Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-1923

Malware in sbrugna...

9.8CVSS9.2AI score0.02373EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/22 7:43 a.m.7 views

CVE-2019-1010178

Fred MODX Revolution 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. The impact is: Remote Code Execution. The component is: assets/components/fred/web/elfinder/connector.php. The attack vector is: Uploading a PHP file or change data in the database. The fixed version is:...

9.8CVSS7.4AI score0.02373EPSS
Exploits1References1
Huntr
Huntradded 2022/08/19 4:26 p.m.48 views

Full account takeover

POC: Step 1: Use a normal user account Step 2: Change user password in edit profile function Step 3: Enter data fields that change normally Step 4: Use burp suite to intercept requests to update profile Step 5: Change id from 2 to id 1 and send request The result of logging in with the new userna...

6.5CVSS0.7AI score0.00267EPSS
Exploits1
OSV
OSVadded 2019/07/24 2:15 p.m.10 views

CVE-2019-1010178

Fred MODX Revolution 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. The impact is: Remote Code Execution. The component is: assets/components/fred/web/elfinder/connector.php. The attack vector is: Uploading a PHP file or change data in the database. The fixed version is:...

9.8CVSS7.4AI score
Exploits0References1
NVD
NVDadded 2019/07/24 2:15 p.m.9 views

CVE-2019-1010178

Fred MODX Revolution 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. The impact is: Remote Code Execution. The component is: assets/components/fred/web/elfinder/connector.php. The attack vector is: Uploading a PHP file or change data in the database. The fixed version is:...

9.8CVSS9.7AI score0.02373EPSS
Exploits1References1
Prion
Prionadded 2019/07/24 2:15 p.m.7 views

Design/Logic Flaw

Fred MODX Revolution 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. The impact is: Remote Code Execution. The component is: assets/components/fred/web/elfinder/connector.php. The attack vector is: Uploading a PHP file or change data in the database. The fixed version is:...

7.5CVSS9.6AI score0.02373EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2019/07/24 1:50 p.m.123 views

CVE-2019-1010178

CVE-2019-1010178 affects MODX Revolution ≤ 1.0.0-beta4/β5 via the Fred add-on (assets/components/fred/web/elfinder/connector.php). The root cause is Incorrect Access Control (CWE-648), enabling Remote Code Execution. The attack vector involves uploading a PHP file or altering data in the database...

9.8CVSS9.6AI score0.02373EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Stormadded 2008/02/04 12:0 a.m.21 views

joomlaawesom-sql.txt

joomla SQL Injectioncomawesom AUTHOR : S@BUN HOME : http://www.hackturkiye.com/ DORKS 1 : allinurl :"comawesom" ı changed ATATÜRK.com's db. soo dont look ATATÜRK.com db si değiştirilip kullanıcısına bildirilmiştir. EXPLOIT :...

7.4AI score
Exploits0
Rows per page
Query Builder