CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2024/08/21 5:15 p.m.•19 views

CVE-2024-5762

Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Zen Cart. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

8.1CVSS8.1AI score

Exploits0References2

CVE•added 2024/08/21 4:15 p.m.•78 views

CVE-2024-5762

CVE-2024-5762 (Zen Cart) : Local File Inclusion leading to Remote Code Execution in the findPluginAdminPage function. Root cause is insufficient validation of user-supplied data before passing it to PHP include, allowing an unauthenticated attacker to execute arbitrary code on affected installati...

8.1CVSS8.5AI score0.09113EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/08/21 4:15 p.m.•22 views

CVE-2024-5762 Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability

8.1CVSS0.09113EPSS

Exploits0References2

Vulnrichment•added 2024/08/21 4:15 p.m.•22 views

CVE-2024-5762 Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability

8.1CVSS8AI score0.09113EPSS

Exploits0References2

Zero Day Initiative•added 2024/01/10 12:0 a.m.•17 views

Trend Micro Apex Central widget WFProxy Local File Inclusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex Central. Authentication is required to exploit this vulnerability. The specific flaw exists within the getObjWGFServiceApiByApiName function. The issue results from the lack of prope...

7.5CVSS7.5AI score0.03114EPSS

Exploits0References1

Zero Day Initiative•added 2023/08/21 12:0 a.m.•25 views

Advantech R-SeeNet device_status Local File Inclusion Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on affected installations of Advantech R-SeeNet. Authentication is required to exploit this vulnerability. The specific flaw exists within the devicestatus page. The issue results from the lack of proper validation of user-supplied...

8.8CVSS6.8AI score0.00088EPSS

Exploits0References1

Packet Storm•added 2014/04/23 12:0 a.m.•39 views

WD Arkeia Virtual Appliance Directory Traversal / Command Execution

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Path Traversal/Remote Code Execution product: WD Arkeia Virtual Appliance AVA vulnerable version: All Arkeia Network Backup releases ASA/APA/AVA since 7.0.3. fixed versio...

7.5CVSS0.8AI score0.05059EPSS

Exploits6

Exploit DB•added 2006/08/21 12:0 a.m.•24 views

PHProjekt Content Management Module 0.6.1 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/19628/info Multiple remote file-include vulnerabilities affect the Content Management module for PHProjekt because the application fails to properly sanitize user-supplied input before using it in a PHP 'include' function call. An attacker may leverage...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by