CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-3216

Malware in sbrugna...

7.5CVSS6.4AI score0.00078EPSS

Exploits0References8

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2021-31710

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00191EPSS

Exploits1References1

OSV•added 2023/12/01 11:15 a.m.•11 views

CVE-2023-6449

The Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'validate' function and insufficient blocklisting on the 'wpcf7antiscriptfilename' function in versions up to, and including, 5.8.3. This makes it possible for...

7.2CVSS7.6AI score

Exploits0References5

NVD•added 2023/12/01 11:15 a.m.•15 views

CVE-2023-6449

7.2CVSS0.07142EPSS

Exploits0References5

NVD•added 2023/06/27 5:15 p.m.•7 views

CVE-2023-34098

Shopware is an open source e-commerce software. Due to an incorrect configuration in the .htaccess file, the configuration file of the Javascript could be read in production environments themes/package-lock.json. With this information, the specific Shopware version in a deployment might be...

5.3CVSS5.2AI score0.00274EPSS

Exploits0References4

Github Security Blog•added 2022/05/01 11:57 p.m.•10 views

Joomla! doesn't configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...

7.5CVSS7AI score0.00078EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/01 11:57 p.m.•5 views

GHSA-MXR8-PCPG-M23J Joomla! doesn't configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...

7.5CVSS7AI score0.00078EPSS

Exploits0References6

CNVD•added 2022/04/15 12:0 a.m.•15 views

RiteCMS arbitrary file upload vulnerability

RiteCMS is a web CMS. RiteCMS 3.1.0 and earlier contain an arbitrary file upload vulnerability that allows an authenticated attacker to upload PHP files and bypass the .htacess configuration to execute .php files in the media and files directories for remote command execution...

9CVSS4.9AI score0.24712EPSS

Exploits1References1

NVD•added 2022/04/08 12:15 p.m.•11 views

CVE-2021-46367

RiteCMS version 3.1.0 and below suffers from a remote code execution vulnerability in the admin panel. An authenticated attacker can upload a PHP file and bypass the .htacess configuration to deny execution of .php files in media and files directory by default...

9CVSS0.24712EPSS

Exploits1References4

OSV•added 2009/05/28 8:30 p.m.•1 views

DEBIAN-CVE-2009-1195

The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring 1 Options Includes, 2 Options +Includes, or 3 Options +IncludesNOEXEC in a .htaccess file, and then...

4.9CVSS8.8AI score0.00189EPSS

Exploits4References1

OSV•added 2009/05/28 8:30 p.m.•7 views

CVE-2009-1195

7.5AI score

Exploits0References48