CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-4145

Malware in sbrugna...

8.8CVSS8.6AI score0.08723EPSS

Exploits3References7

RedhatCVE•added 2025/05/22 4:11 p.m.•5 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8CVSS7AI score0.08723EPSS

Exploits3References1

NVD•added 2020/09/17 5:15 p.m.•11 views

CVE-2020-11803

8.8CVSS0.08723EPSS

Exploits3References5

Prion•added 2020/09/17 5:15 p.m.•7 views

Input validation

6.5CVSS8.6AI score0.08723EPSS

Exploits3References5Affected Software1

Cvelist•added 2020/09/17 4:24 p.m.•10 views

CVE-2020-11803

8.8AI score0.08723EPSS

Exploits3References5

CVE•added 2020/09/17 4:24 p.m.•56 views

CVE-2020-11803

CVE-2020-11803 affects SpamTitan 7.07. The issue arises from improper sanitization of the jaction parameter on mailqueue.php, where user input is passed directly to PHP eval(), enabling server-side code evaluation after authentication. Exploitation details are documented in multiple connected sou...

8.8CVSS8.6AI score0.08723EPSS

Exploits3References5Affected Software1

Prion•added 2018/09/09 9:29 p.m.•18 views

Remote code execution

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution...

7.5CVSS9.5AI score0.9391EPSS

Exploits17References6Affected Software1

OSV•added 2018/09/09 9:29 p.m.•23 views

CVE-2018-16763

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution...

9.8CVSS7.1AI score0.9391EPSS

Exploits17References6

NVD•added 2018/09/09 9:29 p.m.•6 views

CVE-2018-16763

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution...

9.8CVSS9.6AI score0.9391EPSS

Exploits17References6

Cvelist•added 2018/09/09 9:0 p.m.•11 views

CVE-2018-16763

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution...

9.7AI score0.9391EPSS

Exploits17References6

CVE•added 2018/09/09 9:0 p.m.•294 views

CVE-2018-16763

Summary (CVE-2018-16763) : Fuel CMS version 1.4.1 is vulnerable to a pre-auth Remote Code Execution via PHP code evaluation. The flaw is triggered through unsafe handling of user-controlled data in the pages/select/ filter parameter or the preview/ data parameter, allowing arbitrary PHP execution...

9.8CVSS9.4AI score0.9391EPSS

In wildExploits17References6Affected Software1

ATTACKERKB•added 2018/09/09 12:0 a.m.•62 views

CVE-2018-16763

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution. Recent assessments: noraj at May 08, 2021 7:33pm UTC reported: Unauthenticated RCE with default config, this is critical. Assessed...

9.8CVSS4.7AI score0.9391EPSS

In wildExploits17References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by