Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

CNVD
CNVDadded 2021/06/29 12:0 a.m.11 views

XSS Vulnerability in Disk Enterprise LCMS

Pan Enterprise LCMS is a lightweight PHP development framework . LCMS has an XSS vulnerability that can be exploited by attackers to obtain sensitive information such as user cookies...

5.9AI score
Exploits0
CNVD
CNVDadded 2021/06/25 12:0 a.m.5 views

5UCMS suffers from SQL injection vulnerability (CNVD-2021-46910)

5UCMS is a PHP development, THINKPHP as the core, based on HMVC rules to develop suitable for small and medium-sized enterprises, companies, news, individuals, and other related industries of the web content management system. 5UCMS has a SQL injection vulnerability , attackers can use the...

7.5AI score
Exploits0
Source Incite
Source Inciteadded 2021/06/23 12:0 a.m.53 views

SRC-2021-0020 : Eclipse PHP Development Tools DBGP XML External Entity Processing Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of Eclipse PHP Development Tools. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DBG protocol. The issue results from th...

5.9AI score
Exploits0
CNVD
CNVDadded 2021/03/17 12:0 a.m.3 views

SQL injection vulnerability exists in the open-source version of the UX365 web site navigation (CNVD-2021-24439)

Youkai 365 Web site navigation open source version is based on PHP + MYSQL development and construction of open source Web site catalog management system. Uke365 Web site navigation open source version of the existence of SQL injection vulnerability . Attackers can exploit the vulnerability to...

7.8AI score
Exploits0
CNVD
CNVDadded 2021/03/15 12:0 a.m.2 views

XSS vulnerability in the open-source version of UX365 website navigation

Youkai 365 Web site navigation open source version is an open source web site based on PHP + MYSQL development and construction of category management system . Uke 365 URL navigation open source version of the existence of XSS vulnerabilities , attackers can exploit the vulnerability to obtain us...

6.1AI score
Exploits0
CNVD
CNVDadded 2020/12/04 12:0 a.m.2 views

DedeCMSV6 suffers from information leakage vulnerability

DedeCMSV6 is based on PHP 7.x development, is scalable and fully open source. An information disclosure vulnerability exists in DedeCMSV6. An attacker can exploit the vulnerability to obtain sensitive information...

6.5AI score
Exploits0
0day.today
0day.todayadded 2016/04/11 12:0 a.m.22 views

WPN-XM Serverstack 0.8.6 - Cross-Site Request Forgery

Exploit for php platform in category web applications + Credits: hyp3rlinx Vendor: =========== wpn-xm.org Product: ============================================== WPN-XM Serverstack for Windows - Version 0.8.6 WPN-XM is a free and open-source web server solution stack for professional PHP...

7.1AI score
Exploits0
myhack58
myhack58added 2015/04/23 12:0 a.m.273 views

IP. Board <= 3.4.7 SQL Injection analysis-vulnerability warning-the black bar safety net

IPB stands for Invision Power Board is a PHP Development Forum program, foreign used more widely. In its 3. 4. 7 version and the previous presence of a SQL injection vulnerability, this article to its analysis. poc link http://seclists.org/fulldisclosure/2014/Nov/20 !/ usr/bin/env python Sunday,...

8.3AI score
Exploits0
Hacker One
Hacker Oneadded 2014/06/20 12:0 a.m.83 views

Internet Bug Bounty: SPL ArrayObject/SPLObjectStorage Unserialization Type Confusion Vulnerabilities

This vulnerability was reported directly to the PHP development team. A detailed summary is available here: https://www.sektioneins.de/en/blog/14-08-27-unserialize-typeconfusion.html...

7.5CVSS7.7AI score0.48662EPSS
Exploits4
Rows per page
Query Builder