CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An unauthenticated arbitrary file upload vulnerability exists in Havalite CMS version 1.1.7 and possibly earlier in the upload.php script. The application fails to enforce proper file extension validation and authentication checks, allowing remote attackers to upload malicious PHP files via a...

9.3CVSS8.3AI score0.82276EPSS

Exploits0References1

NVD•added 2025/08/01 9:15 p.m.•2 views

CVE-2013-10055

9.3CVSS0.82276EPSS

Exploits0References4

Cvelist•added 2025/08/01 8:39 p.m.•6 views

CVE-2013-10055 Havalite CMS Arbitary File Upload RCE

9.3CVSS0.82276EPSS

Exploits0References4

CVE•added 2025/08/01 8:39 p.m.•16 views

CVE-2013-10055

CVE-2013-10055 affects Havalite CMS

9.3CVSS8.4AI score0.82276EPSS

Exploits0References4

Vulnrichment•added 2025/08/01 8:39 p.m.•2 views

CVE-2013-10055 Havalite CMS Arbitary File Upload RCE

9.3CVSS7.7AI score0.82276EPSS

Exploits0References4

CNNVD•added 2025/08/01 12:0 a.m.•1 views

Havalite CMS 安全漏洞

Havalite CMS is a content management system for Havalite Personal Developers. A security vulnerability exists in Havalite CMS version 1.1.7 and earlier, which stems from insufficient file upload validation and could lead to remote code execution...

9.3CVSS7.9AI score0.82276EPSS

Exploits0References5

Positive Technologies•added 2025/08/01 12:0 a.m.•2 views

PT-2025-31690 · Unknown · Lavalite Cms

Name of the Vulnerable Software and Affected Versions: Havalite CMS versions 1.1.7 and earlier Description: An unauthenticated arbitrary file upload issue exists in the upload.php script. The application does not properly validate file extensions or enforce authentication checks, allowing remote...

9.3CVSS7.5AI score0.82276EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 6:21 a.m.•3 views

CVE-2013-0161

Havalite CMS 1.1.7 has a stored XSS vulnerability...

5.4CVSS5.9AI score0.00298EPSS

Exploits1References1

NVD•added 2020/01/29 3:15 p.m.•11 views

CVE-2013-0161

Havalite CMS 1.1.7 has a stored XSS vulnerability...

5.4CVSS5.3AI score0.00298EPSS

Exploits1References1

ATTACKERKB•added 2020/01/29 3:15 p.m.•1 views

CVE-2013-0161

Havalite CMS 1.1.7 has a stored XSS vulnerability...

5.4CVSS5.4AI score0.00298EPSS

Exploits1References2Affected Software1

Prion•added 2020/01/29 3:15 p.m.•8 views

Cross site scripting

Havalite CMS 1.1.7 has a stored XSS vulnerability...

3.5CVSS6AI score0.00298EPSS

Exploits1References1Affected Software1

CVE•added 2020/01/29 2:54 p.m.•32 views

CVE-2013-0161

CVE-2013-0161 concerns Havalite CMS 1.1.7, which is affected by a stored XSS vulnerability. The available records identify the vulnerable component as the CMS itself (Havalite CMS 1.1.7) and describe the issue as a stored cross-site scripting flaw. The NVD metrics place the impact at low to mediu...

5.4CVSS5.2AI score0.00298EPSS

Exploits1References1Affected Software1

Cvelist•added 2020/01/29 2:54 p.m.•12 views

CVE-2013-0161

Havalite CMS 1.1.7 has a stored XSS vulnerability...

5.2AI score0.00298EPSS

Exploits1References1

Circl•added 2018/05/29 3:50 p.m.•1 views

CVE-2013-10055

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/havaliteuploadexec.rb 2025-10-23 21:12:57+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

9.3CVSS5.7AI score0.82276EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by