Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

41 matches found

Nuclei
Nucleiadded 5 days ago17 views

HuangDou UTCMS V9 - OS Command Injection

A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipulation of the argument o leads to os command injection.The attack may be launched remotely. The...

9.8CVSS6.7AI score0.83567EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-50209

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.02657EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-27551

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00054EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-28846

Malicious code in bioql PyPI...

6.3CVSS4.8AI score0.00055EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-50210

Malicious code in bioql PyPI...

7.2CVSS5AI score0.001EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/09/12 12:20 a.m.6 views

CVE-2025-56407

A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/mysql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS7.2AI score0.00054EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/09/10 12:0 a.m.3 views

PT-2025-37051

Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version 9 Description: A critical issue exists in HuangDou UTCMS version 9 related to SQL injection. The vulnerability affects the RunSql function within the app/modules/ut-data/admin/mysql.php file. Manipulation of the sql...

8.8CVSS7.3AI score0.00054EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/09/10 12:0 a.m.5 views

CVE-2025-56407

A vulnerability has been found in HuangDou UTCMS V9 and classified as critical. This vulnerability affects the function RunSql of the file app/modules/ut-data/admin/mysql.php. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. The exploit has been...

0.00054EPSS
Exploits0References2
CVE
CVEadded 2025/09/10 12:0 a.m.12 views

CVE-2025-56407

The CVE-2025-56407 entry affects HuangDou UTCMS V9, specifically the RunSql function in app/modules/ut-data/admin/mysql.php. The root cause is manipulation of the sql argument that enables SQL injection, with remote exploitation and publicly disclosed exploit capabilities. Public sources consiste...

8.8CVSS6.8AI score0.00054EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVEadded 2025/08/30 6:21 p.m.2 views

CVE-2025-9401

A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument code leads to incorrect comparison. The attack can be executed remotely. The attack requires a hig...

6.3CVSS4.6AI score0.00055EPSS
Exploits0References1
OSV
OSVadded 2025/08/25 2:15 a.m.1 views

CVE-2025-9402

A vulnerability was found in HuangDou UTCMS 9. This issue affects some unknown processing of the file app/modules/ut-frame/admin/update.php of the component Config Handler. Performing manipulation of the argument UPDATEURL results in server-side request forgery. The attack is possible to be carri...

7.2CVSS5.4AI score
Exploits0References5
NVD
NVDadded 2025/08/25 2:15 a.m.2 views

CVE-2025-9402

A vulnerability was found in HuangDou UTCMS 9. This issue affects some unknown processing of the file app/modules/ut-frame/admin/update.php of the component Config Handler. Performing manipulation of the argument UPDATEURL results in server-side request forgery. The attack is possible to be carri...

7.2CVSS0.00074EPSS
Exploits0References5
CVE
CVEadded 2025/08/25 1:32 a.m.12 views

CVE-2025-9402

CVE-2025-9402 affects HuangDou UTCMS 9, specifically the Config Handler’s file app/modules/ut-frame/admin/update.php. Root cause: manipulation of the UPDATEURL argument enables server-side request forgery (SSRF). Impact: remote exploitation with potential compromise of affected systems; exploit p...

7.2CVSS4.8AI score0.00074EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2025/08/25 1:32 a.m.6 views

CVE-2025-9402 HuangDou UTCMS Config update.php server-side request forgery

A vulnerability was found in HuangDou UTCMS 9. This issue affects some unknown processing of the file app/modules/ut-frame/admin/update.php of the component Config Handler. Performing manipulation of the argument UPDATEURL results in server-side request forgery. The attack is possible to be carri...

5.8CVSS0.00074EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/08/25 1:32 a.m.1 views

CVE-2025-9402 HuangDou UTCMS Config update.php server-side request forgery

A vulnerability was found in HuangDou UTCMS 9. This issue affects some unknown processing of the file app/modules/ut-frame/admin/update.php of the component Config Handler. Performing manipulation of the argument UPDATEURL results in server-side request forgery. The attack is possible to be carri...

5.8CVSS7AI score0.00074EPSS
Exploits0References5
NVD
NVDadded 2025/08/25 1:15 a.m.2 views

CVE-2025-9401

A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument code leads to incorrect comparison. The attack can be executed remotely. The attack requires a hig...

6.3CVSS0.00055EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/08/25 1:2 a.m.9 views

CVE-2025-9401 HuangDou UTCMS Login login.php comparison

A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument code leads to incorrect comparison. The attack can be executed remotely. The attack requires a hig...

6.3CVSS0.00055EPSS
Exploits0References5
CVE
CVEadded 2025/08/25 1:2 a.m.12 views

CVE-2025-9401

HuangDou UTCMS 9 is affected in the Login component (file app/modules/ut-frame/admin/login.php). The issue arises from manipulation of the code parameter, causing an incorrect comparison. It is exploitable remotely with high complexity, and exploitation is publicly disclosed. No patch/version fix...

6.3CVSS7AI score0.00055EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/08/25 1:2 a.m.1 views

CVE-2025-9401 HuangDou UTCMS Login login.php comparison

A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument code leads to incorrect comparison. The attack can be executed remotely. The attack requires a hig...

6.3CVSS7AI score0.00055EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/08/25 12:0 a.m.3 views

PT-2025-34583 · Unknown · Huangdou Utcms Version 9

Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version 9 Description: A server-side request forgery issue exists due to manipulation of the UPDATEURL argument within the app/modules/ut-frame/admin/update.php file of the Config Handler component. This allows for remote...

5.8CVSS7.1AI score0.00074EPSS
Exploits0References8
Rows per page
Query Builder