Lucene search
+L

235 matches found

CVE
CVE
added 2024/05/01 12:0 a.m.63 views

CVE-2024-33442

CVE-2024-33442 affects flusity-CMS v.2.33. The issue is a remote code execution vulnerability via the add_post.php component. The vulnerability is described across multiple sources (Red Hat, NVD, osv.dev, CVE lists) with a CVSS v3.1 base score of 4.3 (Medium), network attack vector, low attack co...

4.3CVSS7.8AI score0.00632EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/05/01 12:0 a.m.7 views

CVE-2024-33442

An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the addpost.php component...

4.3CVSS7.8AI score0.00632EPSS
Exploits1References3
NVD
NVD
added 2024/04/22 6:15 p.m.18 views

CVE-2024-31666

An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via a crafted script to the editaddonpost.php component...

9.8CVSS7.5AI score0.01711EPSS
Exploits1References1
NVD
NVD
added 2024/04/22 1:15 a.m.19 views

CVE-2024-32418

An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the addaddon.php component...

9.8CVSS7.5AI score0.01052EPSS
Exploits1References1
OSV
OSV
added 2024/04/22 12:0 a.m.6 views

CVE-2024-32418

An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the addaddon.php component...

9.8CVSS7.8AI score0.01052EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/04/22 12:0 a.m.6 views

PT-2024-24555 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: flusity CMS version 2.33 Description: An issue in the software allows a remote attacker to execute arbitrary code via the add addon.php component. Recommendations: For version 2.33, consider disabling the add addon.php component until a patch...

9.8CVSS8.3AI score0.01052EPSS
Exploits1References4
CVE
CVE
added 2024/04/22 12:0 a.m.71 views

CVE-2024-31666

CVE-2024-31666 affects flusity-CMS v2.33. The vulnerability allows a remote attacker to execute arbitrary code via a crafted script targeting the edit_addon_post.php component. Multiple connected sources (NVD, Red Hat, OSV, CVE listing, CNNVD, and vuln enrichment) describe the same issue, confirm...

9.8CVSS7.8AI score0.01711EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/04/22 12:0 a.m.66 views

CVE-2024-32418

CVE-2024-32418 describes a remote code execution in flusity CMS v2.33 via the add_addon.php component. The issue arises in that specific component, enabling a remote attacker with network access and no authentication to run arbitrary code with high impact on affected installations. Public details...

9.8CVSS7.8AI score0.01052EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/04/22 12:0 a.m.19 views

CVE-2024-31666

An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via a crafted script to the editaddonpost.php component...

7.7AI score0.01711EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/04/22 12:0 a.m.23 views

CVE-2024-32418

An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the addaddon.php component...

7.8AI score0.01052EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/04/22 12:0 a.m.10 views

CVE-2024-32418

An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the addaddon.php component...

7.9AI score0.01052EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/04/22 12:0 a.m.4 views

flusity CMS 安全漏洞

flusity CMS is a user interactive interface solution where code can be easily changed or added. A security vulnerability exists in flusity CMS version v2.33, which originates from a vulnerability that allows remote attackers to execute arbitrary code via the addaddon.php component...

9.8CVSS7.8AI score0.01052EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/04/22 12:0 a.m.4 views

flusity CMS 安全漏洞

flusity CMS is a user interactive interface solution where code can be easily changed or added. A security vulnerability exists in flusity CMS version v.2.33, which originated from a vulnerability that allows remote attackers to execute arbitrary code by constructing the editaddonpost.php script...

9.8CVSS7.7AI score0.01711EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/04/22 12:0 a.m.10 views

CVE-2024-31666

An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via a crafted script to the editaddonpost.php component...

7.8AI score0.01711EPSS
Exploits1References1
OSV
OSV
added 2024/04/22 12:0 a.m.9 views

CVE-2024-31666

An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via a crafted script to the editaddonpost.php component...

9.8CVSS7.8AI score0.01711EPSS
Exploits1References3
NVD
NVD
added 2024/03/18 4:15 a.m.33 views

CVE-2024-27757

flusity CMS through 2.45 allows tools/addonsmodel.php Gallery Name XSS. The reporter indicates that this product "ceased its development as of February 2024."...

6.1CVSS6.6AI score0.00417EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/03/18 12:0 a.m.44 views

CVE-2024-27757

flusity CMS through 2.45 allows tools/addonsmodel.php Gallery Name XSS. The reporter indicates that this product "ceased its development as of February 2024."...

6.8AI score0.00417EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/03/18 12:0 a.m.6 views

CVE-2024-27757

flusity CMS through 2.45 allows tools/addonsmodel.php Gallery Name XSS. The reporter indicates that this product "ceased its development as of February 2024."...

7AI score0.00417EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.6 views

flusity CMS Security Vulnerability

flusity CMS is a user interaction interface solution where code can be easily changed or added. A security vulnerability exists in flusity CMS version 2.45 and earlier versions. An attacker could exploit this vulnerability to perform cross-site scripting attacks...

6.1CVSS6.2AI score0.00417EPSS
Exploits1References2
CVE
CVE
added 2024/03/18 12:0 a.m.64 views

CVE-2024-27757

Flusity CMS

6.1CVSS6.9AI score0.00417EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder