Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:48 a.m.5 views

CVE-2022-31854

Codoforum v5.1 was discovered to contain an arbitrary file upload vulnerability via the logo change option in the admin panel...

7.2CVSS7.5AI score0.7982EPSS
Exploits4References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:59 a.m.5 views

CVE-2020-7051

Codologic Codoforum through 4.8.4 allows stored XSS in the login area. This is relevant in conjunction with CVE-2020-5842 because session cookies lack the HttpOnly flag. The impact is account takeover...

6.1CVSS5.6AI score0.01819EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2020-14611

Malware in sbrugna...

6.1CVSS6.3AI score0.0042EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-18511

Malware in sbrugna...

5.4CVSS5.5AI score0.00287EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/22 3:56 p.m.1 views

CVE-2020-21845

Codoforum 4.8.3 allows HTML Injection in the 'admin dashboard Manage users Section.'...

6.1CVSS7.2AI score0.0042EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 3:26 p.m.3 views

CVE-2020-22539

An arbitrary file upload vulnerability in the Add Category function of Codoforum v4.9 allows attackers to execute arbitrary code via uploading a crafted file...

7.2CVSS7.9AI score0.00133EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 3:23 p.m.3 views

CVE-2020-25876

A stored cross site scripting XSS vulnerability in the 'Pages' feature of Codoforum v5.0.2 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payload entered into the 'Page Title' parameter...

5.4CVSS5.5AI score0.00287EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 3:23 p.m.5 views

CVE-2020-25875

A stored cross site scripting XSS vulnerability in the 'Smileys' feature of Codoforum v5.0.2 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payload entered into the 'Smiley Code' parameter...

5.4CVSS5.5AI score0.00287EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2022/07/07 12:0 a.m.2 views

PT-2022-20958 · Codoforum · Codoforum

Name of the Vulnerable Software and Affected Versions: Codoforum version 5.1 Description: The issue is related to an arbitrary file upload vulnerability via the logo change option in the admin panel. This vulnerability can potentially lead to remote code execution. Recommendations: For Codoforum...

7.2CVSS7.1AI score0.7982EPSS
Exploits4References11
CNVD
CNVDadded 2021/07/13 12:0 a.m.2 views

Codoforum cross-site scripting vulnerability (CNVD-2021-50179)

Codoforum is a set of PHP and MySQL based forum software. A cross-site scripting vulnerability exists in Codoforum version 5.0.2, which can be exploited by an authenticated attacker to execute arbitrary web script or HTML via a crafted payload with the "Manage Users" parameter...

5.4CVSS6.1AI score0.00287EPSS
Exploits1References1
CNVD
CNVDadded 2021/07/13 12:0 a.m.3 views

Codoforum cross-site scripting vulnerability (CNVD-2021-50176)

Codoforum is a set of PHP and MySQL based forum software. A cross-site scripting vulnerability exists in Codoforum version 5.0.2, which can be exploited by an attacker to execute arbitrary web script or HTML via a crafted payload with the "Smiley Code" parameter...

5.4CVSS6.3AI score0.00287EPSS
Exploits1References1
Rows per page
Query Builder