CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

43 matches found

Packet Storm•added 2026/02/02 12:0 a.m.•201 views

📄 glFusion 1.3.0 Blind SQL Injection

A critical blind SQL injection vulnerability exists in glFusion CMS version 1.3.0, affecting the Media Gallery search functionality. The vulnerability allows unauthenticated remote attackers to execute arbitrary SQL commands and potentially compromise the entire database. This issue is older...

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-31733

Malicious code in bioql PyPI...

9.1CVSS9.2AI score0.00124EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-31740

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00098EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-31747

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00316EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-32561

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00247EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-31735

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00172EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 6:54 p.m.•4 views

CVE-2021-45843

glFusion CMS v1.7.9 is affected by a reflected Cross Site Scripting XSS vulnerability. The value of the title request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. This input was echoed unmodified in the application's response...

6.1CVSS5.9AI score0.00247EPSS

RedhatCVE•added 2025/05/22 6:10 p.m.•5 views

CVE-2021-44935

glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /publichtml/comment.php. The attacker can complete the attack remotely without interaction...

9.1CVSS7AI score0.00124EPSS

NVD•added 2022/09/29 3:15 a.m.•8 views

CVE-2021-45843

glFusion CMS v1.7.9 is affected by a reflected Cross Site Scripting XSS vulnerability. The value of the title request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. This input was echoed unmodified in the application's response...

6.1CVSS0.00247EPSS

Exploits1References1

Prion•added 2022/09/29 3:15 a.m.•12 views

Cross site scripting

glFusion CMS v1.7.9 is affected by a reflected Cross Site Scripting XSS vulnerability. The value of the title request parameter is copied into the value of an HTML tag attribute which is encapsulated in double quotation marks. This input was echoed unmodified in the application's response...

5.8CVSS5.9AI score0.00247EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/09/28 12:0 a.m.•2 views

glFusion CMS 跨站脚本漏洞

glFusion CMS is a content management and publishing system. A cross-site scripting vulnerability exists in glFusion CMS version v1.7.9, which stems from being affected by reflective cross-site scripting XSS. The value of a header request parameter is copied into the value of an HTML markup...

6.1CVSS5.9AI score0.00247EPSS

Exploits1References3

CVE•added 2021/12/27 11:18 a.m.•48 views

CVE-2021-45843

CVE-2021-45843 affects glFusion CMS v1.7.9. The vulnerability is a reflected Cross Site Scripting (XSS) where the value of the title parameter is copied into an HTML attribute enclosed in double quotes and echoed unmodified in the response. Documented impact indicates potential script injection; ...

6.1CVSS5.9AI score0.00247EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2021/12/27 12:0 a.m.•3 views

PT-2021-24304 · Unknown · Glfusion Cms

Name of the Vulnerable Software and Affected Versions: glFusion CMS version 1.7.9 Description: The issue concerns a reflected Cross Site Scripting XSS vulnerability. Specifically, the value of the title request parameter is copied into an HTML tag attribute encapsulated in double quotation marks...

6.1CVSS6.2AI score0.00247EPSS

Exploits1References5

CNVD•added 2021/12/24 12:0 a.m.•15 views

GlFusion Cms Arbitrary User Registration Vulnerability

glFusion CMS is a content management and publishing system. glFusion CMS v1.7.9 is vulnerable to arbitrary user registration, which can be exploited by attackers to register using any user's email address...

5.3CVSS4.2AI score0.00172EPSS

Exploits1References1

CNVD•added 2021/12/23 12:0 a.m.•30 views

glFusion CMS Licensing Issue Vulnerability

GlFusion Cms is a content management and publishing system. glFusion CMS v1.7.9 is vulnerable to an authorization issue, which can be exploited by attackers via /publichtml/users.php...

9.8CVSS4.9AI score0.00316EPSS

Exploits1References1

OSV•added 2021/12/14 9:15 p.m.•11 views

CVE-2021-44942

glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery CSRF vulnerability in /publichtml/admin/plugins/badbehavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist...

4.3CVSS6.9AI score0.00098EPSS

Exploits1References1

NVD•added 2021/12/14 9:15 p.m.•8 views

CVE-2021-44942

glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery CSRF vulnerability in /publichtml/admin/plugins/badbehavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist...

4.3CVSS0.00098EPSS

Exploits1References1

Prion•added 2021/12/14 9:15 p.m.•9 views

Cross site request forgery (csrf)

glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery CSRF vulnerability in /publichtml/admin/plugins/badbehavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist...

4.3CVSS4.7AI score0.00098EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/12/14 8:6 p.m.•12 views

CVE-2021-44942

glFusion CMS 1.7.9 is affected by a Cross Site Request Forgery CSRF vulnerability in /publichtml/admin/plugins/badbehavior2/blacklist.php. Using the CSRF vulnerability to trick the administrator to click, an attacker can add a blacklist...

5AI score0.00098EPSS

Exploits1References1

CVE•added 2021/12/14 8:6 p.m.•37 views

CVE-2021-44942

CVE-2021-44942 affects glFusion CMS 1.7.9. The vulnerability is a Cross Site Request Forgery (CSRF) in /public_html/admin/plugins/bad_behavior2/blacklist.php that can be triggered to add entries to a blacklist when an administrator is prompted to click a link. The provided sources consistently de...

4.3CVSS4.6AI score0.00098EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by