CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An arbitrary file upload vulnerability in the file handling module of moziloCMS v2.0 allows attackers to bypass extension restrictions via file renaming, potentially leading to unauthorized file execution or storage of malicious content...

6.5CVSS7.2AI score0.00124EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 8:33 a.m.•0 views

CVE-2024-44872

A reflected cross-site scripting XSS vulnerability in moziloCMS v3.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

6.1CVSS6.1AI score0.00181EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 8:33 a.m.•4 views

CVE-2024-44871

An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows attackers to execute arbitrary code via uploading a crafted file...

7.2CVSS7.7AI score0.29416EPSS

Exploits4References1

RedhatCVE•added 2025/05/22 3:22 p.m.•4 views

CVE-2020-25394

A stored cross site scripting XSS vulnerability in moziloCMS 2.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "Content" parameter...

5.4CVSS5.4AI score0.00352EPSS

Exploits1

GithubExploit•added 2025/04/07 6:7 p.m.•565 views

Exploit for Unrestricted Upload of File with Dangerous Type in Mozilo Mozilocms

MoziloCMS = 3.0.1 Authenticated RCE Description This scr...

7.2CVSS7.6AI score0.29416EPSS

Exploits4

Packet Storm•added 2025/03/31 12:0 a.m.•244 views

moziloCMS 3.0 Shell Upload

moziloCMS version 3.0 suffers from a remote shell upload vulnerability. Exploit Title: MoziloCMS 3.0 - Remote Code Execution RCE Authenticated Date: 10/09/2024 Exploit Author: Secfortress https://github.com/sec-fortress Vendor Homepage: https://mozilo.de/ Software Link:...

7.2CVSS7.2AI score0.29416EPSS

Exploits4

Exploit DB•added 2025/03/27 12:0 a.m.•266 views

MoziloCMS 3.0 - Remote Code Execution (RCE)

Exploit Title: MoziloCMS 3.0 - Remote Code Execution RCE Date: 10/09/2024 Exploit Author: Secfortress https://github.com/sec-fortress Vendor Homepage: https://mozilo.de/ Software Link: https://github.com/moziloDasEinsteigerCMS/mozilo3.0/archive/refs/tags/3.0.1.zip Version: 3.0 Tested on: Debian...

7.2CVSS7AI score0.29416EPSS

Exploits4

NVD•added 2024/09/10 5:15 p.m.•17 views

CVE-2024-44871

An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows attackers to execute arbitrary code via uploading a crafted file...

7.2CVSS0.29416EPSS

Exploits4References2

OSV•added 2024/09/10 5:15 p.m.•1 views

CVE-2024-44871

An arbitrary file upload vulnerability in the component /admin/index.php of moziloCMS v3.0 allows attackers to execute arbitrary code via uploading a crafted file...

7.2CVSS6AI score0.29416EPSS

Exploits4References2

OSV•added 2024/09/10 5:15 p.m.•0 views

CVE-2024-44872

A reflected cross-site scripting XSS vulnerability in moziloCMS v3.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

6.1CVSS6AI score0.00181EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by