CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

NVD•added 2024/05/17 12:15 p.m.•9 views

CVE-2024-5043

A vulnerability was found in Emlog Pro 2.3.4 and classified as critical. Affected by this issue is some unknown functionality of the file admin/setting.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be...

8.8CVSS4.7AI score0.00115EPSS

Exploits1References4

OSV•added 2022/03/31 6:15 p.m.•12 views

CVE-2021-42866

A Cross Site Scripting vulnerabilty exists in Pixelimity 1.0 via the Site Description field in pixelimity/admin/setting.php...

4.8CVSS6.5AI score

Exploits0References1

Prion•added 2022/03/31 6:15 p.m.•10 views

Cross site scripting

A Cross Site Scripting vulnerabilty exists in Pixelimity 1.0 via the Site Description field in pixelimity/admin/setting.php...

3.5CVSS5AI score0.00235EPSS

Exploits1References1Affected Software1

Prion•added 2021/08/17 6:15 p.m.•9 views

Cross site scripting

Cross Site Scripting XSS vulnerability exists in Pixelimity 1.0 via the HTTP POST parameter to admin/setting.php...

3.5CVSS4.9AI score0.00197EPSS

Exploits1References1Affected Software1

CVE•added 2021/08/17 5:23 p.m.•30 views

CVE-2021-29056

Pixelimity 1.0 is affected by a Cross Site Scripting (XSS) vulnerability that can be triggered via an HTTP POST parameter to admin/setting.php. The root cause is a lack of proper validation/sanitization of client-side data in the web app. The impact is client-side code execution, potentially affe...

4.8CVSS4.8AI score0.00197EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/08/17 5:23 p.m.•12 views

CVE-2021-29056

Cross Site Scripting XSS vulnerability exists in Pixelimity 1.0 via the HTTP POST parameter to admin/setting.php...

5.1AI score0.00197EPSS

Exploits1References1

Packet Storm•added 2021/02/03 12:0 a.m.•275 views

Pixelimity 1.0 Cross Site Request Forgery

Exploit Title: Pixelimity 1.0 - 'password' Cross-Site Request Forgery Date: 2020-06-03 Exploit Author: Noth Vendor Homepage: https://github.com/pixelimity/pixelimity Software Link: https://github.com/pixelimity/pixelimity Version: v1.0 CVE : 2020-23522 Pixelimity 1.0 has cross-site request forger...

6CVSS0.3AI score0.00191EPSS

Exploits2

Exploit DB•added 2021/02/03 12:0 a.m.•292 views

Pixelimity 1.0 - 'password' Cross-Site Request Forgery

7.4AI score

Exploits0

NVD•added 2021/01/19 1:15 p.m.•7 views

CVE-2020-23522

Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data Password parameter...

6.8CVSS6.7AI score0.00191EPSS

Exploits2References2

OSV•added 2021/01/19 1:15 p.m.•9 views

CVE-2020-23522

Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data Password parameter...

6.8CVSS6.9AI score

Exploits0References2

Cvelist•added 2021/01/19 12:7 p.m.•11 views

CVE-2020-23522

Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data Password parameter...

6.7AI score0.00191EPSS

Exploits2References2

CVE•added 2021/01/19 12:7 p.m.•55 views

CVE-2020-23522

Pixelimity 1.0 is affected by a Cross-Site Request Forgery vulnerability in the admin/setting.php data [Password] parameter. The issue is documented across multiple feeds (NVD/Red Hat/CIRCL/CNVD, PacketStorm) and is demonstrated by a PoC showing a forged request could leverage the Password field....

6.8CVSS6.6AI score0.00191EPSS

Exploits2References2Affected Software1

NVD•added 2018/09/08 3:29 p.m.•6 views

CVE-2018-16732

\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via admin.php/setting/ftpsave...

8.8CVSS8.7AI score0.00134EPSS

Exploits0References2

CVE•added 2013/08/09 6:0 p.m.•37 views

CVE-2013-3253

CVE-2013-3253 documents a Cross-Site Request Forgery (CSRF) in the WordPress plugin Xhanch – My Twitter, specifically in admin/setting.php. Affected plugin versions are prior to 2.7.7, enabling remote attackers to hijack the administrator’s authentication to perform actions that change unspecifie...

6.8CVSS7.4AI score0.00251EPSS

Exploits2References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by