Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2024/06/04 1:34 a.m.23 views

CVE-2024-29974

UNSUPPORTED WHEN ASSIGNED The remote code execution vulnerability in the CGI program “fileupload-cgi” in Zyxel NAS326 firmware versions before V5.21AAZF.17C0 and NAS542 firmware versions before V5.21ABAG.14C0 could allow an unauthenticated attacker to execute arbitrary code by uploading a crafted...

9.8CVSS8.5AI score0.43706EPSS
Exploits1References2
CNNVD
CNNVDadded 2024/02/06 12:0 a.m.2 views

Beijing Baichuo Smart S40 Management Platform Code Issue Vulnerability

The Beijing Baichuo Smart S40 Management Platform is a network behavior management router from Beijing Baichuo, China. A code issue exists in Beijing Baichuo Smart S40 Management Platform version 20240126 and earlier versions, where an incorrect operation of the parameter fileupload can result in...

7.2CVSS7AI score0.00104EPSS
Exploits1References5
CVE
CVEadded 2023/12/07 8:31 p.m.48 views

CVE-2023-6576

CVE-2023-6576 affects Byzoro S210 (up to 20231123) and also mentions Beijing Baichuo S210 in related records. The vulnerability is in the HTTP POST Request Handler’s /Tool/uploadfile.php, where manipulating the file_upload argument enables unrestricted file uploads. This allows remote exploitatio...

8.8CVSS7.6AI score0.00021EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2023/10/10 2:0 p.m.63 views

CVE-2023-5488

The CVE-2023-5488 entry concerns Byzoro/Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. The vulnerability resides in the file /sysmanage/updatelib.php and is triggered by manipulating the file_upload argument, leading to unrestricted file up...

8.8CVSS7.4AI score0.00048EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2023/09/24 11:0 p.m.44 views

CVE-2023-5144

An advisory describes CVE-2023-5144 as a critical vulnerability in D-Link DAR-7000/DAR-8000 (up to 2015-12-31) affecting an unknown function in /sysmanage/updateos.php. Manipulating the file_upload parameter leads to unrestricted upload, enabling remote execution. The affected devices are end-of-...

8.8CVSS7.1AI score0.02731EPSS
Exploits1References5Affected Software1
CVE
CVEadded 2023/08/03 9:31 a.m.85 views

CVE-2023-4121

CVE-2023-4121 affects Byzoro Smart S85F Management Platform up to 20230722. The issue is an unrestricted file upload caused by manipulation of the file_upload argument, allowing remote exploitation. Multiple connected sources confirm the vulnerability exists in this product/version and can be tri...

9.8CVSS8.1AI score0.00031EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2023/08/03 12:0 a.m.1 views

Beijing Baichuo Smart S85F Management Platform Code Issue Vulnerability

Beijing Baichuo Smart S85F Management Platform is a management platform from Beijing Baichuo Corporation. A code issue exists in Beijing Baichuo Smart S85F Management Platform 20230722 and prior versions, where the vulnerability stems from an unrestricted upload via the parameter fileupload...

9.8CVSS7.2AI score0.00031EPSS
Exploits1References5
Cvelist
Cvelistadded 2017/09/14 1:0 p.m.17 views

CVE-2017-1002024

Vulnerability in web application Kind Editor v4.1.12, kindeditor/php/uploadjson.php does not check authentication before allow users to upload files...

4.8AI score0.00297EPSS
Exploits1References3
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.10 views

Piwik <= 1357 2009-08-02 file upload and code execution

No description provided by source...

7.1AI score
Exploits0
Rows per page
Query Builder