Lucene search
K

99 matches found

Nuclei
Nuclei
added 16 hours ago13 views

Cuppa CMS v1.0 - SQL injection

Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/tablemanager/ via the orderby parameter. id: CVE-2022-24266 info: name: Cuppa CMS v1.0 - SQL injection author: theamanrawat severity: high description: | Cuppa CMS v1.0 was discovered to contain a...

7.8CVSS7.2AI score0.06391EPSS
Exploits0References5
Nuclei
Nuclei
added 16 hours ago138 views

Cuppa CMS v1.0 - Arbitrary File Upload

Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager. id: CVE-2022-38296 info: name: Cuppa CMS v1.0 - Arbitrary File Upload author: theamanrawat severity: critical description: | Cuppa CMS v1.0 was discovered to contain an arbitrary file upload...

9.8CVSS7.4AI score0.0373EPSS
Exploits1References3
Nuclei
Nuclei
added 16 hours ago22 views

Cuppa CMS v1.0 - SQL injection

Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/menu/ via the path=component/menu/&menufilter=3 parameter. id: CVE-2022-24265 info: name: Cuppa CMS v1.0 - SQL injection author: theamanrawat severity: high description: | Cuppa CMS v1.0 was...

7.8CVSS7.2AI score0.06711EPSS
Exploits1References5
Nuclei
Nuclei
added 16 hours ago20 views

Cuppa CMS v1.0 - SQL injection

Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/tablemanager/ via the searchword parameter. id: CVE-2022-24264 info: name: Cuppa CMS v1.0 - SQL injection author: theamanrawat severity: high description: | Cuppa CMS v1.0 was discovered to contain...

7.8CVSS7.2AI score0.06711EPSS
Exploits1References5
Nuclei
Nuclei
added 16 hours ago128 views

Cuppa CMS v1.0 - Local File Inclusion

CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertLightbox.php. id: CVE-2022-25485 info: name: Cuppa CMS v1.0 - Local File Inclusion author: theamanrawat severity: high description: | CuppaCMS v1.0 was discovered to contain a local file inclusion...

7.8CVSS7.1AI score0.07927EPSS
Exploits1References3
Nuclei
Nuclei
added 16 hours ago23 views

Cuppa CMS v1.0 - Local File Inclusion

CuppaCMS v1.0 was discovered to contain an arbitrary file read via the copy function. id: CVE-2022-25497 info: name: Cuppa CMS v1.0 - Local File Inclusion author: theamanrawat severity: medium description: | CuppaCMS v1.0 was discovered to contain an arbitrary file read via the copy function...

5.3CVSS6.2AI score0.03642EPSS
Exploits1References3
Nuclei
Nuclei
added 16 hours ago32 views

Cuppa CMS v1.0 - Cross Site Scripting

Cuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /tablemanager/view/cuusergroups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function. id: CVE-2022-38295...

6.1CVSS6.5AI score0.01048EPSS
Exploits1References3
Nuclei
Nuclei
added 16 hours ago37 views

CuppaCMS v1.0 - Local File Inclusion

Cuppa CMS v1.0 is vulnerable to local file inclusion via the component /templates/default/html/windows/right.php. id: CVE-2022-34121 info: name: CuppaCMS v1.0 - Local File Inclusion author: edoardottt severity: high description: | Cuppa CMS v1.0 is vulnerable to local file inclusion via the...

7.5CVSS7AI score0.02955EPSS
Exploits1References5
Nuclei
Nuclei
added 16 hours ago30 views

Cuppa CMS v1.0 - Authenticated Local File Inclusion

The component "cuppa/api/index.php" of CuppaCMS v1.0 is Vulnerable to LFI. An authenticated user can read system files via crafted POST request using function parameter value as LFI payload. id: CVE-2022-37191 info: name: Cuppa CMS v1.0 - Authenticated Local File Inclusion author: theamanrawat...

6.5CVSS6.6AI score0.02497EPSS
Exploits1References3
Nuclei
Nuclei
added 3 days ago218 views

Cuppa CMS v1.0 - Remote Code Execution

CuppaCMS 1.0 is vulnerable to Remote Code Execution RCE. An authenticated user can control both parameters action and function from "/api/index.php. id: CVE-2022-37190 info: name: Cuppa CMS v1.0 - Remote Code Execution author: theamanrawat severity: high description: | CuppaCMS 1.0 is vulnerable ...

8.8CVSS7.4AI score0.45769EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2026/03/07 12:0 a.m.10 views

VulnCheck KEV: CVE-2022-38296

Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager...

9.8CVSS5.9AI score0.0373EPSS
In wildExploits1References19
RedhatCVE
RedhatCVE
added 2026/01/09 10:57 a.m.8 views

CVE-2022-38295

Cuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /tablemanager/view/cuusergroups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function...

6.1CVSS6.8AI score0.01048EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:56 a.m.4 views

CVE-2022-38296

Cuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager...

9.8CVSS7.6AI score0.0373EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2021-26707

Malware in sbrugna...

8.8CVSS8.7AI score0.01103EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-29522

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.01031EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-30071

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.0222EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-43382

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01391EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:11 a.m.22 views

CVE-2023-39681

Cuppa CMS v1.0 was discovered to contain a remote code execution RCE vulnerability via the emailoutgoing parameter at /Configuration.php. This vulnerability is triggered via a crafted payload...

9.8CVSS8.2AI score0.01391EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 12:6 a.m.9 views

CVE-2022-25401

The copy function of the file manager in Cuppa CMS v1.0 allows any file to be copied to the current directory, granting attackers read access to arbitrary files...

7.5CVSS6.8AI score0.0222EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:1 a.m.6 views

CVE-2022-24647

Cuppa CMS v1.0 was discovered to contain an arbitrary file deletion vulnerability via the unlink function...

8.1CVSS7.5AI score0.01031EPSS
Exploits1References1
Rows per page
Query Builder