CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

257 matches found

CVE•added 2023/05/25 1:0 p.m.•73 views

CVE-2023-2888

PHPOK 6.4.100 is affected by an unrestricted arbitrary file upload vulnerability in admin.php?c=upload&f=zip&_noCache=... remote; impact includes potential code execution via uploaded files. No patch/version fix details are provided in the connected documents; remediation status is unspecified. I...

8.8CVSS6.5AI score0.00484EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/05/25 1:0 p.m.•10 views

CVE-2023-2888 PHPOK unrestricted upload

A vulnerability, which was classified as problematic, was found in PHPOK 6.4.100. This affects an unknown part of the file /admin.php?c=upload&f=zip&noCache=0.1683794968. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The identifier VDB-229953 was...

5.8CVSS8.9AI score0.00484EPSS

Exploits1References3

CNNVD•added 2023/05/25 12:0 a.m.•1 views

PHPOK 代码问题漏洞

PHPOK is an enterprise building system that supports expansion. PHPOK version 6.4.100 suffers from an arbitrary file upload vulnerability, which stems from admin.php?c=upload&f=zip&noCache=0.1683794968 lack of valid validation of the uploaded file. An attacker can exploit this vulnerability to...

8.8CVSS7.5AI score0.00484EPSS

Exploits1References4

CNVD•added 2023/05/25 12:0 a.m.•13 views

PHPOK Code Problem Vulnerability

PHPOK is an enterprise building system that supports expansion. PHPOK 5.7.140 version of the code problem vulnerability, the vulnerability stems from the existence of a file upload vulnerability, a remote attacker can use this vulnerability through the upload of the produced zip file to run...

8.8CVSS7.4AI score0.00557EPSS

Exploits1References1

Positive Technologies•added 2023/05/25 12:0 a.m.•3 views

PT-2023-22028 · Phpok · Phpok

Name of the Vulnerable Software and Affected Versions: PHPOK version 6.4.100 Description: A problematic issue was found in PHPOK, affecting an unknown part of the file "/admin.php?c=upload&f=zip& noCache=0.1683794968". This issue leads to unrestricted upload and can be initiated remotely...

8.8CVSS7AI score0.00484EPSS

Exploits1References7

NVD•added 2023/05/11 2:15 p.m.•16 views

CVE-2022-47129

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

9.8CVSS9.9AI score0.02675EPSS

Exploits0References2

Prion•added 2023/05/11 2:15 p.m.•18 views

Remote code execution

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

7.5CVSS9.8AI score0.02675EPSS

Exploits0References2Affected Software1

NVD•added 2023/05/11 12:15 p.m.•11 views

CVE-2021-34076

File Upload vulnerability in PHPOK 5.7.140 allows remote attackers to run arbitrary code and gain escalated privileges via crafted zip file upload...

8.8CVSS8.9AI score0.00557EPSS

Exploits1References1

OSV•added 2023/05/11 12:15 p.m.•1 views

CVE-2021-34076

File Upload vulnerability in PHPOK 5.7.140 allows remote attackers to run arbitrary code and gain escalated privileges via crafted zip file upload...

8.8CVSS6AI score

Exploits0References1

Prion•added 2023/05/11 12:15 p.m.•9 views

Unrestricted file upload

File Upload vulnerability in PHPOK 5.7.140 allows remote attackers to run arbitrary code and gain escalated privileges via crafted zip file upload...

6.5CVSS8.9AI score0.00557EPSS

Exploits1References1Affected Software1

Cvelist•added 2023/05/11 12:0 a.m.•16 views

CVE-2022-47129

PHPOK v6.3 was discovered to contain a remote code execution RCE vulnerability...

10AI score0.02675EPSS

Exploits0References2

CVE•added 2023/05/11 12:0 a.m.•40 views

CVE-2021-34076

CVE-2021-34076 affects PHPOK 5.7.140. A file-upload vulnerability in PHPOK allows remote attackers to upload crafted ZIP files that execute arbitrary code with elevated privileges, as indicated by NVD metrics (CVSS v3.1: 8.8, Network, High impact to Confidentiality/Integrity/Availability). Connec...

8.8CVSS8.9AI score0.00557EPSS

Exploits1References1Affected Software1

CVE•added 2023/05/11 12:0 a.m.•56 views

CVE-2022-47129

PHPOK v6.3 is identified as affected by a remote code execution (RCE) vulnerability. The provided sources confirm an RCE impact but do not include concrete technical details about the root cause, vectors, or a verified fix. CVSS data from the initial entry indicates a high-severity, network-based...

9.8CVSS9.8AI score0.02675EPSS

Exploits0References2Affected Software1

Cvelist•added 2023/05/11 12:0 a.m.•14 views

CVE-2021-34076

File Upload vulnerability in PHPOK 5.7.140 allows remote attackers to run arbitrary code and gain escalated privileges via crafted zip file upload...

9.1AI score0.00557EPSS

Exploits1References1

CNNVD•added 2023/05/11 12:0 a.m.•1 views

PHPOK 安全漏洞

PHPOK is an enterprise website builder with extended support. A security vulnerability exists in PHPOK v6.3 that stems from the presence of a Remote Code Execution RCE vulnerability...

9.8CVSS8.6AI score0.02675EPSS

Exploits0References3

Positive Technologies•added 2023/05/11 12:0 a.m.•1 views

PT-2023-12241 · Phpok · Phpok

Name of the Vulnerable Software and Affected Versions: PHPOK version 5.7.140 Description: The issue allows remote attackers to run arbitrary code and gain escalated privileges via a crafted zip file upload. Recommendations: For PHPOK version 5.7.140, consider disabling file upload functionality...

8.8CVSS7.9AI score0.00557EPSS

Exploits1References5