Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31 matches found

EUVD
EUVDadded 2025/11/12 7:18 p.m.1 views

EUVD-2025-141940

Malicious code in goodafin-nuig-gii npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-0322

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.04201EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-46123

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01461EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-7771

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00227EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 11:4 p.m.5 views

CVE-2022-34297

Yii Yii2 Gii through 2.2.4 allows stored XSS by injecting a payload into any field...

5.4CVSS5.8AI score0.00227EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 5:37 p.m.4 views

CVE-2020-36655

Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file...

8.8CVSS8AI score0.04201EPSS
Exploits1
NVD
NVDadded 2023/10/17 10:15 p.m.9 views

CVE-2023-41630

eSST Monitoring v2.147.1 was discovered to contain a remote code execution RCE vulnerability via the Gii code generator component...

9.8CVSS9.9AI score0.01461EPSS
Exploits1References1
OSV
OSVadded 2023/10/17 10:15 p.m.1 views

CVE-2023-41630

eSST Monitoring v2.147.1 was discovered to contain a remote code execution RCE vulnerability via the Gii code generator component...

9.8CVSS7.8AI score0.01461EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2023/10/17 10:15 p.m.1 views

CVE-2023-41630

eSST Monitoring v2.147.1 was discovered to contain a remote code execution RCE vulnerability via the Gii code generator component...

9.8CVSS6.4AI score0.01461EPSS
Exploits1References2
Prion
Prionadded 2023/10/17 10:15 p.m.10 views

Remote code execution

eSST Monitoring v2.147.1 was discovered to contain a remote code execution RCE vulnerability via the Gii code generator component...

7.5CVSS9.8AI score0.01461EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/10/17 12:0 a.m.10 views

CVE-2023-41630

eSST Monitoring v2.147.1 was discovered to contain a remote code execution RCE vulnerability via the Gii code generator component...

10AI score0.01461EPSS
Exploits1References1
CVE
CVEadded 2023/10/17 12:0 a.m.31 views

CVE-2023-41630

CVE-2023-41630 affects eSST Monitoring v2.147.1, where the Gii code generator component enables a remote code execution (RCE) vulnerability. The issue is described as an RCE via Gii, with high impact on confidentiality, integrity, and availability as reflected in the CVSS 3.1 score. Public source...

9.8CVSS9.8AI score0.01461EPSS
Exploits1References1Affected Software1
CNNVD
CNNVDadded 2023/10/17 12:0 a.m.1 views

eSST Monitoring Code Injection Vulnerability

Sourceforge eSST Monitoring is an open source monitoring system from Sourceforge. A security vulnerability exists in eSST Monitoring version v2.147.1, which stems from a Remote Code Execution RCE vulnerability in the Gii code generator component...

9.8CVSS7.5AI score0.01461EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2023/10/17 12:0 a.m.11 views

CVE-2023-41630

eSST Monitoring v2.147.1 was discovered to contain a remote code execution RCE vulnerability via the Gii code generator component...

8.3AI score0.01461EPSS
Exploits1References1
OSV
OSVadded 2023/01/21 3:30 a.m.95 views

GHSA-3MPG-Q26J-83J5 Command injection in yiisoft/yii2-gii

Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file...

8.8CVSS9AI score0.04201EPSS
Exploits1References5
NVD
NVDadded 2023/01/21 1:15 a.m.11 views

CVE-2020-36655

Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file...

8.8CVSS9AI score0.04201EPSS
Exploits1References2
OSV
OSVadded 2023/01/21 1:15 a.m.15 views

CVE-2020-36655

Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file...

8.8CVSS9.1AI score
Exploits0References2
Prion
Prionadded 2023/01/21 1:15 a.m.14 views

Design/Logic Flaw

Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file...

6.5CVSS9.1AI score0.04201EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/01/21 12:0 a.m.4 views

CVE-2020-36655

Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file...

8.3AI score0.04201EPSS
Exploits1References2
CVE
CVEadded 2023/01/21 12:0 a.m.72 views

CVE-2020-36655

CVE-2020-36655 affects Yii2 Gii prior to 2.2.2. The issue lets remote attackers exploit Generator.php messageCategory to embed arbitrary PHP code into a model file, enabling remote code execution (network vector, no user interaction). Remediation: upgrade to Yii2 Gii 2.2.2 or later.

8.8CVSS8.9AI score0.04201EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder