CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/01/09 12:19 p.m.•6 views

CVE-2018-10522

In CMS Made Simple CMSMS through 2.2.7, the "file view" operation in the admin dashboard contains a sensitive information disclosure vulnerability, exploitable by ordinary users, because the product exposes unrestricted access to the PHP filegetcontents function...

4.9CVSS6.5AI score0.00271EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:17 p.m.•6 views

CVE-2018-10086

CMS Made Simple CMSMS through 2.2.7 contains an arbitrary code execution vulnerability in the admin dashboard because the implementation uses "eval'function testfunction'.rand" and it is possible to bypass certain restrictions on these "testfunction" functions...

7.2CVSS7.8AI score0.00967EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-11541

Malware in sbrugna...

7.2CVSS7AI score0.00972EPSS

Exploits2References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-11368

Malware in sbrugna...

7.2CVSS6.9AI score0.00628EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-11894

Malware in sbrugna...

6.4CVSS6.4AI score0.00171EPSS

Exploits2References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-11401

Malware in sbrugna...

4.8CVSS5.4AI score0.0042EPSS

Exploits2References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-2165

Malware in sbrugna...

7.5CVSS7.6AI score0.0089EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-33437

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.0021EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 6:50 a.m.•9 views

CVE-2024-12359

A vulnerability was found in code-projects Admin Dashboard 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /vendormanagement.php. The manipulation of the argument username leads to cross site scripting. The attack can be initiated remotely. The exploi...

5.4CVSS6.4AI score0.0018EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:22 p.m.•2 views

CVE-2021-24447

The WP Image Zoom WordPress plugin before 1.47 did not validate its tab parameter before using it in the includeonce function, leading to a local file inclusion issue in the admin dashboard...

5.3CVSS6.5AI score0.0034EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 2:59 a.m.•4 views

CVE-2018-10515

In CMS Made Simple CMSMS through 2.2.7, the "file unpack" operation in the admin dashboard contains a remote code execution vulnerability exploitable by an admin user because a .php file can be present in the extracted ZIP archive...

7.2CVSS7.9AI score0.02607EPSS

Exploits1References1

NVD•added 2024/12/09 5:15 a.m.•18 views

CVE-2024-12359

5.4CVSS0.0018EPSS

Exploits1References5

Cvelist•added 2020/12/15 3:35 p.m.•22 views

CVE-2020-28457 Cross-site Scripting (XSS)

This affects the package s-cart/core before 4.4. The search functionality of the admin dashboard in core/src/Admin/Controllers/AdminOrderController.phpindex is vulnerable to XSS...

7.2CVSS7AI score0.00319EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by