Lucene search
K

115 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-2342

Malware in sbrugna...

5.4CVSS5.5AI score0.00545EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-48375

Malicious code in bioql PyPI...

5.1CVSS4AI score0.00422EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 9:52 a.m.13 views

CVE-2024-7453

A vulnerability was found in FastAdmin 1.5.0.20240328. It has been declared as problematic. This vulnerability affects unknown code of the file /adminsurl.php/general/attachment/edit/ids/4?dialog=1 of the component Attachment Management Section. The manipulation of the argument...

5.1CVSS5AI score0.00422EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:50 a.m.10 views

CVE-2024-7928

A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipulation of the argument lang leads to path traversal. The attack may be launched remotely. The exploi...

7.5CVSS7.5AI score0.16882EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:47 p.m.9 views

CVE-2020-21665

In fastadmin V1.0.0.20191212beta, when a user with administrator rights has logged in, a malicious parameter can be passed for SQL injection in URL /admin/ajax/weigh...

7.2CVSS8AI score0.00948EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:13 p.m.6 views

CVE-2020-25967

The member center function in fastadmin V1.0.0.20200506beta is vulnerable to a Server-Side Template Injection SSTI vulnerability...

8.8CVSS7.2AI score0.01274EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:6 p.m.7 views

CVE-2020-21667

In fastadmin-tp6 v1.0, in the file app/admin/controller/Ajax.php the 'table' parameter passed is not filtered so a malicious parameter can be passed for SQL injection...

7.2CVSS7.6AI score0.01028EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:23 p.m.8 views

CVE-2020-26609

fastadmin V1.0.0.20200506beta contains a cross-site scripting XSS vulnerability which may allow an attacker to obtain administrator credentials to log in to the background...

5.4CVSS5.7AI score0.00905EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 8:39 a.m.5 views

CVE-2019-17432

An issue was discovered in fastadmin 1.0.0.20190705beta. There is a public/admin/general.config/edit CSRF vulnerability, as demonstrated by resultant XSS via the rowname parameter...

6.5CVSS5.9AI score0.00546EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:33 a.m.6 views

CVE-2019-17431

An issue was discovered in fastadmin 1.0.0.20190705beta. There is a public/index.php/admin/auth/admin/add CSRF vulnerability...

8.8CVSS7AI score0.00638EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2024/08/30 12:0 a.m.7 views

The vulnerability of the /index/ajax/lang component of the FastAdmin remote administration utility, which allows a hacker to expose protected information.

The vulnerability of the /index/ajax/lang component of the FastAdmin remote administration utility is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

4.3CVSS5.8AI score0.16882EPSS
Exploits5References4Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2024/08/29 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-7928

A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipulation of the argument lang leads to path traversal. The attack may be launched remotely. The...

7.5CVSS6.4AI score0.16882EPSS
Exploits5References1
GithubExploit
GithubExploit
added 2024/08/23 3:50 p.m.363 views

Exploit for Path Traversal in Fastadmin

CVE-2024-7928: FastAdmin Installation bash g...

7.5CVSS4.9AI score0.16882EPSS
Exploits5
CNVD
CNVD
added 2024/08/21 12:0 a.m.5 views

TpMeCMS Cross-Site Scripting Vulnerability

TpMeCMS is a CMS developed on the FastAdmin framework. TpMeCMS version 1.3.3.2 suffers from a cross-site scripting vulnerability, which originates from the lack of effective filtering and escaping of user-supplied data in the parameter Site Name/Beian/Contact address/copyright/technical support i...

5.1CVSS6.4AI score0.00502EPSS
Exploits1References1
CNVD
CNVD
added 2024/08/21 12:0 a.m.8 views

FastAdmin Path Traversal Vulnerability

FastAdmin is a set of web backend development framework based on ThinkPHP and Bootstrap. FastAdmin suffers from a path traversal vulnerability, which stems from the program failing to properly filter special elements in the path of a resource or file. An attacker can exploit this vulnerability to...

7.5CVSS6.4AI score0.16882EPSS
Exploits5References1
GithubExploit
GithubExploit
added 2024/08/20 12:15 p.m.89 views

Exploit for Path Traversal in Fastadmin

CVE-2024-7928 POC for CVE-2024-7928. Will attempt to retrieve...

7.5CVSS7.3AI score0.16882EPSS
Exploits5
GithubExploit
GithubExploit
added 2024/08/20 12:15 p.m.277 views

Exploit for Path Traversal in Fastadmin

CVE-2024-7928 POC for CVE-2024-7928. Will attempt to retrieve...

7.5CVSS6.1AI score0.16882EPSS
Exploits5
GithubExploit
GithubExploit
added 2024/08/20 3:9 a.m.22 views

Exploit for Path Traversal in Fastadmin

CVE-2024-7928 POC for CVE-2024-7928. Will attempt to retrieve...

7.5CVSS5.7AI score0.16882EPSS
Exploits5
OSV
OSV
added 2024/08/19 10:15 p.m.6 views

CVE-2024-7928

A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipulation of the argument lang leads to path traversal. The attack may be launched remotely. The exploi...

7.5CVSS6.7AI score
Exploits0References4
NVD
NVD
added 2024/08/19 10:15 p.m.19 views

CVE-2024-7928

A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipulation of the argument lang leads to path traversal. The attack may be launched remotely. The exploi...

7.5CVSS0.16882EPSS
Exploits5References4
Rows per page
Query Builder