CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

118 matches found

Osclass Security Advisory 3.4.1 - Local File Inclusion

A directory traversal vulnerability in OSClass before 3.4.2 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter in a render action to oc-admin/index.php. id: CVE-2014-6308 info: name: Osclass Security Advisory 3.4.1 - Local File Inclusion author: daffainfo...

5CVSS5.9AI score0.77875EPSS

Exploits6References5

Packet Storm•added 2026/02/02 12:0 a.m.•97 views

📄 glFusion 1.3.0 Blind SQL Injection

A critical blind SQL Injection vulnerability exists in glFusion CMS version 1.3.0, affecting the Media Gallery search functionality. The vulnerability allows unauthenticated remote attackers to execute arbitrary SQL commands and potentially compromise the entire database. This is older research...

5CVSS6.3AI score0.77875EPSS

Exploits6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-6165

Malware in sbrugna...

4.3CVSS6.1AI score0.004EPSS

Exploits2References6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2012-5086

Malware in sbrugna...

4.3CVSS6.4AI score0.00396EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2012-5085

Malware in sbrugna...

6.5CVSS6.4AI score0.00448EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-6398

Malware in sbrugna...

6.1CVSS6.3AI score0.00234EPSS

Exploits3References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-7933

Malware in sbrugna...

7.5CVSS6.3AI score0.02119EPSS

Exploits2References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2012-0996

Malware in sbrugna...

7.5CVSS6.4AI score0.02506EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-7932

Malware in sbrugna...

7.5CVSS6.3AI score0.00605EPSS

Exploits2References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-1745

Malware in sbrugna...

7.2CVSS7AI score0.00831EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-7934

Malware in sbrugna...

6.8CVSS6.3AI score0.01042EPSS

Exploits2References8

RedhatCVE•added 2025/05/23 9:38 a.m.•2 views

CVE-2024-27515

Osclass 5.1.2 is vulnerable to SQL Injection...

7.2CVSS7.5AI score0.00086EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 12:2 p.m.•3 views

CVE-2012-0973

Multiple SQL injection vulnerabilities in OSClass before 2.3.5 allow remote attackers to execute arbitrary SQL commands via the sCategory parameter to index.php, which is not properly handled by the 1 oscsearchcategoryid function in oc-includes/osclass/helpers/hSearch.php and 2 findBySlug functio...

7.5CVSS8.9AI score0.02506EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:50 a.m.•4 views

CVE-2016-10751

osClass 3.6.1 allows oc-admin/plugins.php Directory Traversal via the plugin parameter. This is exploitable for remote PHP code execution because an administrator can upload an image that contains PHP code in the EXIF data via index.php?page=ajax=ajaxupload...

7.2CVSS7.7AI score0.00831EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 2:40 a.m.•3 views

CVE-2012-0974

Multiple cross-site scripting XSS vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass before 2.3.5 allow remote attackers to inject arbitrary web script or HTML via the 1 sCity, 2 sPattern, 3 sPriceMax, and 4 sPriceMin parameters in a search action to...

4.3CVSS5.9AI score0.09248EPSS

Exploits1References1