Lucene search
K

38 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-12449

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00416EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12447

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00406EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/04/29 11:10 a.m.20 views

CVE-2025-3968

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS7.5AI score0.00406EPSS
Exploits1References1
NVD
NVD
added 2025/04/27 12:15 p.m.17 views

CVE-2025-3969

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-category.php of the component Edit Category Page. The manipulation of the argument categoryimage leads to unrestricted upload...

9.8CVSS0.00416EPSS
Exploits1References4
OSV
OSV
added 2025/04/27 12:15 p.m.5 views

CVE-2025-3969

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-category.php of the component Edit Category Page. The manipulation of the argument categoryimage leads to unrestricted upload...

9.8CVSS5.5AI score
Exploits0References4
Cvelist
Cvelist
added 2025/04/27 12:0 p.m.24 views

CVE-2025-3969 codeprojects News Publishing Site Dashboard Edit Category Page edit-category.php unrestricted upload

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-category.php of the component Edit Category Page. The manipulation of the argument categoryimage leads to unrestricted upload...

6.5CVSS0.00416EPSS
Exploits1References4
CVE
CVE
added 2025/04/27 12:0 p.m.70 views

CVE-2025-3969

CVE-2025-3969 concerns the Codeprojects News Publishing Site Dashboard 1.0. The vulnerability is in the Edit Category Page’s /edit-category.php where manipulating the category_image argument leads to unrestricted file uploads. This could enable remote attackers to upload arbitrary files, with pot...

9.8CVSS6.5AI score0.00416EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 p.m.8 views

CVE-2025-3969 codeprojects News Publishing Site Dashboard Edit Category Page edit-category.php unrestricted upload

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-category.php of the component Edit Category Page. The manipulation of the argument categoryimage leads to unrestricted upload...

6.5CVSS6.5AI score0.00416EPSS
Exploits1References4
OSV
OSV
added 2025/04/27 11:15 a.m.9 views

CVE-2025-3968

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS5.8AI score0.00406EPSS
Exploits1References4
NVD
NVD
added 2025/04/27 11:15 a.m.31 views

CVE-2025-3968

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS0.00406EPSS
Exploits1References4
CVE
CVE
added 2025/04/27 11:0 a.m.66 views

CVE-2025-3968

CVE-2025-3968 affects codeprojects News Publishing Site Dashboard 1.0. The vulnerability is in the file /api.php, where manipulation of the parameter cat_id enables SQL injection . Exploitation can be performed remotely and, according to multiple sources, the exploit has been disclosed publicly. ...

8.8CVSS7.8AI score0.00406EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/27 11:0 a.m.9 views

CVE-2025-3968 codeprojects News Publishing Site Dashboard api.php sql injection

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS6.9AI score0.00406EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/27 11:0 a.m.41 views

CVE-2025-3968 codeprojects News Publishing Site Dashboard api.php sql injection

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS0.00406EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.7 views

PT-2025-17996 · Unknown · Codeprojects News Publishing Site Dashboard

Name of the Vulnerable Software and Affected Versions: codeprojects News Publishing Site Dashboard version 1.0 Description: A critical issue affects the processing of the file /edit-category.php of the component "Edit Category Page". The manipulation of the argument category image leads to...

9.8CVSS6.3AI score0.00416EPSS
Exploits1References15
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.5 views

Code-Projects News Publishing Site Dashboard 代码问题漏洞

Code-Projects News Publishing Site Dashboard is an open source news publishing site dashboard from Code-Projects. A code issue vulnerability exists in version 1.0 of Code-Projects News Publishing Site Dashboard, which stems from a misbehavior of the parameter categoryimage in the file...

9.8CVSS6.4AI score0.00416EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.7 views

PT-2025-17994 · Unknown · Codeprojects News Publishing Site Dashboard

Name of the Vulnerable Software and Affected Versions: codeprojects News Publishing Site Dashboard version 1.0 Description: A critical issue has been identified, affecting the /api.php file. The manipulation of the cat id argument leads to SQL injection. This issue can be exploited remotely...

8.8CVSS6.8AI score0.00406EPSS
Exploits1References10
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

CafeLog B2 0.6.1 Weblog and News Publishing Tool b2mail.php b2inc Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/23659/info B2 is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

CafeLog B2 0.6.1 Weblog and News Publishing Tool b2archives.php b2inc Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/23659/info B2 is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

NewP News Publishing System 1.0 Class.Database.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20893/info NewP News Publishing system is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the applicatio...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/08 12:0 a.m.67 views

PHP Enter Code Injection

Exploit Title : Php Enter Php Code Injection Author : IrIsT.Ir & Sec4Ever.com Discovered By : L3b-r1'z Home : http://IrIsT.Ir & http://Sec4Ever.com P Blob : http://L3b-r1z.com/ Software Link : http://www.phpenter.net/ Security Risk : High Version : beta Tested on : win\XP Dork : allintext: "Power...

0.3AI score
Exploits0
Rows per page
Query Builder