Lucene search
K

318 matches found

NVD
NVD
added 2026/02/18 8:18 p.m.7 views

CVE-2026-2665

A vulnerability was detected in huanzi-qch base-admin up to 57a8126bb3353a004f3c7722089e3b926ea83596. Impacted is the function Upload of the file SysFileController.java of the component JSP Parser. Performing a manipulation of the argument File results in unrestricted upload. The attack can be...

6.5CVSS0.00272EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/18 8:2 p.m.26 views

CVE-2026-2665 huanzi-qch base-admin JSP Parser SysFileController.java upload unrestricted upload

A vulnerability was detected in huanzi-qch base-admin up to 57a8126bb3353a004f3c7722089e3b926ea83596. Impacted is the function Upload of the file SysFileController.java of the component JSP Parser. Performing a manipulation of the argument File results in unrestricted upload. The attack can be...

6.5CVSS0.00272EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.5 views

Yonyou KSOA SQL injection vulnerability

Yonyou KSOA is an enterprise-level management software developed by Yonyou Corporation in China. Version 9.0 of Yonyou KSOA contains a SQL injection vulnerability, which stems from incorrect handling of the parameter “catalogid” in the file/kmc/savecatalog.jsp. This vulnerability may lead to SQL...

9.8CVSS7.2AI score0.0051EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/18 2:2 p.m.4 views

CVE-2026-1122 Yonyou KSOA HTTP GET Parameter work_info.jsp sql injection

A vulnerability was determined in Yonyou KSOA 9.0. This impacts an unknown function of the file /worksheet/workinfo.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been publicly...

7.5CVSS7.1AI score0.00414EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/11 9:39 p.m.3 views

CVE-2024-58298 Compuware iStrobe Web 20.13 Pre-Auth Remote Code Execution via File Upload

Compuware iStrobe Web 20.13 contains a pre-authentication remote code execution vulnerability that allows unauthenticated attackers to upload malicious JSP files through a path traversal in the file upload form. Attackers can exploit the 'fileName' parameter to upload a web shell and execute...

9.2CVSS8.6AI score0.00721EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/11 9:39 p.m.21 views

CVE-2024-58298 Compuware iStrobe Web 20.13 Pre-Auth Remote Code Execution via File Upload

Compuware iStrobe Web 20.13 contains a pre-authentication remote code execution vulnerability that allows unauthenticated attackers to upload malicious JSP files through a path traversal in the file upload form. Attackers can exploit the 'fileName' parameter to upload a web shell and execute...

9.2CVSS0.00721EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2025/12/11 8:15 p.m.166 views

Exploit for CVE-2020-1938

Ghostcat Scanner - CVE-2020-1938 A powerful Python exploit to...

9.8CVSS7AI score0.9927EPSS
Exploits45
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.7 views

SAP NetWeaver AS Java DoS (December 2025)

The version of SAP NetWeaver Application Server for Java detected on the remote host is affected by a denial of service vulnerability as disclosed in the SAP Security Patch Day December 2025: - SAP NetWeaver remote service for Xcelsius allows an attacker with network access and high privileges to...

7.9CVSS6.2AI score0.00394EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2025/12/03 12:0 a.m.10 views

OpenPLC ScadaBR Unrestricted Upload of File with Dangerous Type Vulnerability

OpenPLC ScadaBR contains an unrestricted upload of file with dangerous type vulnerability that allows remote authenticated users to upload and execute arbitrary JSP files via viewedit.shtm...

8.8CVSS7.5AI score0.39096EPSS
In wildExploits8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-2325

Malware in sbrugna...

4.3CVSS6.4AI score0.01704EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-4182

Malware in sbrugna...

5CVSS6.4AI score0.01812EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-4798

Malware in sbrugna...

5CVSS6.4AI score0.02142EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3149

Malware in sbrugna...

5CVSS6.4AI score0.02275EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-6463

Malware in sbrugna...

8.8CVSS8.7AI score0.02332EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4148

Malware in sbrugna...

7.5CVSS6.1AI score0.02465EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-1078

Malware in sbrugna...

4.3CVSS4.8AI score0.00886EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-0426

Malware in sbrugna...

5CVSS6.4AI score0.02096EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-2715

Malware in sbrugna...

4.3CVSS6.4AI score0.01607EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2002-0925

Malware in sbrugna...

5CVSS6.4AI score0.26849EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2002-0926

Malware in sbrugna...

5CVSS6.4AI score0.07399EPSS
Exploits1References4
Rows per page
Query Builder