CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/05/06 4:16 a.m.•11 views

CVE-2026-5753

The All-in-One WP Migration Unlimited Extension plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.83. This is due to the 'Ai1wmveSchedulesController::save' handler for 'adminpostai1wmscheduleeventsave' not verifying user capabilities before saving...

6.5CVSS0.00266EPSS

OSV•added 2026/04/22 5:27 p.m.•4 views

GHSA-QXPQ-82F3-XJ47 CI4MS: Backup Management Full Account Takeover for All Roles & Privilege Escalation via Stored DOM Blind XSS

An attacker can achieve Full Account Takeover and Privilege Escalation via Stored DOM XSS in the backup module's filename field, which is manipulated through an SQL file that tampers with the filename field to contain a hidden XSS payload...

6.8CVSS5.9AI score0.00331EPSS

Exploits0References4

Positive Technologies•added 2026/04/22 12:0 a.m.•33 views

PT-2026-34596

Name of the Vulnerable Software and Affected Versions CI4MS versions prior to 0.31.5.0 Description A Stored DOM XSS Cross-Site Scripting issue exists in the backup module. An attacker can manipulate the filename field using an SQL file to inject a hidden XSS payload, potentially leading to full...

9.1CVSS5.9AI score0.00331EPSS

Exploits0References10

RedhatCVE•added 2026/04/07 11:1 p.m.•4 views

CVE-2026-35399

WeGIA is a Web manager for charitable institutions. Prior to 3.6.9, a stored XSS vulnerability allows an attacker to inject malicious scripts through a backup filename. This could lead to unauthorized execution of malicious code in the victim's browser, compromising session data or executing...

8.5CVSS6.1AI score0.00288EPSS

NVD•added 2026/04/06 9:16 p.m.•2 views

CVE-2026-35399

8.5CVSS0.00288EPSS

OSV•added 2026/04/01 10:4 p.m.•1 views

GHSA-85M8-G393-JCXF CI4MS: Backup Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM Blind XSS

Summary Vulnerability: Stored DOM Blind XSS via Backup Management Filename Persistent Payload Injection - Stored Cross-Site Scripting Blind XSS via Unsanitized Backup Filename in Backup Management Description The application fails to properly sanitize user-controlled input when handling backup...

9.9CVSS6.2AI score0.00269EPSS

Exploits1References4

Snyk•added 2026/04/01 10:4 p.m.•4 views

Cross-site Scripting (XSS)

Overview ci4-cms-erp/ci4ms is a composer create-project ci4-cms-erp/ci4ms Affected versions of this package are vulnerable to Cross-site Scripting XSS via the backup filename field during backup upload and processing. An attacker can execute arbitrary JavaScript in the browsers of privileged user...

9.1CVSS6AI score0.00269EPSS

Exploits1References2

RedhatCVE•added 2026/03/01 1:43 a.m.•8 views

CVE-2026-28409

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, a critical Remote Code Execution RCE vulnerability exists in the WeGIA application's database restoration functionality. An attacker with administrative access which can be obtained via the previously reported...

NVD•added 2026/02/27 10:16 p.m.•8 views

CVE-2026-28409

10CVSS0.03315EPSS

ATTACKERKB•added 2026/02/27 9:50 p.m.•5 views

CVE-2026-28409

Exploits1References2Affected Software1

CVE•added 2026/02/27 9:50 p.m.•22 views

CVE-2026-28409

WeGIA (web manager for charitable institutions) prior to version 3.6.5 contains a critical Remote Code Execution (RCE) in the database restoration feature. An attacker with administrative access (obtainable via an authentication bypass) can upload a backup file with a specially crafted filename t...

Exploits1References1Affected Software1

OSV•added 2026/02/27 9:50 p.m.•7 views

CVE-2026-28409 WeGIA Vulnerable to Remote Code Execution (RCE) via OS Command Injection

Positive Technologies•added 2026/02/27 12:0 a.m.•5 views

Exploits1References3

PT-2026-22412

Name of the Vulnerable Software and Affected Versions WeGIA versions prior to 3.6.5 Description WeGIA is a web manager for charitable institutions. A critical Remote Code Execution RCE issue exists in the application’s database restoration functionality. An attacker with administrative access can...

10CVSS6.2AI score0.03315EPSS

Exploits1References14

OSV•added 2026/02/11 9:16 p.m.•4 views

CVE-2020-37104

ASTPP 4.0.1 contains an information disclosure vulnerability that allows unauthenticated attackers to download database backup files by predicting backup filename patterns. Attackers can generate a list of 6-digit PIN combinations and fuzz the backup download URL to exfiltrate sensitive database...

7.5CVSS5.8AI score0.00565EPSS

Exploits1References4

EUVD•added 2025/11/24 6:31 a.m.•3 views

EUVD-2025-198621

The Backup Migration WordPress plugin before 2.0.0 does not properly generate its backup path in certain server configurations, allowing unauthenticated users to fetch a log that discloses the backup filename. The backup archive is then downloadable without authentication...

5.9CVSS6.3AI score0.00253EPSS

NVD•added 2025/11/24 6:15 a.m.•6 views

CVE-2025-12394

5.9CVSS0.00253EPSS

Exploits0References1

Positive Technologies•added 2025/11/24 12:0 a.m.•9 views

PT-2025-47884

6.8AI score0.00253EPSS