CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

45 matches found

CNNVD•added 2026/03/16 12:0 a.m.•2 views

Unraid 路径遍历漏洞

Unraid is a set of operating systems developed by Unraid Corporation, primarily intended for individuals and small businesses. Unraid has a path traversal vulnerability; this issue stems from the lack of validation for the paths provided by users in the auth-request.php file, which may lead to pa...

7.3CVSS7.1AI score0.00824EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 7:8 p.m.•2 views

CVE-2026-31895

WeGIA is a web manager for charitable institutions. Prior to version 3.6.6, WeGIA Web gerenciador para instituições assistenciais contains a SQL injection vulnerability in html/matPat/restaurarproduto.php. The idproduto parameter from $GET is directly interpolated into SQL queries without...

8.8CVSS5.8AI score0.00045EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2026/01/09 12:24 p.m.•8 views

CVE-2018-12491

PHPOK 4.9.032 has an arbitrary file upload vulnerability in the importf function in framework/admin/moduleccontrol.php, as demonstrated by uploading a .php file within a .php.zip archive, a similar issue to CVE-2018-8944...

9.8CVSS7AI score0.00411EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:49 a.m.•4 views

CVE-2022-27064

Musical World v1 was discovered to contain an arbitrary file upload vulnerability via uploadedsongs.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...

8.8CVSS8.2AI score0.02515EPSS

Exploits3References1

RedhatCVE•added 2026/01/07 9:49 a.m.•7 views

CVE-2022-27357

Ecommerce-Website v1 was discovered to contain an arbitrary file upload vulnerability via /customerregister.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...

9.8CVSS8.2AI score0.03388EPSS

Exploits3References1