Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

Prion
Prionadded 2023/07/25 8:15 p.m.15 views

Design/Logic Flaw

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-data POST request, any...

5CVSS7.6AI score0.0013EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichmentadded 2023/07/25 12:0 a.m.10 views

CVE-2022-46899

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-data POST request, any...

7.1AI score0.00075EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/07/25 12:0 a.m.13 views

CVE-2022-46899

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-data POST request, any...

7.8AI score0.00075EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2020/12/02 12:0 a.m.2 views

PT-2020-17129

Name of the Vulnerable Software and Affected Versions 74CMS versions prior to 6.0.48 Description The issue concerns a PHP remote file inclusion in the assign resume tpl method within the Application/Common/Controller/BaseController.class.php file. This allows for remote code execution...

9.8CVSS9.9AI score0.62162EPSS
Exploits1References6
CNVD
CNVDadded 2017/07/13 12:0 a.m.1 views

Vlcms latest version has a file write vulnerability in the frontend

vlcms is a management system developed by Xigu software team based on OneThink framework to solve the promotion of handicraft. Vlcms latest version of the front-end file writing vulnerability, the vulnerability exists in the location of /Application/Callback/Controller/BaseController.class.php,...

7AI score
Exploits0
Rows per page
Query Builder