Lucene search
K

47 matches found

Packet Storm
Packet Storm
added 2022/03/30 12:0 a.m.286 views

Atom CMS 1.0.2 Shell Upload

Exploit Title: Atom CMS 2.0 - Remote Code Execution RCE Date: 22.03.2022 Exploit Author: Ashish Koli Shikari Vendor Homepage: https://thedigitalcraft.com/ Software Link: https://github.com/thedigicraft/Atom.CMS Version: 2.0 Tested on: Ubuntu 20.04.3 LTS CVE: CVE-2022-25487 Description This script...

9.8CVSS9.7AI score0.54766EPSS
Exploits4
0day.today
0day.today
added 2022/03/30 12:0 a.m.288 views

Atom CMS 2.0 - Remote Code Execution Exploit

Exploit Title: Atom CMS 2.0 - Remote Code Execution RCE Exploit Author: Ashish Koli Shikari Vendor Homepage: https://thedigitalcraft.com/ Software Link: https://github.com/thedigicraft/Atom.CMS Version: 2.0 Tested on: Ubuntu 20.04.3 LTS CVE: CVE-2022-25487 Description This script uploads...

9.8CVSS9.7AI score0.54766EPSS
Exploits4
Exploit DB
Exploit DB
added 2022/03/30 12:0 a.m.356 views

Atom CMS 2.0 - Remote Code Execution (RCE)

Exploit Title: Atom CMS 2.0 - Remote Code Execution RCE Date: 22.03.2022 Exploit Author: Ashish Koli Shikari Vendor Homepage: https://thedigitalcraft.com/ Software Link: https://github.com/thedigicraft/Atom.CMS Version: 2.0 Tested on: Ubuntu 20.04.3 LTS CVE: CVE-2022-25487 Description This script...

9.8CVSS9.6AI score0.54766EPSS
Exploits4
CNVD
CNVD
added 2022/03/17 12:0 a.m.27 views

Atom CMS SQL Injection Vulnerability

Atom CMS is a content management system. A SQL injection vulnerability exists in Atom CMS version 2.0, which stems from a missing validation of external input SQL statements in the id parameter of /admin/ajax/avatar.php. An attacker could use this vulnerability to execute illegal SQL commands to...

7.5CVSS9.8AI score0.07148EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/03/16 12:0 a.m.17 views

Atom CMS Cross-Site Scripting Vulnerability (CNVD-2022-84074)

Atom CMS, a content management system, is vulnerable to a cross-site scripting vulnerability in Atom CMS v2.0. The vulnerability is caused by a cross-site scripting vulnerability that contains a reflection in the "A" parameter in /widgets/debug.php. An attacker could exploit this vulnerability to...

3.5CVSS5.1AI score0.01459EPSS
Exploits1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/03/15 6:15 p.m.4 views

CVE-2022-25489

Atom CMS v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the "A" parameter in /widgets/debug.php...

5.4CVSS5AI score0.01459EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/03/15 6:15 p.m.3 views

CVE-2022-25488

Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php...

9.8CVSS5.7AI score0.07148EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/03/15 6:15 p.m.4 views

CVE-2022-25487

Atom CMS v2.0 was discovered to contain a remote code execution RCE vulnerability via /admin/uploads.php...

9.8CVSS6.3AI score0.54766EPSS
Exploits4References4
OSV
OSV
added 2022/03/15 6:15 p.m.5 views

CVE-2022-25489

Atom CMS v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the "A" parameter in /widgets/debug.php...

5.4CVSS5.7AI score0.01459EPSS
Exploits1References1
OSV
OSV
added 2022/03/15 6:15 p.m.3 views

CVE-2022-25487

Atom CMS v2.0 was discovered to contain a remote code execution RCE vulnerability via /admin/uploads.php...

9.8CVSS6.3AI score0.54766EPSS
Exploits4References2
NVD
NVD
added 2022/03/15 6:15 p.m.28 views

CVE-2022-25487

Atom CMS v2.0 was discovered to contain a remote code execution RCE vulnerability via /admin/uploads.php...

9.8CVSS0.54766EPSS
Exploits4References2
NVD
NVD
added 2022/03/15 6:15 p.m.20 views

CVE-2022-25489

Atom CMS v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the "A" parameter in /widgets/debug.php...

5.4CVSS0.01459EPSS
Exploits1References1
NVD
NVD
added 2022/03/15 6:15 p.m.13 views

CVE-2022-25488

Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php...

9.8CVSS0.07148EPSS
Exploits1References1
Prion
Prion
added 2022/03/15 6:15 p.m.18 views

Sql injection

Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php...

7.5CVSS9.7AI score0.07148EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/03/15 6:15 p.m.15 views

Cross site scripting

Atom CMS v2.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the "A" parameter in /widgets/debug.php...

3.5CVSS5.3AI score0.01459EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/03/15 6:15 p.m.19 views

Remote code execution

Atom CMS v2.0 was discovered to contain a remote code execution RCE vulnerability via /admin/uploads.php...

7.5CVSS9.8AI score0.54766EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2022/03/15 5:40 p.m.28 views

CVE-2022-25487

Atom CMS v2.0 was discovered to contain a remote code execution RCE vulnerability via /admin/uploads.php...

10AI score0.54766EPSS
Exploits4References2
CVE
CVE
added 2022/03/15 5:40 p.m.105 views

CVE-2022-25487

Atom CMS v2.0 contains a remote code execution (RCE) vulnerability exploitable via /admin/uploads.php. The Nuclei template and CIRCL/CVE records confirm the issue stems from improper handling in the uploads path, enabling arbitrary code execution on the affected system. Impact is described as ful...

9.8CVSS9.8AI score0.54766EPSS
In wildExploits4References2Affected Software1
Cvelist
Cvelist
added 2022/03/15 5:40 p.m.21 views

CVE-2022-25488

Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php...

10AI score0.07148EPSS
Exploits1References1
CVE
CVE
added 2022/03/15 5:40 p.m.124 views

CVE-2022-25488

Atom CMS v2.0 contains a SQL injection via the id parameter in /admin/ajax/avatar.php. The vulnerability arises from unsafely concatenated SQL in this endpoint, enabling arbitrary SQL execution and potentially data disclosure or modification. Public descriptions from multiple sources corroborate ...

9.8CVSS9.8AI score0.07148EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder