Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.7 views

CVE-2022-0687

The Amelia WordPress plugin before 1.0.47 stores image blobs into actual files whose extension is controlled by the user, which may lead to PHP backdoors being uploaded onto the site. This vulnerability can be exploited by logged-in users with the custom "Amelia Manager" role...

8.8CVSS6.7AI score0.01439EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/04/10 5:20 p.m.39 views

CVE-2024-31214 Traccar's unrestricted file upload vulnerability in device image upload could lead to remote code execution

Traccar is an open source GPS tracking system. Traccar versions 5.1 through 5.12 allow arbitrary files to be uploaded through the device image upload API. Attackers have full control over the file contents, full control over the directory where the file is stored, full control over the file...

9.6CVSS9.6AI score0.17631EPSS
Exploits5References4
OSV
OSV
added 2022/03/21 7:15 p.m.2 views

CVE-2022-0687

The Amelia WordPress plugin before 1.0.47 stores image blobs into actual files whose extension is controlled by the user, which may lead to PHP backdoors being uploaded onto the site. This vulnerability can be exploited by logged-in users with the custom "Amelia Manager" role...

8.8CVSS5.8AI score
Exploits0References1
0day.today
0day.today
added 2020/05/12 12:0 a.m.31 views

qdPM 9.1 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: qdPM 9.1 - Arbitrary File Upload Author: Besim ALTINOK Vendor Homepage: https://sourceforge.net/projects/qdpm/ Software Link: https://sourceforge.net/projects/qdpm/ Version: v9.1 Maybe it affect other versions Tested on: Xampp...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2020/01/03 12:0 a.m.309 views

Online Course Registration 2.0 - Remote Code Execution

Exploit Title: Online Course Registration 2.0 - Remote Code Execution Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/online-course-registration-free-download/ Version: v2.0 Category: Webapps Tested on: Xampp for Windows...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/04/03 12:0 a.m.20 views

PhreeBooks ERP 5.2.3 - Remote Command Execution

PhreeBooks ERP 5.2.3 - Remote Command Execution Exploit Title: PhreeBooks ERP 5.2.3 - Remote Command Execution Date: 2010-04-03 Exploit Author: Metin Yunus Kandemir kandemir Vendor Homepage: https://www.phreesoft.com/ Software Link: https://sourceforge.net/projects/phreebooks/ Version: v5.2.3...

0.3AI score
Exploits0
Rows per page
Query Builder