Lucene search
K

861 matches found

OSV
OSV
added 2025/11/18 11:15 a.m.4 views

CVE-2025-41734

An unauthenticated remote attacker can execute arbitrary php files and gain full access of the affected devices...

9.8CVSS6AI score0.00458EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/18 12:11 a.m.7 views

CVE-2025-63748

QaTraq 6.9.2 allows authenticated users to upload arbitrary files via the "Add Attachment" feature in the "Test Script" module. The application fails to restrict file types, enabling the upload of executable PHP files. Once uploaded, the file can be accessed through the "View Attachment" option,...

8.8CVSS7AI score0.00359EPSS
Exploits1References1
OSV
OSV
added 2025/11/17 4:15 p.m.6 views

CVE-2025-63748

QaTraq 6.9.2 allows authenticated users to upload arbitrary files via the "Add Attachment" feature in the "Test Script" module. The application fails to restrict file types, enabling the upload of executable PHP files. Once uploaded, the file can be accessed through the "View Attachment" option,...

8.8CVSS5.9AI score0.00359EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.10 views

CVE-2025-63748

QaTraq 6.9.2 allows authenticated users to upload arbitrary files via the "Add Attachment" feature in the "Test Script" module. The application fails to restrict file types, enabling the upload of executable PHP files. Once uploaded, the file can be accessed through the "View Attachment" option,...

0.00359EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.9 views

PT-2025-44935

Name of the Vulnerable Software and Affected Versions Elegance Menu versions prior to 2.0 Description The Elegance Menu plugin for WordPress is susceptible to Local File Inclusion in versions up to and including 1.9. An authenticated attacker with Contributor-level access or higher can exploit th...

7.5CVSS6.7AI score0.00564EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/10/21 12:0 a.m.4 views

CVE-2025-60500

QDocs Smart School Management System 7.1 allows authenticated users with roles such as "accountant" or "admin" to bypass file type restrictions in the media upload feature by abusing the alternate YouTube URL option. This logic flaw permits uploading of arbitrary PHP files, which are stored in a...

6.5AI score0.00482EPSS
Exploits1References1
CVE
CVE
added 2025/10/21 12:0 a.m.14 views

CVE-2025-60500

QDocs Smart School Management System 7.1 contains a logic flaw in the media upload feature that lets authenticated users with roles such as accountant or admin bypass file type restrictions by abusing the alternate YouTube URL option. This enables uploading arbitrary PHP files that are stored in ...

7.2CVSS6.5AI score0.00482EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/10/15 8:25 a.m.10 views

CVE-2025-11722 Category and Products Accordion Panel <= 1.0 - Authenticated (Contributor+) Local File Inclusion

The Woocommerce Category and Products Accordion Panel plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.0 via the 'categoryaccordionpanel' shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to...

7.5CVSS0.00584EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-25772

Malware in sbrugna...

6.1CVSS6.3AI score0.0081EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-2019

Malware in sbrugna...

6.8CVSS6.1AI score0.03279EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-3677

Malware in sbrugna...

5CVSS6.4AI score0.01335EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-1009

Malware in sbrugna...

4.3CVSS6.4AI score0.01685EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3777

Malware in sbrugna...

5CVSS6.4AI score0.01229EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4592

Malware in sbrugna...

6.8CVSS6.4AI score0.01202EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-4807

Malware in sbrugna...

7.5CVSS6.4AI score0.01258EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-2434

Malware in sbrugna...

5CVSS6.4AI score0.03356EPSS
Exploits0References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-6362

Malware in sbrugna...

5CVSS6.4AI score0.03254EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-3661

Malware in sbrugna...

5CVSS6.4AI score0.01335EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-4781

Malware in sbrugna...

4.3CVSS6.4AI score0.0459EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2011-3720

Malware in sbrugna...

5CVSS6.4AI score0.01618EPSS
Exploits1References5
Rows per page
Query Builder