Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/03/03 1:48 a.m.5 views

CVE-2026-26699

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/adminchangepicture.php...

7.2CVSS6.5AI score0.00575EPSS
Exploits1References1
NVD
NVD
added 2026/03/02 4:16 p.m.4 views

CVE-2026-26699

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/adminchangepicture.php...

7.2CVSS0.00575EPSS
Exploits1References1
OSV
OSV
added 2026/03/02 4:16 p.m.5 views

CVE-2026-26699

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/adminchangepicture.php...

7.2CVSS6.3AI score0.00575EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.6 views

Personnel Property Equipment System 安全漏洞

Personnel Property Equipment System is a personnel property equipment management system developed by Jon Remus Sevellejo. Version 1.0 of Personnel Property Equipment System has security vulnerabilities; these vulnerabilities stem from arbitrary code execution in the...

7.2CVSS6.3AI score0.00575EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.9 views

PT-2026-22612

Name of the Vulnerable Software and Affected Versions sourcecodester Personnel Property Equipment System version 1.0 Description The software contains a flaw that allows for arbitrary code execution. This issue is present in the 'ip/ppes/admin/admin change picture.php' component. Recommendations ...

7.2CVSS6.1AI score0.00575EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/02 12:0 a.m.6 views

EUVD-2026-9198

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/adminchangepicture.php...

8.8CVSS6.5AI score0.00575EPSS
Exploits1References1
CVE
CVE
added 2026/03/02 12:0 a.m.12 views

CVE-2026-26699

CVE-2026-26699 affects sourcecodester Personnel Property Equipment System v1.0. Multiple sources report an arbitrary code execution vulnerability in ip/ppes/admin/admin_change_picture.php. The Red Hat/CIRCL/NVD entries confirm the vulnerable component, but do not provide detailed root-cause speci...

7.2CVSS6.5AI score0.00575EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/02 12:0 a.m.2 views

CVE-2026-26699

sourcecodester Personnel Property Equipment System v1.0 is vulnerable to arbitrary code execution in ip/ppes/admin/adminchangepicture.php...

6.5AI score0.00575EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/04 12:0 a.m.5 views

Campcodes Project Management System 代码问题漏洞

Campcodes Project Management System is a project management system from Campcodes, Inc. A code issue vulnerability exists in Campcodes Project Management System version 1.0, which stems from the parameter file in the file /forms/updateforms.php?action=changepic2&id=4 that can lead to unrestricted...

9.8CVSS6.6AI score0.00494EPSS
Exploits1References5
NVD
NVD
added 2018/10/16 7:29 a.m.11 views

CVE-2018-18382

Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" aka user/edit-profile action...

8.8CVSS9AI score0.02695EPSS
Exploits1References1
Prion
Prion
added 2018/10/16 7:29 a.m.9 views

Remote code execution

Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" aka user/edit-profile action...

6.5CVSS8.9AI score0.02695EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/10/16 7:0 a.m.36 views

CVE-2018-18382

Advanced HRM 1.6 is affected by CVE-2018-18382, which enables Remote Code Execution via PHP code uploaded to a .php file at the user/update-user-avatar URI, accessible through the Update Profile/Change Picture flow (user/edit-profile). The issue is tied to the specific endpoint path used for upda...

8.8CVSS8.9AI score0.02695EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder