Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-15768

Malicious code in bioql PyPI...

9.3CVSS9.1AI score0.00301EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-15770

Malicious code in bioql PyPI...

7.1CVSS7.7AI score0.00191EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-15767

Malicious code in bioql PyPI...

10CVSS8.8AI score0.00463EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/05/21 8:23 p.m.3 views

CVE-2025-39392

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mojoomla WPAMS apartment-management allows Reflected XSS.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

7.1CVSS7.2AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:23 p.m.7 views

CVE-2025-39406

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in mojoomla WPAMS apartment-management allows PHP Local File Inclusion.This issue affects WPAMS: from n/a through = 44.0...

9.8CVSS7.2AI score0.00435EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:23 p.m.5 views

CVE-2025-39395

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla WPAMS apartment-management allows SQL Injection.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

9.3CVSS7.3AI score0.00301EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:23 p.m.6 views

CVE-2025-39403

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla WPAMS apartment-management allows SQL Injection.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

8.5CVSS7.3AI score0.00275EPSS
Exploits0References1
NVD
NVD
added 2025/05/19 8:15 p.m.15 views

CVE-2025-39401

Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS apartment-management allows Upload a Web Shell to a Web Server.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

10CVSS0.00463EPSS
Exploits2References1
NVD
NVD
added 2025/05/19 8:15 p.m.9 views

CVE-2025-39395

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla WPAMS apartment-management allows SQL Injection.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

9.3CVSS0.00301EPSS
Exploits0References1
NVD
NVD
added 2025/05/19 8:15 p.m.8 views

CVE-2025-39392

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mojoomla WPAMS apartment-management allows Reflected XSS.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

7.1CVSS0.00191EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/19 7:29 p.m.2 views

CVE-2025-39392 WordPress WPAMS plugin <= 44.0 (17-08-2023) - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in mojoomla WPAMS apartment-management allows Reflected XSS.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

7.1CVSS7.2AI score0.00191EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/19 7:26 p.m.39 views

CVE-2025-39401 WordPress WPAMS plugin <= 44.0 (17-08-2023) - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS apartment-management allows Upload a Web Shell to a Web Server.This issue affects WPAMS: from n/a through = 44.0 17-08-2023...

10CVSS0.00463EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/05/19 7:24 p.m.7 views

CVE-2025-39402 WordPress WPAMS plugin <= 44.0 (17-08-2023) - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to a Web Server.This issue affects WPAMS: from n/a through 44.0 17-08-2023...

9.9CVSS6.8AI score0.00347EPSS
Exploits0References1
NVD
NVD
added 2025/05/19 7:15 p.m.15 views

CVE-2025-39406

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in mojoomla WPAMS apartment-management allows PHP Local File Inclusion.This issue affects WPAMS: from n/a through = 44.0...

9.8CVSS0.00435EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 7:10 p.m.31 views

CVE-2025-39403

CVE-2025-39403 is an unauthenticated SQL Injection vulnerability in the WordPress WPAMS (Apartment Management System) plugin, affecting versioned releases up to 44.0 (as of 17-08-2023). The root cause is improper neutralization of special elements in SQL commands, enabling attackers to exploit th...

8.5CVSS7.3AI score0.00275EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 7:7 p.m.33 views

CVE-2025-39406

CVE-2025-39406 : WordPress WPAMS plugin prior to or at version 44.0 is affected by a Local File Inclusion due to improper control of the filename in include/require statements. The issue enables PHP Local File Inclusion and is described as enabling privilege escalation within WPAMS. Affected soft...

9.8CVSS7.2AI score0.00435EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.4 views

PT-2025-22106 · Mojoomla · Mojoomla Wpams

Name of the Vulnerable Software and Affected Versions: mojoomla WPAMS versions n/a through 44.0 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendations: Fo...

9.3CVSS9.5AI score0.00301EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.12 views

PT-2025-22107

Name of the Vulnerable Software and Affected Versions: mojoomla WPAMS versions prior to 44.0 Description: The issue allows for the unrestricted upload of files with dangerous types, enabling an attacker to upload a web shell to a web server. This can lead to further exploitation and potential...

10CVSS8.4AI score0.00463EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.4 views

PT-2025-22075 · Mojoomla · Wpams

Name of the Vulnerable Software and Affected Versions: mojoomla WPAMS versions prior to 44.0 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendations: For...

8.5CVSS9.2AI score0.00275EPSS
Exploits0References3
Rows per page
Query Builder