CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

RedhatCVE•added 2026/01/07 9:33 a.m.•6 views

CVE-2019-7719

Nibbleblog 4.0.5 allows eval injection by placing PHP code in the install.php username parameter and then making a content/private/shadow.php request...

9.8CVSS7.5AI score0.01717EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-17251

Malware in sbrugna...

9.8CVSS9.5AI score0.01717EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-16103

Malware in sbrugna...

7.5CVSS7.5AI score0.00976EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 9:20 a.m.•18 views

CVE-2015-6967

Unrestricted file upload vulnerability in the My Image plugin in Nibbleblog before 4.0.5 allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in content/private/plugins/myimage/image.php...

6.5CVSS8AI score0.49308EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 6:45 a.m.•5 views

CVE-2018-16604

An issue was discovered in Nibbleblog v4.0.5. With an admin's username and password, an attacker can execute arbitrary PHP code by changing the username because the username is surrounded by double quotes e.g., "$phpinfo"...

7.2CVSS7.8AI score0.01531EPSS

Exploits1References1

CNNVD•added 2021/01/27 12:0 a.m.•1 views

Dignajar Nibbleblog Authorization Issues Vulnerability

Dignajar Nibbleblog is a Php-based blogging system by the individual developer Dignajar. A security vulnerability exists in nibbleblog v3.7.1c, which stems from the use of == instead of === for password hashes...

7.5CVSS7.1AI score0.00976EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by