Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7203 matches found

Exploit DB
Exploit DBadded 2020/09/21 12:0 a.m.292 views

B-swiss 3 Digital Signage System 3.6.5 - Remote Code Execution

Exploit Title: B-swiss 3 Digital Signage System 3.6.5 - Remote Code Execution Date: 2020-08-27 Exploit Author: LiquidWorm Vendor Homepage: https://www.b-swiss.com Version: = 3.6.5 CVE : N/A !/usr/bin/env python3 -- coding: utf-8 -- B-swiss 3 Digital Signage System 3.6.5 Backdoor Remote Code...

7.4AI score
Exploits0
CVE
CVEadded 2020/09/19 8:31 p.m.80 views

CVE-2020-25790

Summary: CVE-2020-25790 affects Typesetter CMS 5.x through 5.1. A ZIP upload feature allows an admin to place a PHP file inside the archive and, after extraction, execute the code, leading to arbitrary code execution. Root cause: uploaded ZIP contents can be executed via the web interface, confli...

7.2CVSS7.3AI score0.42219EPSS
Exploits3References4Affected Software1
Cvelist
Cvelistadded 2020/09/19 8:31 p.m.12 views

CVE-2020-25790

Typesetter CMS 5.x through 5.1 allows admins to upload and execute arbitrary PHP code via a .php file inside a ZIP archive. NOTE: the vendor disputes the significance of this report because "admins are considered trustworthy"; however, the behavior "contradicts our security policy" and is being...

7.4AI score0.42219EPSS
Exploits3References4
Zero Science Lab
Zero Science Labadded 2020/09/19 12:0 a.m.192 views

B-swiss 3 Digital Signage System 3.6.5 Backdoor Remote Code Execution

Summary Intelligent digital signage made easy. To go beyond the possibilities offered, b-swiss allows you to create the communication solution for your specific needs and your graphic charter. You benefit from our experience and know-how in the realization of your digital signage project...

6.2AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2020/09/19 12:0 a.m.6 views

PT-2020-16210 · Typesetter · Typesetter Cms

Name of the Vulnerable Software and Affected Versions: Typesetter CMS versions 5.x through 5.1 Description: The issue allows admins to upload and execute arbitrary PHP code via a .php file inside a ZIP archive. This behavior contradicts the security policy, and the vendor is fixing it for version...

7.2CVSS8.1AI score0.42219EPSS
Exploits3References12
NVD
NVDadded 2020/09/17 5:15 p.m.11 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8CVSS0.08723EPSS
Exploits3References5
OSV
OSVadded 2020/09/17 5:15 p.m.2 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8CVSS7.3AI score
Exploits0References5
Prion
Prionadded 2020/09/17 5:15 p.m.10 views

Input validation

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

6.5CVSS8.6AI score0.08723EPSS
Exploits3References5Affected Software1
CVE
CVEadded 2020/09/17 4:24 p.m.60 views

CVE-2020-11803

CVE-2020-11803 affects SpamTitan 7.07. The issue arises from improper sanitization of the jaction parameter on mailqueue.php, where user input is passed directly to PHP eval(), enabling server-side code evaluation after authentication. Exploitation details are documented in multiple connected sou...

8.8CVSS8.6AI score0.08723EPSS
Exploits3References5Affected Software1
Cvelist
Cvelistadded 2020/09/17 4:24 p.m.10 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8AI score0.08723EPSS
Exploits3References5
FreeBSD
FreeBSDadded 2020/09/15 12:0 a.m.25 views

tt-rss -- multiple vulnerabilities

tt-rss project reports: The cachedurl feature mishandles JavaScript inside an SVG document. imgproxy in plugins/afproxyhttp/init.php mishandles $REQUEST"url" in an error message. It does not validate all URLs before requesting them. Allows remote attackers to execute arbitrary PHP code via a...

10CVSS5.9AI score0.15535EPSS
Exploits4References2
Tenable Nessus
Tenable Nessusadded 2020/09/14 12:0 a.m.9 views

Fedora 32 : drupal8 (2020-a064e7dd38)

https://www.drupal.org/project/drupal/releases/8.9.5 - https://www.drupal.org/project/drupal/releases/8.9.4 - https://www.drupal.org/project/drupal/releases/8.9.3 - https://www.drupal.org/project/drupal/releases/8.9.2 - https://www.drupal.org/project/drupal/releases/8.9.1 - Drupal core - Critical...

6.2AI score
Exploits0References2
NVD
NVDadded 2020/09/09 4:15 p.m.18 views

CVE-2020-25213

The File Manager wp-file-manager plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload or mkfile and p...

10CVSS0.94411EPSS
Exploits13References10
OSV
OSVadded 2020/09/09 4:15 p.m.3 views

CVE-2020-25213

The File Manager wp-file-manager plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload or mkfile and p...

9.8CVSS7.8AI score0.94411EPSS
Exploits13References10
Prion
Prionadded 2020/09/09 4:15 p.m.29 views

Command injection

The File Manager wp-file-manager plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload or mkfile and p...

7.5CVSS9.9AI score0.94411EPSS
Exploits13References9Affected Software1
ATTACKERKB
ATTACKERKBadded 2020/09/09 12:0 a.m.106 views

CVE-2020-25213

The File Manager wp-file-manager plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This, for example, allows attackers to run the elFinder upload or mkfile and p...

10CVSS4.3AI score0.94411EPSS
In wildExploits13References14
Positive Technologies
Positive Technologiesadded 2020/09/09 12:0 a.m.6 views

PT-2020-6318 · WordPress · Wp File Manager

Name of the Vulnerable Software and Affected Versions: wp-file-manager plugin versions prior to 6.9 Description: The issue allows remote attackers to upload and execute arbitrary PHP code because it renames an unsafe example elFinder connector file to have the .php extension. This allows attacker...

10CVSS8.3AI score0.94411EPSS
Exploits13References23
OSV
OSVadded 2020/09/01 9:15 p.m.10 views

CVE-2020-6143

A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The password variable which is set at line 122 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this...

9.8CVSS8.2AI score
Exploits0References1
Prion
Prionadded 2020/09/01 9:15 p.m.33 views

Remote code execution

A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The username variable which is set at line 121 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this...

7.5CVSS9.9AI score0.10783EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2020/09/01 8:15 p.m.18 views

CVE-2020-6144

A remote code execution vulnerability exists in the install functionality of OS4Ed openSIS 7.4. The username variable which is set at line 121 in install/Step5.php allows for injection of PHP code into the Data.php file that it writes. An attacker can send an HTTP request to trigger this...

10CVSS10AI score0.10783EPSS
Exploits1References1
Rows per page
Query Builder