CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-3157

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00455EPSS

Exploits1References3

Prion•added 2020/11/09 6:15 p.m.•15 views

Unrestricted file upload

An unrestricted file upload vulnerability was discovered in the Microweber 1.1.18 admin account page. An attacker can upload PHP code or any extension eg- .exe to the web server by providing image data and the image/jpeg content type with a .php extension...

7.5CVSS9.4AI score0.01299EPSS

Exploits0References2Affected Software1

Prion•added 2020/11/09 6:15 p.m.•17 views

Session fixation

Microweber 1.1.18 is affected by insufficient session expiration. When changing passwords, both sessions for when a user changes email and old sessions in any other browser or device, the session does not expire and remains active...

5.8CVSS8AI score0.01018EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/11/09 5:3 p.m.•12 views

CVE-2020-23140

8.1AI score0.01018EPSS

Exploits0References1

CVE•added 2020/11/09 5:3 p.m.•49 views

CVE-2020-23140

CVE-2020-23140 affects Microweber 1.1.18 with insufficient session expiration. According to the connected documents, when a user changes password (and email), the existing sessions on other browsers/devices do not expire and remain active, enabling potential reuse of valid sessions across devices...

8.1CVSS8AI score0.01018EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by