CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

NVD•added 2026/05/17 1:16 p.m.•10 views

CVE-2026-8753

A security vulnerability has been detected in kalcaddle Kodbox up to 1.64. This issue affects the function parseVideoInfo of the file /workspace/source-code/plugins/fileThumb/lib/VideoResize.class.php of the component fileThumb Plugin. The manipulation of the argument ffmpegBin leads to command...

6.5CVSS0.01409EPSS

Exploits0References4

NVD•added 2026/03/26 2:16 a.m.•3 views

CVE-2026-4831

A security flaw has been discovered in kalcaddle kodbox 1.64. Impacted is the function can of the file /workspace/source-code/app/controller/explorer/auth.class.php of the component Password-protected Share Handler. Performing a manipulation results in improper authentication. The attack is...

6.3CVSS0.00019EPSS

Exploits0References4

CVE•added 2026/02/16 2:2 p.m.•16 views

CVE-2026-2560

Affected software.�a0 kalcaddle kodbox (up to 1.64.05) and specifically the Media File Preview Plugin, vulnerable via the function run in plugins/fileThumb/lib/VideoResize.class.php. Root cause.�a0 Manipulation of the localFile argument leads to an OS command injection. Impact.�a0 Remote attacker...

6.5CVSS5.4AI score0.00371EPSS

Exploits0References5

ATTACKERKB•added 2026/01/17 9:2 p.m.•2 views

CVE-2026-1066

A vulnerability was detected in kalcaddle kodbox up to 1.61.10. This issue affects some unknown processing of the file /?explorer/index/zip of the component Compression Handler. The manipulation results in command injection. The attack may be launched remotely. The exploit is now public and may b...

6.5CVSS5.2AI score0.00063EPSS

Exploits0References4Affected Software1

RedhatCVE•added 2026/01/09 12:34 p.m.•4 views

CVE-2023-45998

kodbox 1.44 is vulnerable to Cross Site Scripting XSS. Customizing global HTML results in storing XSS...

5.4CVSS6.3AI score0.00124EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-43391

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00312EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:35 a.m.•5 views

CVE-2024-51037

An issue in kodbox v.1.52.04 and before allows a remote attacker to obtain sensitive information via the captcha feature in the password reset function...

5.3CVSS6.7AI score0.00404EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 5:24 a.m.•5 views

CVE-2023-52068

kodbox v1.43 was discovered to contain a cross-site scripting XSS vulnerability via the operation and login logs...

6.1CVSS6.2AI score0.0021EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:41 a.m.•1 views

CVE-2023-39691

An issue discovered in kodbox through 1.43 allows attackers to arbitrarily add Administrator accounts via crafted GET request...

9.8CVSS6.9AI score0.00312EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:0 a.m.•8 views

CVE-2023-3607

A vulnerability was found in kodbox 1.26. It has been declared as critical. This vulnerability affects the function Execute of the file webconsole.php.txt of the component WebConsole Plug-In. The manipulation leads to os command injection. The exploit has been disclosed to the public and may be...

8CVSS7.3AI score0.00265EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 3:41 a.m.•5 views

CVE-2023-29791

kodbox = 1.37 is vulnerable to Cross Site Scripting XSS via the debug information...

6.1CVSS6AI score0.00234EPSS

Exploits0References1

OSV•added 2024/11/15 7:15 p.m.•3 views

CVE-2024-51037

An issue in kodbox v.1.52.04 and before allows a remote attacker to obtain sensitive information via the captcha feature in the password reset function...

5.3CVSS6.9AI score0.00404EPSS

Exploits1References3