155 matches found
EUVD-2023-12529
Malicious code in bioql PyPI...
EUVD-2025-26521
Malicious code in bioql PyPI...
EUVD-2025-13374
Malicious code in bioql PyPI...
EUVD-2023-29716
Malicious code in bioql PyPI...
EUVD-2023-12411
Malicious code in bioql PyPI...
EUVD-2023-49495
Malicious code in bioql PyPI...
CVE-2025-57148
phpgurukul Online Shopping Portal 2.0 is vulnerable to Arbitrary File Upload in /admin/insert-product.php, due to the lack of extension validation...
Online Shopping Portal File Upload Vulnerability
Online Shopping Portal is an online store. A file upload vulnerability exists in Online Shopping Portal, which stems from a lack of extension validation in /admin/insert-product.php, and can be exploited by an attacker to cause arbitrary file uploads...
CVE-2025-57148
phpgurukul Online Shopping Portal 2.0 is vulnerable to Arbitrary File Upload in /admin/insert-product.php, due to the lack of extension validation...
CVE-2025-57148
phpgurukul Online Shopping Portal 2.0 is vulnerable to Arbitrary File Upload in /admin/insert-product.php, due to the lack of extension validation...
PHPGurukul Online Shopping Portal 安全漏洞
Online Shopping Portal is an online store. A file upload vulnerability exists in Online Shopping Portal, which stems from a lack of extension validation in /admin/insert-product.php, and can be exploited by an attacker to cause arbitrary file uploads...
PT-2025-35779
Name of the Vulnerable Software and Affected Versions: phpgurukul Online Shopping Portal version 2.0 Description: phpgurukul Online Shopping Portal version 2.0 contains an arbitrary file upload issue in the /admin/insert-product.php component. This is due to missing extension validation, allowing...
CVE-2025-57148
phpgurukul Online Shopping Portal 2.0 is vulnerable to Arbitrary File Upload in /admin/insert-product.php, due to the lack of extension validation...
CVE-2025-57148
phpgurukul Online Shopping Portal 2.0 is vulnerable to Arbitrary File Upload in /admin/insert-product.php, due to the lack of extension validation...
CVE-2025-57148
CVE-2025-57148 affects phpgurukul Online Shopping Portal 2.0. The vulnerability is an Arbitrary File Upload in /admin/insert-product.php caused by lack of extension validation. Reported details across multiple sources confirm the affected software and the specific component, with CVSSv3.1 vector ...
Nagios XI 安全漏洞
Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems, and more. A security vulnerability exists in Nagios XI versions prior to 2024R1.3.2, which stems from insufficient...
PT-2025-34235 · Unopim +1 · Unopim +1
Name of the Vulnerable Software and Affected Versions: UnoPim versions prior to 0.2.1 Description: UnoPim, an open-source Product Information Management PIM system built on the Laravel framework, contains a stored cross-site scripting vulnerability. The vulnerability is due to an SVG MIME/sanitiz...
Sourceforge LibrettoCMS 安全漏洞
Sourceforge LibrettoCMS is an open source content management system from Sourceforge. A security vulnerability exists in Sourceforge LibrettoCMS 1.1.7 and earlier versions, which stems from a file manager plugin that does not properly validate file extensions, and could lead to remote code...
CVE-2024-6451
AI Engine 2.4.3 is susceptible to remote-code-execution RCE via Log Poisoning. The AI Engine WordPress plugin before 2.5.1 fails to validate the file extension of "logspath", allowing Administrators to change log filetypes from .log to .php...
CVE-2024-56828
File Upload vulnerability in ChestnutCMS through 1.5.0. Based on the code analysis, it was determined that the /api/member/avatar API endpoint receives a base64 string as input. This string is then passed to the memberService.uploadAvatarByBase64 method for processing. Within the service, the...