Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2021-10765

Malware in sbrugna...

6.5CVSS6.5AI score0.00781EPSS
Exploits2References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-10766

Malware in sbrugna...

4.8CVSS5.2AI score0.0034EPSS
Exploits2References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-10763

Malware in sbrugna...

4.9CVSS5.2AI score0.0164EPSS
Exploits2References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-16854

Malware in sbrugna...

7.5CVSS7.6AI score0.00233EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-2452

Malware in sbrugna...

7.2CVSS6.9AI score0.08267EPSS
Exploits3References2
RedhatCVE
RedhatCVEadded 2025/05/22 9:20 p.m.5 views

CVE-2021-23836

An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefssmtppsw HTTP request body parameter for the acp interface. An admin user can inject malicious client-side script into the affected parameter without any form of input sanitization. Th...

4.8CVSS5.8AI score0.004EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:19 p.m.3 views

CVE-2021-23837

An issue was discovered in flatCore before 2.0.0 build 139. A time-based blind SQL injection was identified in the selectedfolder HTTP request body parameter for the acp interface. The affected parameter which retrieves the file contents of the specified folder was found to be accepting malicious...

6.5CVSS7.8AI score0.00781EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:23 p.m.5 views

CVE-2021-23835

An issue was discovered in flatCore before 2.0.0 build 139. A local file disclosure vulnerability was identified in the docsfile HTTP request body parameter for the acp interface. This can be exploited with admin access rights. The affected parameter which retrieves the contents of the specified...

4.9CVSS6.5AI score0.0164EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:8 a.m.3 views

CVE-2019-10652

An issue was discovered in flatCore 1.4.7. acp/acp.php allows remote authenticated administrators to upload arbitrary .php files, related to the addons feature...

7.2CVSS6.8AI score0.08267EPSS
Exploits3References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:14 a.m.2 views

CVE-2017-7879

SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read the content database...

7.5CVSS7.9AI score0.00233EPSS
Exploits0References1
NVD
NVDadded 2021/01/15 7:15 a.m.11 views

CVE-2021-23838

An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the mediafilter HTTP request body parameter for the acp interface. The affected parameter accepts malicious client-side script without proper input sanitization. For example, a malicious us...

4.8CVSS4.9AI score0.0034EPSS
Exploits2References3
Prion
Prionadded 2021/01/15 7:15 a.m.11 views

Cross site scripting

An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefssmtppsw HTTP request body parameter for the acp interface. An admin user can inject malicious client-side script into the affected parameter without any form of input sanitization. Th...

3.5CVSS4.8AI score0.004EPSS
Exploits2References3Affected Software1
CNVD
CNVDadded 2020/08/10 12:0 a.m.1 views

flatCore Code Issue Vulnerability

flatCore is a lightweight content management system CMS based on PHP and SQLite. A security vulnerability exists in flatCore versions prior to 1.5.7. An attacker can exploit the vulnerability to upload and execute .php files...

9CVSS7.1AI score0.00835EPSS
Exploits1References1
NVD
NVDadded 2019/03/30 2:29 p.m.6 views

CVE-2019-10652

An issue was discovered in flatCore 1.4.7. acp/acp.php allows remote authenticated administrators to upload arbitrary .php files, related to the addons feature...

7.2CVSS6.8AI score0.08267EPSS
Exploits3References1
Rows per page
Query Builder