CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

159 matches found

Snyk•added 2026/06/15 8:20 p.m.•8 views

Interpretation Conflict

Overview python-multipart is an A streaming multipart parser for Python Affected versions of this package are vulnerable to Interpretation Conflict through the parseoptionsheader function. An attacker can bypass field name or filename-based access controls, or manipulate file upload destinations ...

6.3CVSS5.4AI score0.00176EPSS

Exploits0References2

Positive Technologies•added 2026/02/06 12:0 a.m.•6 views

PT-2026-6847

Impact What kind of vulnerability is it? Who is impacted? An Arbitrary File Write vulnerability has been identified in Microsoft's Semantic Kernel .NET SDK, specifically within the SessionsPythonPlugin. Developers who have built applications which include Microsoft's Semantic Kernel .NET SDK and...

9.9CVSS5.5AI score0.0195EPSS

Exploits0References6

CNNVD•added 2026/02/03 12:0 a.m.•7 views

CI4MS 代码问题漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.28.5.0 contained code vulnerabilities. These vulnerabilities allowed verified users with file editor privileges to upload and execute arbitrary PHP code through file creation and saving endpoints,...

9.9CVSS6.4AI score0.00805EPSS

Exploits1References2

RedhatCVE•added 2026/01/09 12:38 p.m.•6 views

CVE-2023-50692

File Upload vulnerability in JIZHICMS v.2.5, allows remote attacker to execute arbitrary code via a crafted file uploaded and downloaded to the downloadurl parameter in the app/admin/exts/ directory...

8.8CVSS7.8AI score0.00938EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:49 a.m.•10 views

CVE-2020-24986

Concrete5 up to and including 8.5.2 allows Unrestricted Upload of File with Dangerous Type such as a .php file via File Manager. It is possible to modify site configuration to upload the PHP file and execute arbitrary commands...

9CVSS7.4AI score0.01981EPSS

Exploits1References1