Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2023/12/15 9:15 a.m.2 views

CVE-2023-48382

Softnext Mail SQR Expert is an email management platform, it has a Local File Inclusion LFI vulnerability in a mail deliver-related URL. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary PHP file with .asp file extension under specific system paths, to access...

6.5CVSS6AI score
Exploits0References1
Prion
Prionadded 2023/12/15 9:15 a.m.15 views

Design/Logic Flaw

Softnext Mail SQR Expert is an email management platform, it has a Local File Inclusion LFI vulnerability in a mail deliver-related URL. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary PHP file with .asp file extension under specific system paths, to access...

6.4CVSS7.7AI score0.00342EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2023/12/15 12:0 a.m.3 views

PT-2023-30809 · Softnext · Softnext Mail Sqr Expert

Name of the Vulnerable Software and Affected Versions: Softnext Mail SQR Expert affected versions not specified Description: The issue is related to a Local File Inclusion LFI vulnerability in a mail deliver-related URL. An unauthenticated remote attacker can exploit this vulnerability to execute...

6.5CVSS6.7AI score0.00342EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2023/05/18 12:0 a.m.3 views

PT-2023-3044 · Advantech · Advantech Webaccess/Scada

Name of the Vulnerable Software and Affected Versions: Advantech WebAccss/SCADA versions 9.1.3 and prior Description: The issue is related to an arbitrary file upload vulnerability. This could allow an attacker to modify the file extension of a certificate file to ASP when uploading it, leading t...

9.8CVSS9.7AI score0.002EPSS
Exploits0References6
SUSE CVE
SUSE CVEadded 2023/02/15 4:27 a.m.1 views

SUSE CVE-2018-11091

An issue was discovered in MyBiz MyProcureNet 5.0.0. A malicious file can be uploaded to the webserver by an attacker. It is possible for an attacker to upload a script to issue operating system commands. This vulnerability occurs because an attacker is able to adjust the...

9.9CVSS9.4AI score0.01695EPSS
Exploits1References3
OSV
OSVadded 2022/10/31 7:15 a.m.1 views

CVE-2022-40742

Mail SQR Expert system has a Local File Inclusion vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary PHP file with .asp file extension under specific system paths, to access and modify partial system information but does not affect service...

6.5CVSS6.1AI score
Exploits0References1
CNNVD
CNNVDadded 2022/10/31 12:0 a.m.2 views

Softnext Technologies Mail SQR Expert 路径遍历漏洞

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies. A security vulnerability exists in Softnext Technologies Mail SQR Expert, which can be exploited by an attacker to execute a PHP file with an arbitrary .asp file extension...

6.5CVSS6.8AI score0.00613EPSS
Exploits0References2
exploitpack
exploitpackadded 2010/06/16 12:0 a.m.16 views

Real Estate - SQL Injection

Real Estate - SQL Injection Description Linux And window Version available: This software is available in both windows and linux version. It runs on asp and php extension. Listings: We can add unlimited property listing, with the property photo. System automatically creates three thumbnail photo ...

0.1AI score
Exploits0
Rows per page
Query Builder