CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-15925

Malware in sbrugna...

5.5CVSS5.6AI score0.00505EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 4:12 p.m.•3 views

CVE-2020-23172

A vulnerability in all versions of Kuba allows attackers to overwrite arbitrary files in arbitrary directories with crafted Zip files due to improper validation of file paths in .zip archives...

5.5CVSS7AI score0.00505EPSS

Exploits1

Kitploit•added 2022/11/07 11:30 a.m.•847 views

Evilgophish - Evilginx2 + Gophish

Combination of evilginx2 and GoPhish. Credits Before I begin, I would like to say that I am in no way bashing Kuba Gretzky and his work. I thank him personally for releasing evilginx2 to the public. In fact, without his work this work would not exist. I must also thank Jordan Wright for...

7AI score

Exploits0References11

Openbugbounty•added 2022/04/27 8:45 p.m.•10 views

billig-kuba-urlaub.de Cross Site Scripting vulnerability OBB-2569669

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0

OSV•added 2021/08/10 5:15 p.m.•0 views

CVE-2020-23172

A vulnerability in all versions of Kuba allows attackers to overwrite arbitrary files in arbitrary directories with crafted Zip files due to improper validation of file paths in .zip archives...

5.5CVSS5.9AI score

Exploits0References1

NVD•added 2021/08/10 5:15 p.m.•11 views

CVE-2020-23172

A vulnerability in all versions of Kuba allows attackers to overwrite arbitrary files in arbitrary directories with crafted Zip files due to improper validation of file paths in .zip archives...

5.5CVSS0.00505EPSS

Exploits1References1

Prion•added 2021/08/10 5:15 p.m.•10 views

Input validation

A vulnerability in all versions of Kuba allows attackers to overwrite arbitrary files in arbitrary directories with crafted Zip files due to improper validation of file paths in .zip archives...

4.3CVSS5.6AI score0.00505EPSS

Exploits1References1

Cvelist•added 2021/08/10 3:6 p.m.•9 views

CVE-2020-23172

A vulnerability in all versions of Kuba allows attackers to overwrite arbitrary files in arbitrary directories with crafted Zip files due to improper validation of file paths in .zip archives...

5.6AI score0.00505EPSS

Exploits1References1

CVE•added 2021/08/10 3:6 p.m.•36 views

CVE-2020-23172

The CVE-2020-23172 entry affects Kuba and stems from improper validation of file paths in .zip archives, enabling attackers to overwrite arbitrary files in arbitrary directories by crafting Zip files. Affected software is Kuba (no vendor/version details provided in the documents). Consequences in...

5.5CVSS5.5AI score0.00505EPSS

Exploits1References1Affected Software1

CNNVD•added 2021/08/10 12:0 a.m.•2 views

Kuba 路径遍历漏洞

Kuba is a software package. Kuba suffers from a security vulnerability that allows an attacker to overwrite arbitrary files in any directory with a carefully crafted Zip file...

5.5CVSS5.9AI score0.00505EPSS

Exploits1References2

Openbugbounty•added 2020/10/18 11:26 a.m.•7 views

preiswert-kuba-urlaub.de Cross Site Scripting vulnerability OBB-1420568

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score

Exploits0

Openbugbounty•added 2020/08/18 3:14 a.m.•17 views

kuba-hilfe.de Cross Site Scripting vulnerability OBB-1263519

6.2AI score

Exploits0

NVD•added 2006/03/31 11:6 a.m.•13 views

CVE-2006-1563

Direct static code injection vulnerability in config.php in vscripts aka Kuba Kunkiewicz VBook aka VBook 2.0 allows remote administrators to execute arbitrary PHP code into the config file, which is included other VBook scripts...

7.6CVSS7.8AI score0.00667EPSS

Exploits0References6

CVE•added 2006/03/31 11:0 a.m.•44 views

CVE-2006-1563

Affected software/component: [V]Book (aka VBook) 2.0 by vscripts; vulnerable file: config.php. Root cause: Direct static code injection allows an attacker to insert arbitrary PHP code into config.php, which is subsequently included by other [V]Book scripts. Impact: Remote code execution leading t...

7.6CVSS7.8AI score0.00667EPSS

Exploits0References6Affected Software1

Prion•added 2006/03/30 11:2 a.m.•16 views

Code injection

Direct static code injection vulnerability in admin/config.php in vscripts aka Kuba Kunkiewicz VNews 1.2 allows remote authenticated administrators to execute code by inserting the code into variables that are stored in admin/config.php...

9CVSS7.3AI score0.03351EPSS

Exploits0References6Affected Software1

CVE•added 2006/03/30 11:0 a.m.•42 views

CVE-2006-1543

VNews 1.2 (vscripts) is affected by multiple SQL injection vulnerabilities. The vulnerable inputs are loginvar in admin/admin.php and the news/nom parameters in news.php, where unsanitized user input is used in SQL queries. This can allow remote attackers to execute arbitrary SQL commands. A PoC/...

7.5CVSS8.5AI score0.01836EPSS

Exploits0References8Affected Software1

CVE•added 2006/03/30 11:0 a.m.•44 views

CVE-2006-1544

CVE-2006-1544 affects VNews 1.2 (vscripts) with multiple XSS flaws in news.php, exploitable via parameters autorkomentarza and tresckomentarza. The vulnerability allows remote attackers to inject arbitrary script/HTML. Exploitation: PoC/Exploit available per eVuln documentation. Affected software...

4.3CVSS5.8AI score0.00527EPSS

Exploits0References7Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by