Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

57 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-10154

Malware in sbrugna...

9CVSS8.8AI score0.01954EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-4786

Malware in sbrugna...

7.5CVSS6.1AI score0.10716EPSS
Exploits1References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-11850

Malware in sbrugna...

7.5CVSS7.6AI score0.00439EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-13030

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/22 4:28 p.m.2 views

CVE-2020-19954

An XML External Entity XXE vulnerability was discovered in /api/notify.php in S-CMS 3.0 which allows attackers to read arbitrary files...

7.5CVSS6.9AI score0.00439EPSS
Exploits1
NVD
NVDadded 2023/09/28 3:15 p.m.12 views

CVE-2023-43879

Rite CMS 3.0 has a Cross-Site scripting XSS vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu...

4.8CVSS5.1AI score0.00238EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/09/28 3:15 p.m.0 views

CVE-2023-43879

Rite CMS 3.0 has a Cross-Site scripting XSS vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu...

4.8CVSS6.3AI score0.00238EPSS
Exploits1References2
Prion
Prionadded 2023/09/28 3:15 p.m.22 views

Cross site scripting

Rite CMS 3.0 has Multiple Cross-Site scripting XSS vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu...

4.9CVSS5.7AI score0.00291EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2023/09/28 3:15 p.m.25 views

Cross site scripting

Rite CMS 3.0 has a Cross-Site scripting XSS vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu...

4.3CVSS5.2AI score0.00238EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/09/28 12:0 a.m.16 views

CVE-2023-43879

Rite CMS 3.0 has a Cross-Site scripting XSS vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu...

5.4AI score0.00238EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2023/09/28 12:0 a.m.12 views

CVE-2023-43878

Rite CMS 3.0 has Multiple Cross-Site scripting XSS vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu...

6.8AI score0.00291EPSS
Exploits1References1
NVD
NVDadded 2021/10/14 3:15 p.m.12 views

CVE-2020-19954

An XML External Entity XXE vulnerability was discovered in /api/notify.php in S-CMS 3.0 which allows attackers to read arbitrary files...

7.5CVSS0.00439EPSS
Exploits1References1
Prion
Prionadded 2021/10/14 3:15 p.m.20 views

Xxe

An XML External Entity XXE vulnerability was discovered in /api/notify.php in S-CMS 3.0 which allows attackers to read arbitrary files...

5CVSS7.4AI score0.00439EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2021/10/14 2:17 p.m.15 views

CVE-2020-19954

An XML External Entity XXE vulnerability was discovered in /api/notify.php in S-CMS 3.0 which allows attackers to read arbitrary files...

7.4AI score0.00439EPSS
Exploits1References1
CVE
CVEadded 2021/10/14 2:17 p.m.47 views

CVE-2020-19954

CVE-2020-19954 : An XML External Entity (XXE) vulnerability affects S-CMS 3.0, specifically the /api/notify.php endpoint, enabling an attacker to read arbitrary files. Root cause: XXE in XML processing. Documented impact across sources (NVD, CNVD, Red Hat). CVSS v3.1 base score 7.5 (HIGH); CVSS v...

7.5CVSS7.3AI score0.00439EPSS
Exploits1References1Affected Software1
CNVD
CNVDadded 2021/07/28 12:0 a.m.23 views

S-CMS Cross-Site Scripting Vulnerability (CNVD-2021-58258)

S-CMS 3.0 has a cross-site scripting vulnerability, which can be exploited by attackers via the "Copyright" text box under "Basic Settings" to execute arbitrary Web scripts or HTML. The vulnerability can be exploited to execute arbitrary Web scripts or HTML via the "Copyright" text box under "Bas...

4.8CVSS3.4AI score0.0029EPSS
Exploits1References1
NVD
NVDadded 2020/10/06 2:15 p.m.8 views

CVE-2020-25802

Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via Groovy scripting. This issue affects: Crafter Software Crafter CMS 3.0 versions prior to 3.0.27; 3.1 versions prior to 3.1.7...

9CVSS0.00434EPSS
Exploits0References1
Prion
Prionadded 2018/12/26 3:29 a.m.26 views

Sql injection

An issue was discovered in S-CMS 3.0. It allows SQL Injection via the bank/callback1.php Pno field...

7.5CVSS9.8AI score0.00264EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2018/12/26 3:29 a.m.13 views

CVE-2018-20477

An issue was discovered in S-CMS 3.0. It allows SQL Injection via the bank/callback1.php Pno field...

9.8CVSS9.9AI score0.00264EPSS
Exploits1References1
Prion
Prionadded 2018/12/26 3:29 a.m.16 views

Design/Logic Flaw

An issue was discovered in S-CMS 3.0. It allows XSS via the admin/demo.php Tid parameter...

4.3CVSS5.9AI score0.0024EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder