CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Vulnrichment•added 2026/01/15 3:52 p.m.•1 views

CVE-2021-47819 ProjeQtOr Project Management 9.1.4 - Remote Code Execution

ProjeQtOr Project Management 9.1.4 contains a file upload vulnerability that allows guest users to upload malicious PHP files with arbitrary code execution capabilities. Attackers can upload a PHP script through the profile attachment section and execute system commands by accessing the uploaded...

9.8CVSS7.9AI score0.00129EPSS

Exploits0References2

GithubExploit•added 2026/01/09 1:14 a.m.•213 views

Exploit for CVE-2025-45955

CVE-2025-45955 🕳️ Server-Side Request Forgery in DonWeb Ferozo...

6.8AI score

Exploits1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-20791

Malware in sbrugna...

8.8CVSS8.6AI score0.00669EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-16426

Malware in sbrugna...

9.8CVSS9.3AI score0.09321EPSS

Exploits5References5

EUVD•added 2025/06/27 12:0 a.m.•2 views

EUVD-2025-19422

PBXCoreREST/Controllers/Files/PostController.php in MikoPBX through 2024.1.114 allows uploading a PHP script to an arbitrary directory...

9.9CVSS7.2AI score0.0987EPSS

Exploits0References2

CVE•added 2025/06/27 12:0 a.m.•23 views

CVE-2025-52207

Summary: CVE-2025-52207 affects MikoPBX (MikoPBX/core) up to version 2024.1.114, where PBXCoreREST/Controllers/Files/PostController.php permits uploading a PHP script to an arbitrary directory. Impact (as stated): authenticated users can upload and execute arbitrary PHP, enabling remote code exec...

9.9CVSS7.2AI score0.0987EPSS

In wildExploits0References2

GithubExploit•added 2025/06/25 5:44 p.m.•72 views

Exploit for CVE-2025-51046

CVE-2025-51046 - Remote File Upload Vulnerability in SourceCod...

9.2AI score

Exploits1

RedhatCVE•added 2025/05/22 9:35 p.m.•8 views

CVE-2021-43617

Laravel Framework through 8.70.2 does not sufficiently block the upload of executable PHP content because Illuminate/Validation/Concerns/ValidatesAttributes.php lacks a check for .phar files, which are handled as application/x-httpd-php on systems based on Debian. NOTE: this CVE Record is for...

9.8CVSS6.9AI score0.50135EPSS

Exploits1

Saint•added 2015/06/09 12:0 a.m.•29 views

Seagate Central unauthenticated file upload

Added: 06/09/2015 Background Seagate Central is a personal cloud storage device which can be connected to a wireless router. Problem Seagate Central has no root password, allowing unauthenticated users to upload arbitrary files via PHP. This can be leveraged to execute arbitrary commands by...

8.4AI score

Exploits0

OpenVAS•added 2012/01/17 12:0 a.m.•326 views

XAMPP WebDAV PHP Upload Vulnerability

This host is running XAMPP and prone to PHP upload vulnerability. OpenVAS Vulnerability Test $Id: gbxamppwebdavphpuploadvuln.nasl 5841 2017-04-03 12:46:41Z cfi $ XAMPP WebDAV PHP Upload Vulnerability Authors: Sooraj KS Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net...

0.1AI score

Exploits0References3

exploitpack•added 2009/12/27 12:0 a.m.•19 views

PHP upload - unijimpe Arbitrary File Upload

PHP upload - unijimpe Arbitrary File Upload || || | || o,7 || . o7 || 4||| ow, : / / . |-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=| | | | /' \ /'\ /\ \ /'\ /\ \ | | /, \ /\/\L\ \ \ \ ,/\ /\ \ \ \ / | | //\ \ /' \ /\ //\ team wlhaan hacker | | // | | |...

0.5AI score

Exploits0

0day.today•added 2009/12/27 12:0 a.m.•125 views

PHP upload - (unijimpe) Remote File Upload Vulnerability

Exploit for unknown platform in category web applications ======================================================== PHP upload - unijimpe Remote File Upload Vulnerability ======================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by