Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-13457

Malware in sbrugna...

7.8CVSS7.7AI score0.0085EPSS
Exploits1References2
OSV
OSV
added 2023/04/04 3:15 p.m.10 views

CVE-2020-20522

Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the registering user parameter...

6.1CVSS6.6AI score
Exploits0References1
Prion
Prion
added 2023/04/04 3:15 p.m.16 views

Cross site scripting

Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the comment parameter...

5.8CVSS6.4AI score0.00565EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2021/09/13 10:15 p.m.21 views

CVE-2020-20672

An arbitrary file upload vulnerability in /admin/upload/uploadfile of KiteCMS V1.1 allows attackers to getshell via a crafted PHP file...

7.8CVSS0.0085EPSS
Exploits1References1
OSV
OSV
added 2021/09/13 10:15 p.m.10 views

CVE-2020-20671

A cross-site request forgery CSRF in KiteCMS V1.1 allows attackers to arbitrarily add an administrator account...

8.8CVSS6.8AI score
Exploits0References1
OSV
OSV
added 2021/09/13 10:15 p.m.11 views

CVE-2020-20672

An arbitrary file upload vulnerability in /admin/upload/uploadfile of KiteCMS V1.1 allows attackers to getshell via a crafted PHP file...

7.8CVSS6.9AI score
Exploits0References1
Prion
Prion
added 2021/09/13 10:15 p.m.15 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF in KiteCMS V1.1 allows attackers to arbitrarily add an administrator account...

6.8CVSS8.6AI score0.00537EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/09/13 9:13 p.m.38 views

CVE-2020-20672

KiteCMS v1.1 contains an arbitrary file upload vulnerability in /admin/upload/uploadfile that allows an attacker to getshell by uploading a crafted PHP file. Multiple sources (NVD/CVE, CNVD, Red Hat advisories, OSV, CVE lists) corroborate the flaw as an arbitrary file upload in KiteCMS with impac...

7.8CVSS7.5AI score0.0085EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/09/13 9:13 p.m.41 views

CVE-2020-20671

CVE-2020-20671 describes a cross-site request forgery (CSRF) in KiteCMS v1.1 that allows an attacker to arbitrarily add an administrator account. The connected records confirm the affected product/version and the attack class, but do not provide technical details beyond the CSRF vulnerability and...

8.8CVSS8.7AI score0.00537EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/09/13 9:13 p.m.22 views

CVE-2020-20671

A cross-site request forgery CSRF in KiteCMS V1.1 allows attackers to arbitrarily add an administrator account...

8.7AI score0.00537EPSS
Exploits1References1
Rows per page
Query Builder