68 matches found
CVE-2026-20062
The CVE-2026-20062 entry concerns Cisco Secure Firewall ASA software in multiple context mode. Vulnerability: improper access controls on SCP operations when the CiscoSSH stack is enabled allow an authenticated user with admin privileges only in a non-admin context to copy files to/from other con...
EUVD-2019-3262
Malware in sbrugna...
EUVD-2017-2976
Malware in sbrugna...
EUVD-2008-2977
Malware in sbrugna...
EUVD-2020-2897
Malware in sbrugna...
EUVD-2017-15503
Malware in sbrugna...
EUVD-2009-2843
Malware in sbrugna...
EUVD-2009-4793
Malware in sbrugna...
EUVD-2024-48049
Malicious code in bioql PyPI...
CVE-2025-50695
PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Cross Site Scripting XSS in /admin/view-booking-detail.php and /admin/invoice-generating.php...
CVE-2024-7048
In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privileged user to access and overwrite files managed by a higher-privileged admin. By exploiting this...
CVE-2024-36528
nukeviet v.4.5 and before and nukeviet-egov v.1.2.02 and before have a Deserialization vulnerability which results in code execution via /admin/extensions/download.php and /admin/extensions/upload.php...
CVE-2023-42321
Cross Site Request Forgery CSRF vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files...
CVE-2025-25813
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component adminfiles.php...
CVE-2025-25813
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component adminfiles.php...
SeaCMS 安全漏洞
SeaCMS is a free, open source web content management system written in PHP by SeaCMS, Inc. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SeaCMS v13.3, which stems from a remote code execution issue in the adminfiles.php component...
CVE-2025-25813
CVE-2025-25813 affects SeaCMS v13.3, with a remote code execution vulnerability in the admin_files.php component. Multiple connected sources corroborate an RCE in SeaCMS 13.3 via that component. The documents do not provide further technical details such as affected versions beyond v13.3, explici...
CVE-2024-7048 IDOR in open-webui/open-webui
In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API endpoints GET /api/v1/documents/ and POST /rag/api/v1/doc. This vulnerability allows a lower-privileged user to access and overwrite files managed by a higher-privileged admin. By exploiting this...
CVE-2024-42599
SeaCMS 13.0 has a remote code execution vulnerability. The reason for this vulnerability is that although adminfiles.php imposes restrictions on edited files, attackers can still bypass these restrictions and write code, allowing authenticated attackers to exploit the vulnerability to execute...
Kashipara Responsive School Management System 安全漏洞
Kashipara Responsive School Management System is a school management system from Kashipara. A security vulnerability exists in the Kashipara Responsive School Management System version v3.2.0, which stems from an error in the /smsa/adminstudentregisterapproval.php file and the...