CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2024/10/31 2:15 a.m.•2 views

CVE-2024-48311

Piwigo v14.5.0 was discovered to contain a Cross-Site Request Forgery CSRF via the Edit album function...

8.8CVSS7.7AI score

Exploits0References1

NVD•added 2024/10/31 2:15 a.m.•14 views

CVE-2024-48311

Piwigo v14.5.0 was discovered to contain a Cross-Site Request Forgery CSRF via the Edit album function...

8.8CVSS0.00129EPSS

Exploits1References1

NVD•added 2024/09/27 3:15 p.m.•13 views

CVE-2024-46333

An authenticated cross-site scripting XSS vulnerability in Piwigo v14.5.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Album Name parameter under the Add Album function...

4.8CVSS0.00208EPSS

Exploits1References1

Cvelist•added 2024/09/27 12:0 a.m.•10 views

CVE-2024-46333

0.00208EPSS

Exploits1References1

Cvelist•added 2024/03/22 12:0 a.m.•11 views

CVE-2024-25808

Cross-site Request Forgery CSRF vulnerability in Lychee version 3.1.6, allows remote attackers to execute arbitrary code via the create new album function...

8.1AI score0.01073EPSS

Exploits1References1

seebug.org•added 2014/11/04 12:0 a.m.•22 views

Discuz! x某功能越权漏洞

简要描述： rt 详细说明：相册功能,里面的编辑图片说明可以越权修改在 source/include/spacecp/spacecpalbum.php中 code foreach $POST'title' as $picid = $value //这里遍历数据 if$value == $GET'oldtitle'$picid continue; $title = getstr$value, 150; $title = censor$title; ifcensormod$title || $G'group''allowuploadmod' $picstatus = 1;...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by