CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

228 matches found

HackRead•added 2026/05/02 12:28 p.m.•3 views

2 US Cybersecurity Experts Jailed for Aiding ALPHV (BlackCat) Ransomware

Two US cybersecurity experts jailed for aiding BlackCat ransomware group, extorting victims worldwide and exploiting insider access for profit...

5.8AI score

Exploits0

The Hacker News•added 2026/05/01 9:56 a.m.•2 views

Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks

The U.S. Department of Justice DoJ on Thursday announced the sentencing of two cybersecurity professionals to four years each in prison for their role in facilitating BlackCat ransomware attacks in 2023. Ryan Goldberg , 40, of Georgia, and Kevin Martin , 36, of Texas, were accused of deploying th...

5.9AI score

Exploits0

The Hacker News•added 2026/04/21 2:31 p.m.•5 views

Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023

A third individual who was employed as a ransomware negotiator has pleaded guilty to conducting ransomware attacks against U.S. companies in 2023. Angelo Martino , 41, of Land O'Lakes, Florida, teamed up with the operators of the BlackCat ransomware starting in April 2023 to assist the e-crime ga...

5.8AI score

Exploits0

RedhatCVE•added 2026/01/09 11:29 a.m.•5 views

CVE-2021-27237

The admin panel in BlackCat CMS 1.3.6 allows stored XSS by an admin via the Display Name field to backend/preferences/ajaxsave.php...

4.8CVSS5.8AI score0.0034EPSS

Exploits1References1

HackRead•added 2025/12/31 1:7 p.m.•2 views

2 US Cybersecurity Experts Guilty of Extortion Scheme for ALPHV Ransomware

Can you trust your cybersecurity team? A recent federal case reveals how two US-based cybersecurity experts turned into affiliates for the BlackCat ransomware group, extorting over $1.2M in Bitcoin. Read the full story on their 2023 crime spree...

7AI score

Exploits0

RedhatCVE•added 2025/12/16 8:44 p.m.•1 views

CVE-2023-53891

Blackcat CMS 1.4 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts into page content. Attackers can insert JavaScript payloads in the page modification interface that execute when other users view the compromised page...

5.4CVSS6AI score0.00024EPSS

Exploits1References1

RedhatCVE•added 2025/12/16 8:44 p.m.•2 views

CVE-2023-53892

Blackcat CMS 1.4 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the jquery plugin manager. Attackers can upload a zip file with a PHP shell script and execute arbitrary system commands by accessing the uploaded plugin'...

8.6CVSS8.6AI score0.01019EPSS

Exploits1References1

NVD•added 2025/12/15 9:15 p.m.•1 views

CVE-2023-53891

5.4CVSS0.00024EPSS

Exploits1References3

OSV•added 2025/12/15 9:15 p.m.•1 views

CVE-2023-53891

5.4CVSS6AI score

Exploits0References3

NVD•added 2025/12/15 9:15 p.m.•1 views

CVE-2023-53892

8.6CVSS0.01019EPSS

Exploits1References3

OSV•added 2025/12/15 9:15 p.m.•1 views

CVE-2023-53892

7.2CVSS8.6AI score

Exploits0References3

Vulnrichment•added 2025/12/15 8:28 p.m.•1 views

CVE-2023-53891 Blackcat CMS 1.4 Stored Cross-Site Scripting via Page Modification

5.1CVSS5.6AI score0.00024EPSS

Exploits1References3

Cvelist•added 2025/12/15 8:28 p.m.•16 views

CVE-2023-53892 Blackcat CMS 1.4 Remote Code Execution via Jquery Plugin Manager

8.6CVSS0.01019EPSS

Exploits1References3

Cvelist•added 2025/12/15 8:28 p.m.•15 views

CVE-2023-53891 Blackcat CMS 1.4 Stored Cross-Site Scripting via Page Modification

5.1CVSS0.00024EPSS

Exploits1References3

Vulnrichment•added 2025/12/15 8:28 p.m.•2 views

CVE-2023-53892 Blackcat CMS 1.4 Remote Code Execution via Jquery Plugin Manager

8.6CVSS8.3AI score0.01019EPSS

Exploits1References3

CVE•added 2025/12/15 8:28 p.m.•3 views

CVE-2023-53891

Blackcat CMS 1.4 contains a stored cross-site scripting vulnerability exploitable by authenticated users via the page modification interface. Malicious JavaScript payloads inserted into page content can execute when other users view the affected page. Root cause and impact are as described in con...

5.4CVSS5.6AI score0.00024EPSS

Exploits1References3Affected Software1

CVE•added 2025/12/15 8:28 p.m.•5 views

CVE-2023-53892

Summary: CVE-2023-53892 affects Blackcat CMS 1.4 with a remote code execution flaw in the jquery plugin manager. Authenticated admins can upload ZIP packages containing a PHP shell and trigger arbitrary system commands by accessing the uploaded plugin file with a code parameter. Affected software...

8.6CVSS8.3AI score0.01019EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2025/12/15 12:0 a.m.•1 views

PT-2025-51310

Name of the Vulnerable Software and Affected Versions Blackcat CMS version 1.4 Description Blackcat CMS version 1.4 has a remote code execution issue. Authenticated administrators can upload malicious PHP files using the jquery plugin manager. An attacker can upload a zip file containing a PHP...

8.6CVSS8.3AI score0.01019EPSS

Exploits1References6

CNNVD•added 2025/12/15 12:0 a.m.•1 views

Blackcat CMS 安全漏洞

Blackcat CMS is a content management system from the German company Blackcat. A security vulnerability exists in Blackcat CMS version 1.4, which stems from allowing an authenticated user to inject malicious script into page content, potentially leading to a stored cross-site scripting attack...

5.4CVSS5.8AI score0.00024EPSS

Exploits1References4

Positive Technologies•added 2025/12/15 12:0 a.m.•0 views

PT-2025-51309

Name of the Vulnerable Software and Affected Versions Blackcat CMS version 1.4 Description Blackcat CMS version 1.4 has a stored cross-site scripting issue. Authenticated users can inject malicious scripts into page content. Attackers can insert JavaScript payloads in the page modification...

5.4CVSS5.9AI score0.00024EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by