Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:24 p.m.5 views

CVE-2018-14579

GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain sensitive information via a direct request for...

9.8CVSS7.7AI score0.00944EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-6486

Malware in sbrugna...

9.8CVSS9.5AI score0.00944EPSS
Exploits1References2
CNVD
CNVDadded 2018/07/26 12:0 a.m.1 views

Arbitrary Code Execution Vulnerability in GolemCMS

GolemCMS is a PHP-based content management system CMS. An arbitrary code execution vulnerability exists in GolemCMS version 2008-12-24 and earlier. A remote attacker can execute arbitrary PHP code or obtain sensitive information by sending a direct request to the 'Table prefix' form field in...

9.8CVSS9.8AI score0.00944EPSS
Exploits1References1
OSV
OSVadded 2018/07/24 2:29 p.m.0 views

CVE-2018-14579

GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain sensitive information via a direct request for...

9.8CVSS6.1AI score
Exploits0References1
NVD
NVDadded 2018/07/24 2:29 p.m.11 views

CVE-2018-14579

GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain sensitive information via a direct request for...

9.8CVSS9.7AI score0.00944EPSS
Exploits1References1
Prion
Prionadded 2018/07/24 2:29 p.m.9 views

Design/Logic Flaw

GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain sensitive information via a direct request for...

7.5CVSS9.5AI score0.00944EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/07/24 2:0 p.m.34 views

CVE-2018-14579

GolemCMS (before 2008-12-24) is affected. If the install/ directory remains active after installation, remote attackers can execute arbitrary PHP code by injecting code into the Database Information > Table prefix field or obtain sensitive information via a direct request to install/install.sq...

9.8CVSS9.5AI score0.00944EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2018/07/24 2:0 p.m.9 views

CVE-2018-14579

GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain sensitive information via a direct request for...

9.7AI score0.00944EPSS
Exploits1References1
Rows per page
Query Builder