Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-19217

Malware in sbrugna...

7.2CVSS7AI score0.04331EPSS
Exploits1References2
Prion
Prionadded 2018/02/26 2:29 p.m.16 views

Design/Logic Flaw

Blue River Mura CMS before v7.0.7029 supports inline function calls with an m tag and /m end tag, without proper restrictions on file types or pathnames, which allows remote attackers to execute arbitrary code via an m$.dspinclude"../pathname/executable.jpeg"/m approach, where executable.jpeg...

6.5CVSS7.3AI score0.04331EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2018/02/26 2:0 p.m.9 views

CVE-2018-7486

Blue River Mura CMS before v7.0.7029 supports inline function calls with an m tag and /m end tag, without proper restrictions on file types or pathnames, which allows remote attackers to execute arbitrary code via an m$.dspinclude"../pathname/executable.jpeg"/m approach, where executable.jpeg...

7.4AI score0.04331EPSS
Exploits1References1
CVE
CVEadded 2018/02/26 2:0 p.m.41 views

CVE-2018-7486

Blue River Mura CMS before v7.0.7029 is affected by an arbitrary code execution vulnerability. The issue arises from supporting inline function calls using [m]...[/m] tags without proper restrictions on file types or pathnames, enabling a remote attacker to trigger code execution via an [m]$.dspi...

7.2CVSS7.3AI score0.04331EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder