Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/03/27 10:21 p.m.3 views

EUVD-2026-16232

Kirby CMS has Persistent DoS via Malformed Image Upload...

6.5CVSS5.9AI score0.00018EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2026/03/26 12:0 a.m.6 views

CVE-2026-29905

Kirby CMS through 5.1.4 allows an authenticated user with 'Editor' permissions to cause a persistent Denial of Service DoS via a malformed image upload. The application fails to properly validate the return value of the PHP getimagesize function. When the system attempts to process this file for...

5.8AI score0.00018EPSS
Exploits1References3
EUVD
EUVDadded 2026/01/10 1:47 p.m.3 views

EUVD-2026-1844

The Featured Image from URL FIFU plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.3.1. This is due to insufficient validation of user-supplied URLs before passing them to the getimagesize function in the Elementor widget integration. This...

4.3CVSS5.3AI score0.00039EPSS
Exploits0References8
OSV
OSVadded 2026/01/08 11:43 a.m.2 views

BIT-LIBPHP-2025-14177 Information Leak of Memory in getimagesize

In PHP versions:8.1. before 8.1.34, 8.2. before 8.2.30, 8.3. before 8.3.29, 8.4. before 8.4.16, 8.5. before 8.5.1, the getimagesize function may leak uninitialized heap memory into the APPn segments e.g., APP1 when reading images in multi-chunk mode such as via php://filter. This occurs due to a...

7.5CVSS6.5AI score0.00025EPSS
Exploits3References2
Cvelist
Cvelistadded 2019/10/04 9:55 p.m.11 views

CVE-2019-17188

An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs...

7.1AI score0.00358EPSS
Exploits1References1
Exploit DB
Exploit DBadded 2015/03/27 12:0 a.m.32 views

Berta CMS - Arbitrary File Upload

Berta CMS is a web based content management system using PHP and local file storage. http://www.berta.me/ Due to use of a 3rd party Berta CMS website to redirect links within a phishing email brought to our attention we checked the file upload functionality of this software. We found that the fil...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2010/05/08 12:0 a.m.27 views

OpenX banner-edit.php File Upload PHP Code Execution

$Id: openxbanneredit.rb 9247 2010-05-08 03:07:51Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framewor...

6CVSS6.7AI score0.50581EPSS
Exploits3
Rows per page
Query Builder