by ordinary users, because the product exposes unrestricted access to the PHP filegetcontents function...

4.9CVSS6.5AI score0.01005EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:17 p.m.7 views

CVE-2018-10086

CMS Made Simple CMSMS through 2.2.7 contains an arbitrary code execution vulnerability in the admin dashboard because the implementation uses "eval'function testfunction'.rand" and it is possible to bypass certain restrictions on these "testfunction" functions...

7.2CVSS7.8AI score0.01953EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-11541

Malware in sbrugna...

7.2CVSS7AI score0.01497EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-11894

Malware in sbrugna...

6.4CVSS6.4AI score0.00636EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.18 views

EUVD-2021-11368

Malware in sbrugna...

7.2CVSS6.9AI score0.01292EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-11401

Malware in sbrugna...

4.8CVSS5.4AI score0.00622EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-2165

Malware in sbrugna...

7.5CVSS7.6AI score0.01536EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-33437

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00773EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:50 a.m.10 views

CVE-2024-12359

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

5.4CVSS6.4AI score0.00371EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:22 p.m.4 views

CVE-2021-24447

The WP Image Zoom WordPress plugin before 1.47 did not validate its tab parameter before using it in the includeonce function, leading to a local file inclusion issue in the admin dashboard...

5.3CVSS6.5AI score0.01375EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:59 a.m.6 views

CVE-2018-10515

In CMS Made Simple CMSMS through 2.2.7, the "file unpack" operation in the admin dashboard contains a remote code execution vulnerability exploitable by an admin user because a .php file can be present in the extracted ZIP archive...

7.2CVSS7.9AI score0.02425EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 5:15 a.m.19 views

CVE-2024-12359

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

5.4CVSS0.00371EPSS
Exploits1References5
Cvelist
Cvelist
added 2020/12/15 3:35 p.m.25 views

CVE-2020-28457 Cross-site Scripting (XSS)

This affects the package s-cart/core before 4.4. The search functionality of the admin dashboard in core/src/Admin/Controllers/AdminOrderController.phpindex is vulnerable to XSS...

7.2CVSS7AI score0.00873EPSS
Exploits1References4
Rows per page
Query Builder