CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

NVD•added 2023/03/16 1:15 a.m.•7 views

CVE-2023-26951

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Member List module...

5.4CVSS5.3AI score0.00213EPSS

Exploits0References1

NVD•added 2023/03/09 9:15 p.m.•10 views

CVE-2023-26957

onekeyadmin v1.3.9 was discovered to contain an arbitrary file delete vulnerability via the component \admin\controller\plugins...

9.1CVSS9.3AI score0.00231EPSS

Exploits1References1

Prion•added 2023/03/09 9:15 p.m.•11 views

Arbitrary file deletion

onekeyadmin v1.3.9 was discovered to contain an arbitrary file delete vulnerability via the component \admin\controller\plugins...

6.4CVSS9.2AI score0.00231EPSS

Exploits1References1Affected Software1

Prion•added 2023/03/09 1:15 a.m.•9 views

Design/Logic Flaw

onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/file/download...

5CVSS7.5AI score0.00251EPSS

Exploits1References1Affected Software1

NVD•added 2023/03/08 7:15 p.m.•8 views

CVE-2023-26956

onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/curd/code...

7.5CVSS7.6AI score0.00251EPSS

Exploits1References1

NVD•added 2023/03/08 2:15 p.m.•10 views

CVE-2023-26952

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Menu module...

5.4CVSS5.3AI score0.00198EPSS

Exploits1References1

NVD•added 2023/03/08 1:15 p.m.•6 views

CVE-2023-26950

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Title parameter under the Adding Categories module...

5.4CVSS5.3AI score0.00198EPSS

Exploits1References1

NVD•added 2023/03/07 3:15 p.m.•9 views

CVE-2023-26953

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...

4.8CVSS5AI score0.00243EPSS

Exploits1References1

NVD•added 2023/03/07 1:15 p.m.•9 views

CVE-2023-26955

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Admin Group module...

5.4CVSS5.3AI score0.00198EPSS

Exploits1References1

Prion•added 2023/03/07 1:15 p.m.•14 views

Cross site scripting

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Admin Group module...

4.9CVSS5.3AI score0.00198EPSS

Exploits1References1Affected Software1

Prion•added 2023/03/07 1:15 p.m.•17 views

Cross site scripting

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the User Group module...

4.9CVSS5.3AI score0.00198EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/03/07 12:0 a.m.•13 views

CVE-2023-26955

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Admin Group module...

5.5AI score0.00198EPSS

Exploits1References1

Cvelist•added 2023/03/07 12:0 a.m.•13 views

CVE-2023-26953

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the Add Administrator module...

5.2AI score0.00243EPSS

Exploits1References1

Cvelist•added 2023/03/07 12:0 a.m.•21 views

CVE-2023-26954

onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting XSS vulnerability via the User Group module...

5.5AI score0.00198EPSS

Exploits1References1

NVD•added 2023/03/06 9:15 p.m.•8 views

CVE-2023-26949

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

9.8CVSS9.6AI score0.0076EPSS

Exploits1References1

Prion•added 2023/03/06 9:15 p.m.•13 views

Privilege escalation

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

7.5CVSS9.5AI score0.0076EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/03/06 12:0 a.m.•4 views

CVE-2023-26949

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

8AI score0.0076EPSS

Exploits1References1

CVE•added 2023/03/06 12:0 a.m.•55 views

CVE-2023-26949

CVE-2023-26949 affects onekeyadmin v1.3.9; the arbitrary file upload flaw in /admin1/config/update allows executing arbitrary PHP code. Connected sources corroborate the issue, but no patch/version remediation details are provided in the supplied documents. Exploitation information is not fully d...

9.8CVSS9.5AI score0.0076EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/03/06 12:0 a.m.•13 views

CVE-2023-26949

An arbitrary file upload vulnerability in the component /admin1/config/update of onekeyadmin v1.3.9 allows attackers to execute arbitrary code via a crafted PHP file...

9.8AI score0.0076EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by