CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

238 matches found

GithubExploit•added 2026/03/14 5:0 p.m.•114 views

Stored-XSS-SVG-File-Upload-PoC

No d...

5.8AI score

Exploits0

RedhatCVE•added 2026/01/09 11:21 a.m.•4 views

CVE-2021-22358

There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the device. Successful exploit may cause the service abnormal...

4.3CVSS6.8AI score0.00169EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:52 a.m.•3 views

CVE-2020-10386

admin/imagepaster/image-upload.php in Chadha PHPKB Standard Multi-Language 9 allows remote attackers to achieve Code Execution by uploading a .php file in the admin/js/ directory...

7.2CVSS7.3AI score0.20944EPSS

Exploits5References1

RedhatCVE•added 2026/01/07 9:17 a.m.•5 views

CVE-2025-1165

A vulnerability, which was classified as critical, was found in Lumsoft ERP 8. Affected is the function DoUpload/DoWebUpload of the file /Api/FileUploadApi.ashx. The manipulation of the argument file leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been...

7.5CVSS6.9AI score0.00151EPSS

Exploits0References1

OSV•added 2025/12/15 9:15 p.m.•0 views

CVE-2023-53888

Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to inject and execute arbitrary PHP code through file manipulation endpoints. Attackers can upload malicious JavaScript files, rename them to PHP, and execute system commands by exploiting the saveE and...

8.8CVSS6.5AI score

Exploits0References3