Lucene search
+L

14 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-10453

Malware in sbrugna...

7.5CVSS7.6AI score0.01199EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-35281

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.0213EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/14 12:11 a.m.14 views

CVE-2024-35324

Douchat 4.0.5 suffers from an arbitrary file upload vulnerability via Public/Plugins/webuploader/server/preview.php...

9.8CVSS7.1AI score0.0213EPSS
Exploits1References3
nvd
nvd
added 2024/05/28 4:15 p.m.24 views

CVE-2024-35324

Douchat 4.0.5 suffers from an arbitrary file upload vulnerability via Public/Plugins/webuploader/server/preview.php...

9.8CVSS6.8AI score0.0213EPSS
Exploits1References1
cvelist
cvelist
added 2024/05/28 3:25 p.m.40 views

CVE-2024-35324

Douchat 4.0.5 suffers from an arbitrary file upload vulnerability via Public/Plugins/webuploader/server/preview.php...

6.8AI score0.0213EPSS
Exploits1References1
osv
osv
added 2024/05/28 3:25 p.m.25 views

CVE-2024-35324

Douchat 4.0.5 suffers from an arbitrary file upload vulnerability via Public/Plugins/webuploader/server/preview.php...

9.8CVSS6.6AI score0.0213EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2024/05/28 12:0 a.m.7 views

PT-2024-26432 · Douchat · Douchat

Name of the Vulnerable Software and Affected Versions: Douchat version 4.0.5 Description: The issue is related to an arbitrary file upload vulnerability. This vulnerability can be exploited via the Public/Plugins/webuploader/server/preview.php endpoint. Recommendations: For Douchat version 4.0.5,...

9.8CVSS6.9AI score0.0213EPSS
Exploits1References4
cnnvd
cnnvd
added 2024/05/28 12:0 a.m.4 views

Douchat 安全漏洞

Douchat is a clean and efficient WeChat development framework from Douxin Douchat. A security vulnerability exists in Douchat version 4.0.5, which originates from an arbitrary file upload vulnerability in the file Public/Plugins/webuploader/server/preview.php...

9.8CVSS6.9AI score0.0213EPSS
Exploits1References3
nvd
nvd
added 2018/10/29 12:29 p.m.16 views

CVE-2018-18737

An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php calls simplexmlloadstring. This can also be used for SSRF...

7.5CVSS7.5AI score0.01199EPSS
Exploits1References1
osv
osv
added 2018/10/29 12:29 p.m.5 views

CVE-2018-18737

An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php calls simplexmlloadstring. This can also be used for SSRF...

7.5CVSS7.5AI score
Exploits0References1
prion
prion
added 2018/10/29 12:29 p.m.15 views

Design/Logic Flaw

An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php calls simplexmlloadstring. This can also be used for SSRF...

5CVSS7.5AI score0.01199EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2018/10/28 3:0 a.m.21 views

CVE-2018-18737

An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php calls simplexmlloadstring. This can also be used for SSRF...

7.5AI score0.01199EPSS
Exploits1References1
cve
cve
added 2018/10/28 3:0 a.m.41 views

CVE-2018-18737

CVE-2018-18737 describes an XXE in Douchat 4.0.4 caused by Data\notify.php calling simplexml_load_string, which can also enable SSRF. Affected software: Douchat 4.0.4 (no other versions/products specified). Root cause: improper XML parsing via simplexml_load_string leading to external entity proc...

7.5CVSS7.5AI score0.01199EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 1976/01/01 12:0 a.m.11 views

CVE-2024-35324

Douchat 4.0.5 suffers from an arbitrary file upload vulnerability via Public/Plugins/webuploader/server/preview.php...

7.4AI score0.0213EPSS
Exploits1References1
Rows per page
Query Builder