Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

70 matches found

Nuclei
Nucleiadded 2 days ago274 views

Monitorr 1.7.6m - Unauthenticated Remote Code Execution

Monitorr 1.7.6m is susceptible to a remote code execution vulnerability. Improper input validation and lack of authorization leads to arbitrary file uploads in the web application. An unauthorized attacker with web access to could upload and execute a specially crafted file, leading to remote cod...

9.8CVSS8AI score0.93921EPSS
Exploits8References5
Nuclei
Nucleiadded 2026/02/04 7:0 a.m.166 views

Monitorr Services Configuration - Arbitrary File Upload

A vulnerability was found in Monitorr 1.7.6m. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assets/php/upload.php of the component Services Configuration. The manipulation of the argument fileToUpload leads to unrestricted upload. The...

8.7AI score
Exploits7References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-20012

Malicious code in bioql PyPI...

8.1CVSS4.8AI score0.00266EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-30569

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.0197EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/07/06 11:22 a.m.5 views

CVE-2025-7060

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...

4.3CVSS4.4AI score0.00266EPSS
Exploits1References1
NVD
NVDadded 2025/07/04 11:15 a.m.4 views

CVE-2025-7060

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...

8.1CVSS0.00266EPSS
Exploits1References3
OSV
OSVadded 2025/07/04 11:15 a.m.1 views

CVE-2025-7060

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...

8.1CVSS6AI score
Exploits0References3
CVE
CVEadded 2025/07/04 11:2 a.m.20 views

CVE-2025-7060

CVE-2025-7060 concerns Monitorr up to 1.7.6m. The vulnerability affects the Installer component and specifically the file assets/config/_installation/mkdbajax.php. The issue is due to improper input validation when manipulating the datadir argument, enabling a remote attack. Documents indicate th...

8.1CVSS4.4AI score0.00266EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/07/04 11:2 a.m.3 views

CVE-2025-7060 Monitorr Installer mkdbajax.php input validation

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...

4.3CVSS4.4AI score0.00266EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/07/04 11:2 a.m.10 views

CVE-2025-7060 Monitorr Installer mkdbajax.php input validation

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...

4.3CVSS0.00266EPSS
Exploits1References3
CNNVD
CNNVDadded 2025/07/04 12:0 a.m.2 views

Monitorr 输入验证错误漏洞

Monitorr is a web front-end for Monitorr open source. It is used to display the status of any web application or service in real time. An input validation error vulnerability exists in Monitorr 1.7.6m and earlier versions, which stems from improper input validation due to incorrect manipulation o...

8.1CVSS4.6AI score0.00266EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/07/04 12:0 a.m.2 views

PT-2025-27946 · Monitorr · Monitorr

Name of the Vulnerable Software and Affected Versions: Monitorr versions up to 1.7.6m Description: A vulnerability was found in Monitorr, affecting an unknown part of the file assets/config/ installation/mkdbajax.php of the component Installer. The manipulation of the datadir argument leads to...

4.3CVSS4.3AI score0.00266EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/05/23 5:38 a.m.2 views

CVE-2023-26776

Cross Site Scripting vulnerability found in Monitorr v.1.7.6 allows a remote attacker to execute arbitrary code via the title parameter of the postreceiver-services.php file...

6.1CVSS7.3AI score0.0197EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 5:38 a.m.4 views

CVE-2023-26775

File Upload vulnerability found in Monitorr v.1.7.6 allows a remote attacker t oexecute arbitrary code via a crafted file upload to the assets/php/upload.php endpoint...

7.8CVSS7.4AI score0.10525EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 5:4 p.m.6 views

CVE-2020-28871

Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...

9.8CVSS8AI score0.93921EPSS
Exploits8
RedhatCVE
RedhatCVEadded 2025/05/22 4:36 p.m.4 views

CVE-2020-28872

An authorization bypass vulnerability in Monitorr v1.7.6m in Monitorr/assets/config/installation/register.php allows an unauthorized person to create valid credentials...

9.8CVSS6.7AI score0.00553EPSS
Exploits3
VulnCheck KEV
VulnCheck KEVadded 2024/02/10 12:0 a.m.0 views

VulnCheck KEV: CVE-2023-26775

File Upload vulnerability found in Monitorr v.1.7.6 allows a remote attacker t oexecute arbitrary code via a crafted file upload to the assets/php/upload.php endpoint...

7.8CVSS7.3AI score0.10525EPSS
Exploits0References1
OSV
OSVadded 2024/01/19 2:15 p.m.25 views

CVE-2024-0713

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-28871. Reason: This candidate is a reservation duplicate of CVE-2020-28871. Notes: All CVE users should reference CVE-2020-28871 instead of this candidate. All references and descriptions in this candidate have been...

8.6AI score
Exploits0
Prion
Prionadded 2024/01/19 2:15 p.m.18 views

Out-of-bounds

A vulnerability was found in Monitorr 1.7.6m. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assets/php/upload.php of the component Services Configuration. The manipulation of the argument fileToUpload leads to unrestricted upload. The...

5.8CVSS7AI score
Exploits7References3Affected Software1
CVE
CVEadded 2024/01/19 2:0 p.m.70 views

CVE-2024-0713

CVE-2024-0713 is rejected; reference CVE-2020-28871 and this entry does not represent an active vulnerability.

9.1AI score
Exploits7
Rows per page
Query Builder