Lucene search
K

93341 matches found

Cvelist
Cvelist
added 2026/03/04 4:26 p.m.34 views

CVE-2026-28697 Craft Affected by Authenticated RCE via "craft.app.fs.write()" in Twig Templates

Craft is a content management system CMS. Prior to 4.17.0-beta.1 and 5.9.0-beta.1, an authenticated administrator can achieve Remote Code Execution RCE by injecting a Server-Side Template Injection SSTI payload into Twig template fields e.g., Email Templates. By calling the craft.app.fs.write...

9.4CVSS0.01067EPSS
Exploits1References4
CVE
CVE
added 2026/03/04 4:26 p.m.296 views

CVE-2026-28697

Craft CMS (CMS, versions prior to 4.17.0-beta.1 and 5.9.0-beta.1) is affected by an authenticated-admin remote code execution (RCE) via Server-Side Template Injection (SSTI) in Twig template fields (for example, Email Templates). The underlying issue is exploitability through the craft.app.fs.wri...

9.4CVSS6.3AI score0.01067EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/03/04 4:26 p.m.3 views

CVE-2026-28697 Craft Affected by Authenticated RCE via "craft.app.fs.write()" in Twig Templates

Craft is a content management system CMS. Prior to 4.17.0-beta.1 and 5.9.0-beta.1, an authenticated administrator can achieve Remote Code Execution RCE by injecting a Server-Side Template Injection SSTI payload into Twig template fields e.g., Email Templates. By calling the craft.app.fs.write...

9.4CVSS6.2AI score0.01067EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/03/04 4:15 p.m.6 views

CVE-2026-28695

Craft is a content management system CMS. There is an authenticated admin RCE in Craft CMS 5.8.21 via Server-Side Template Injection using the create Twig function combined with a Symfony Process gadget chain. The create Twig function exposes Craft::createObject, which allows instantiation of...

8.6CVSS6AI score0.00805EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/04 4:15 p.m.3 views

CVE-2026-28695 Craft affected by authenticated RCE via Twig SSTI - create() function + Symfony Process gadget

Craft is a content management system CMS. There is an authenticated admin RCE in Craft CMS 5.8.21 via Server-Side Template Injection using the create Twig function combined with a Symfony Process gadget chain. The create Twig function exposes Craft::createObject, which allows instantiation of...

7.5CVSS6AI score0.00556EPSS
Exploits1References2
Patchstack
Patchstack
added 2026/03/04 11:42 a.m.4 views

WordPress Mounthood theme <= 1.3.2 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Mounthood versions = 1.3.2...

9.8CVSS5.8AI score0.0051EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/04 11:42 a.m.5 views

WordPress Jardi theme <= 1.7.2 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Jardi versions = 1.7.2...

9.8CVSS5.8AI score0.0051EPSS
Exploits0Affected Software1
The Hacker News
The Hacker News
added 2026/03/04 9:37 a.m.8 views

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

Cybersecurity researchers have flagged malicious Packagist PHP packages masquerading as Laravel utilities that act as a conduit for a cross-platform remote access trojan RAT that's functional on Windows, macOS, and Linux systems. The names of the packages are listed below - nhattuanbl/lara-helper...

6.4AI score
Exploits0
EUVD
EUVD
added 2026/03/04 3:31 a.m.6 views

EUVD-2026-9356

Concrete CMS below version 9.4.8 is vulnerable to Remote Code Execution by stored PHP object injection into the Express Entry List block via the columns parameter. An authenticated administrator can store attacker-controlled serialized data in block configuration fields that are later passed to...

8.9CVSS6AI score0.00605EPSS
Exploits0References3
OSV
OSV
added 2026/03/04 3:31 a.m.5 views

GHSA-GJ26-W59C-29MF Concrete CMS vulnerable to Remote Code Execution by stored PHP object injection

Concrete CMS below version 9.4.8 is vulnerable to Remote Code Execution by stored PHP object injection into the Express Entry List block via the columns parameter. An authenticated administrator can store attacker-controlled serialized data in block configuration fields that are later passed to...

8.9CVSS6AI score0.00605EPSS
Exploits0References4
NVD
NVD
added 2026/03/04 2:15 a.m.18 views

CVE-2026-3452

Concrete CMS below version 9.4.8 is vulnerable to Remote Code Execution by stored PHP object injection into the Express Entry List block via the columns parameter. An authenticated administrator can store attacker-controlled serialized data in block configuration fields that are later passed to...

8.9CVSS0.00605EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.7 views

CVE-2026-26892

Sourcecodester Logistic Hub Parcel's Management System v1.0 is vulnerable to SQL Injection in /managecarrier.php...

7.2CVSS6AI score0.00268EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:56 a.m.6 views

CVE-2025-50190

Chamilo is a learning management system. Prior to version 1.11.30, there is an error-based SQL Injection via the GET openid.assochandle parameter with the /index.php script. This issue has been patched in version 1.11.30...

9.8CVSS5.9AI score0.00587EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:56 a.m.5 views

CVE-2026-2448

The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.33.5 via the locatetemplate function. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary fil...

8.8CVSS6.5AI score0.00888EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 1:49 a.m.12 views

CVE-2026-3452

Concrete CMS versions below 9.4.8 are vulnerable to Remote Code Execution via stored PHP object injection in the Express Entry List block, using the columns parameter. An authenticated administrator can store attacker-controlled serialized data in block configuration fields that are later passed ...

8.9CVSS6AI score0.00605EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.7 views

PT-2026-22962

Ashop Shopping Cart Software contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'shop' parameter. Attackers can send GET requests to index.php with malicious 'shop' values using UNION-based SQL injection t...

8.8CVSS6AI score0.00237EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.10 views

Concrete CMS 安全漏洞

Concrete CMS is an open-source content management system designed for teams. Versions of Concrete CMS prior to 9.4.8 contained a security vulnerability. This vulnerability stemmed from PHP object injection in the columns parameter within the Express Entry List block, which could lead to remote co...

8.9CVSS6.1AI score0.00605EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2026/03/04 12:0 a.m.139 views

📄 WordPress AI Buddy 1.8.5 Shell Upload

Proof of concept exploit for a shell upload vulnerability in WordPress AI Buddy plugin versions 1.8.5 and below. This exploit is written in PHP. ============================================================================================================================================= | Title :...

9.1CVSS5.9AI score0.00413EPSS
Exploits5
Cvelist
Cvelist
added 2026/03/03 9:51 p.m.31 views

CVE-2026-24415 OpenSTAManager affected by reflected XSS in modifica_iva.php via righe parameter

OpenSTAManager is an open source management software for technical assistance and invoicing. OpenSTAManager v2.9.8 and earlier contains Reflected XSS vulnerabilities in invoice/order/contract modification modals. The application fails to properly sanitize user-supplied input from the righe GET...

5.1CVSS0.00245EPSS
Exploits3References1
CVE
CVE
added 2026/03/03 9:32 p.m.13 views

CVE-2026-3487

The CVE-2026-3487 entry concerns itsourcecode College Management System 1.0. A SQL injection flaw affects the handling of /admin/class-result.php, where manipulating the course_code argument enables remote, unauthenticated exploitation. The vulnerability is publicly exploited or publicly disclose...

7.2CVSS5.8AI score0.00351EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder