Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:52 a.m.3 views

CVE-2022-42458

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered...

9.8CVSS7.2AI score0.03357EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2022-45531

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.03357EPSS
Exploits0References2
Prion
Prionadded 2022/12/07 10:15 a.m.17 views

Path traversal

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered...

7.5CVSS9.6AI score0.03357EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/07 12:0 a.m.1 views

PT-2022-26441 · Bingo!Cms · Bingo!Cms

Name of the Vulnerable Software and Affected Versions: bingo!CMS versions 1.7.4.1 and earlier Description: The issue allows a remote unauthenticated attacker to upload an arbitrary file, potentially leading to the execution of an arbitrary script or alteration of a file. This is due to an...

9.8CVSS9.6AI score0.03357EPSS
Exploits0References5
Cvelist
Cvelistadded 2022/12/07 12:0 a.m.10 views

CVE-2022-42458

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered...

9.8AI score0.03357EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/07 12:0 a.m.3 views

CVE-2022-42458

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered...

7.2AI score0.03357EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/12/07 12:0 a.m.99 views

CVE-2022-42458

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered. Recent assessments: Assessed Attacker...

9.8CVSS3.4AI score0.03357EPSS
In wildExploits0References3
CVE
CVEadded 2022/12/07 12:0 a.m.184 views

CVE-2022-42458

CVE-2022-42458 affects bingo!CMS versions 1.7.4.1 and earlier, where an authentication bypass vulnerability in management functions allows remote, unauthenticated attackers to upload arbitrary files, potentially enabling arbitrary script execution or file modification. The Red Hat and JVN entries...

9.8CVSS9.5AI score0.03357EPSS
In wildExploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2022/10/11 8:49 a.m.1 views

bingo!CMS vulnerable to authentication bypass

Overview bingo!CMS provided by Shift Tech Inc. contains an authentication bypass vulnerability CWE-288 in some of the management functions. Shift Tech Inc. states that attacks exploiting this vulnerability have been observed. Shift Tech Inc. reported this vulnerability to IPA to notify users of i...

9.8CVSS7.3AI score0.03357EPSS
Exploits0References7
VulnCheck KEV
VulnCheck KEVadded 2022/10/11 12:0 a.m.0 views

VulnCheck KEV: CVE-2022-42458

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered...

9.8CVSS7.2AI score0.03357EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2022/10/11 12:0 a.m.20 views

JVN#74592196: bingo!CMS vulnerable to authentication bypass

bingo!CMS provided by Shift Tech Inc. contains an authentication bypass vulnerability CWE-288 in some of the management functions. Shift Tech Inc. states that attacks exploiting this vulnerability have been observed. Impact Accessing a specific URL directly may allow a remote unauthenticated...

9.8CVSS9.8AI score0.03357EPSS
Exploits0
NVD
NVDadded 2009/08/31 8:30 p.m.8 views

CVE-2009-3022

Cross-site request forgery CSRF vulnerability in bingo!CMS 1.2 and earlier allows remote attackers to hijack the authentication of other users for requests that modify configuration or change content via unspecified vectors...

6.8CVSS6.8AI score0.00162EPSS
Exploits0References6
Prion
Prionadded 2009/08/31 8:30 p.m.14 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in bingo!CMS 1.2 and earlier allows remote attackers to hijack the authentication of other users for requests that modify configuration or change content via unspecified vectors...

6.8CVSS7.6AI score0.00162EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2009/08/31 8:0 p.m.56 views

CVE-2009-3022

CVE-2009-3022 describes a cross-site request forgery vulnerability in bingo!CMS up to version 1.2. The issue could allow an attacker to hijack a logged-in user’s session to perform requests that modify configuration or content. The core impacted component is bingo!CMS (core and likely the 1.2 ser...

6.8CVSS6.7AI score0.00162EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2009/08/31 8:0 p.m.16 views

CVE-2009-3022

Cross-site request forgery CSRF vulnerability in bingo!CMS 1.2 and earlier allows remote attackers to hijack the authentication of other users for requests that modify configuration or change content via unspecified vectors...

6.7AI score0.00162EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2009/08/31 8:0 p.m.7 views

CVE-2009-3022

Cross-site request forgery CSRF vulnerability in bingo!CMS 1.2 and earlier allows remote attackers to hijack the authentication of other users for requests that modify configuration or change content via unspecified vectors...

6.8AI score0.00162EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2009/08/31 12:0 a.m.2 views

PT-2009-5362 · Bingo! · Bingo!Cms

Name of the Vulnerable Software and Affected Versions: bingo!CMS versions 1.2 and earlier Description: A cross-site request forgery issue allows remote attackers to hijack the authentication of other users for requests that modify configuration or change content. Recommendations: For versions 1.2...

6.8CVSS7.6AI score0.00162EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2009/08/27 6:29 a.m.1 views

bingo!CMS core and bingo!CMS vulnerable to cross-site request forgery

Overview bingo!CMS core and bingo!CMS contain a cross-site request forgery vulnerability. bingo!CMS core and bingo!CMS are content management systems CMS. bingo!CMS core and bingo!CMS contain a cross-site request forgery vulnerability. Masako Oono reported this vulnerability to IPA. JPCERT/CC...

6.8CVSS6.5AI score0.00162EPSS
Exploits0References9
Rows per page
Query Builder