CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/01/09 10:11 a.m.•6 views

CVE-2019-11610

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/downloaddir.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

7.5CVSS6.5AI score0.00731EPSS

RedhatCVE•added 2026/01/09 10:10 a.m.•6 views

CVE-2019-11620

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/modulecategoryRequest.php. A remote background administrator privilege user or a user with permission to manage modulecategory could exploit the vulnerability to obtain database sensitive information via...

4.9CVSS7.2AI score0.00261EPSS

RedhatCVE•added 2026/01/09 10:9 a.m.•4 views

CVE-2019-11624

doorGets 7.0 has an arbitrary file deletion vulnerability in /doorgets/app/requests/user/configurationRequest.php. A remote background administrator privilege user can exploit this vulnerability to delete arbitrary files...

5.5CVSS7.2AI score0.00746EPSS

9.8CVSS9.5AI score0.00974EPSS

EUVD-2019-3286

Malware in sbrugna...

7.5CVSS7.6AI score0.00731EPSS

EUVD-2019-3281

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-3285

Malware in sbrugna...

8.8CVSS8.8AI score0.00401EPSS

7.5CVSS7.6AI score0.00731EPSS

EUVD-2019-3280

Malware in sbrugna...

9.8CVSS9.5AI score0.00842EPSS

EUVD-2019-3288

Malware in sbrugna...

5.3CVSS5.5AI score0.00356EPSS

EUVD-2019-3296

Malware in sbrugna...

7.5CVSS7.6AI score0.00334EPSS

EUVD-2018-12639

Malware in sbrugna...

RedhatCVE•added 2025/05/22 7:55 a.m.•2 views

CVE-2019-11616

doorGets 7.0 has a sensitive information disclosure vulnerability in /setup/temp/admin.php and /setup/temp/database.php. A remote unauthenticated attacker could exploit this vulnerability to obtain the administrator password...

9.8CVSS6.5AI score0.00974EPSS

OSV•added 2019/04/30 8:29 p.m.•0 views

CVE-2019-11621

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/configurationRequest.php when action=network. A remote background administrator privilege user or a user with permission to manage network configuration could exploit the vulnerability to obtain database sensitive...

4.9CVSS5.9AI score

Exploits0References1

OSV•added 2019/04/30 8:29 p.m.•0 views

CVE-2019-11616

9.8CVSS7.3AI score

Exploits0References1

OSV•added 2019/04/30 8:29 p.m.•0 views

CVE-2019-11615

/fileman/php/upload.php in doorGets 7.0 has an arbitrary file upload vulnerability. A remote normal registered user can use this vulnerability to upload backdoor files to control the server...

8.8CVSS7.4AI score0.00401EPSS

Cvelist•added 2019/04/30 7:39 p.m.•11 views

CVE-2019-11611

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/download.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

7.2AI score0.00731EPSS

Cvelist•added 2019/04/30 7:38 p.m.•13 views

CVE-2019-11609

7.8AI score0.01309EPSS

CNVD•added 2019/04/30 12:0 a.m.•2 views

DoorGets Information Disclosure Vulnerability

doorGets is a content management system CMS. The system supports multiple languages, and system backups and theme changes, etc. An information disclosure vulnerability exists in the routers/ajaxRouter.php file in doorGets version 7.0, which can be exploited by an attacker to disclose the physical...

5.3CVSS6.1AI score0.00356EPSS