CVE-2026-27502

SVXportal version 2.5 and prior contain a reflected cross-site scripting vulnerability in log.php via the search query parameter. The application embeds the unsanitized parameter value directly into an HTML input value attribute, allowing an unauthenticated remote attacker to inject and execute...

CVE-2026-27502

SVXportal version 2.5 and prior contain a reflected cross-site scripting vulnerability in log.php via the search query parameter. The application embeds the unsanitized parameter value directly into an HTML input value attribute, allowing an unauthenticated remote attacker to inject and execute...

PT-2026-21271

SVXportal version 2.5 and prior contain a reflected cross-site scripting vulnerability in log.php via the search query parameter. The application embeds the unsanitized parameter value directly into an HTML input value attribute, allowing an unauthenticated remote attacker to inject and execute...

SVXportal 安全漏洞

SVXportal is a portal website developed by Peter as an individual developer. Versions of SVXportal 2.5 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the lack of validation for the search query parameter in the log.php file, which could lead to reflection-type...

CVE-2025-11654

CVE-2025-11654 affects yousaf530 Inferno Online Clothing Store. The vulnerability is a SQL injection in an unknown function within /log.php, triggered by manipulating the cemail/password parameters. A remote attacker could exploit it; public PoCs are noted in multiple feeds, and affected versions...

EUVD-2017-4194

Malware in sbrugna...

EUVD-2021-25663

Malware in sbrugna...

EUVD-2016-3592

Malware in sbrugna...

EUVD-2017-9704

Malware in sbrugna...

EUVD-2016-1729

Malware in sbrugna...

EUVD-2007-5238

Malware in sbrugna...

EUVD-2024-53623

Malicious code in bioql PyPI...

CVE-2024-57548

CMSimple 5.16 allows the user to edit log.php file via print page...

CVE-2007-6460

Multiple cross-site scripting XSS vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by 1 log.php or 2 logerror.php, a different vulnerability than CVE-2007-6459...

Unspecified Vulnerability in CMSimple (CNVD-2026-00537)

CMSimple is a free content management system. An unspecified vulnerability exists in CMSimple, which can be exploited by an attacker to edit the log.php file via the print page...

The vulnerability of the log.php script in the CMSimple content management system allows a hacker to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the CMSimple content management system is related to incorrect restrictions on the path to the restricted catalog. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information by sending a specially crafted GET request...

CVE-2024-57548

CMSimple 5.16 allows the user to edit log.php file via print page...

CMSimple 安全漏洞

CMSimple is a free content management system from CMSimple open source. A security vulnerability exists in CMSimple version 5.16 that originates from allowing a user to edit the log.php file via the print page...

CVE-2024-57548

CMSimple 5.16 allows the user to edit log.php file via print page...

CVE-2023-4882

DOS vulnerability that could allow an attacker to register a new VNF Virtual Network Function value. This action could trigger the argsassets function defined in the arg-log.php file, which would then execute the args-abort.c file, causing the service to crash...