Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNVD
CNVDadded 2025/03/04 12:0 a.m.17 views

emlog file upload vulnerability (CNVD-2025-04611)

emlog is a PHP and MySQL based CMS builder. A file upload vulnerability exists in emlog version v2.5.3, which stems from a lack of validation of uploaded files by the adminplugin.php component. An attacker can exploit this vulnerability to upload malicious files and remotely execute arbitrary cod...

9.8CVSS7.3AI score0.00214EPSS
Exploits0References1
CNVD
CNVDadded 2024/05/22 12:0 a.m.8 views

Emlog Pro License Issues Vulnerability

emlog is a PHP and MySQL based CMS builder for emlog personal developers. An authorization issue vulnerability exists in Emlog Pro version 2.3.4, which stems from incorrect authentication of the parameter AuthCookie of the component Cookie Handler. An attacker can exploit this vulnerability to...

8.1CVSS6.9AI score0.00187EPSS
Exploits1References1
CNVD
CNVDadded 2023/12/18 12:0 a.m.8 views

Emlog Pro Cross-Site Scripting Vulnerability

emlog is a PHP and MySQL based CMS builder. Emlog Pro v2.1.14 version of a cross-site scripting vulnerability, the vulnerability stems from the lack of effective filtering and escaping of user-supplied data in the component /admin/article.php?activesavedraft, which can be exploited by an attacker...

6.1CVSS6.3AI score0.00216EPSS
Exploits1References1
CNVD
CNVDadded 2021/03/29 12:0 a.m.3 views

SongCMS suffers from SQL injection vulnerability (CNVD-2021-26004)

SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. SongCMS has a SQL injection vulnerability, which can be exploited by attackers to obtain...

7.8AI score
Exploits0
CNVD
CNVDadded 2021/01/27 12:0 a.m.3 views

Command Execution Vulnerability in songcms Backend

SongCMS is a PHP MySQL, ASP Access/SQL Server based development, enterprise-oriented, multi-language support, free, open source CMS to help business users to quickly build and deploy enterprise-level portals. A command execution vulnerability exists in the backend of songcms. An attacker can...

7.5AI score
Exploits0
CNVD
CNVDadded 2018/06/20 12:0 a.m.1 views

AKCMS Cross-Site Request Forgery Vulnerability (CNVD-2018-14262)

AKCMS is a lightweight content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in AKCMS version 6.1. An attacker can exploit this vulnerability to add an administrator account with the help of...

8.8CVSS8.8AI score0.00134EPSS
Exploits1References1
myhack58
myhack58added 2009/05/02 12:0 a.m.11 views

Concave Yaya news publishing system WebBasicInfo. asp administrator privileges unauthenticated vulnerability-vulnerability warning-the black bar safety net

Found by:skerwww. zerobox. org The affected version Concave Yaya news publishing system 4. 7ACC version Other version not tested Vulnerability description Concave Yaya news publishing system is an ASP program in conjunction with the ACC and MYSQL CMS system Vulnerability is the path where the...

1.6AI score
Exploits0
Rows per page
Query Builder