CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/01/09 12:9 p.m.•5 views

CVE-2018-18626

An issue was discovered in PHPYun V4.6. There is a vulnerability that can delete any file or directory via the "admin/index.php?m=database=del" sql parameter because delaction in admin/model/database.class.php mishandles this parameter...

7.5CVSS7AI score0.00237EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2018-10429

Malware in sbrugna...

7.5CVSS7.6AI score0.01EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-10343

Malware in sbrugna...

7.5CVSS7.6AI score0.00237EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-52655

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00469EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 7:0 a.m.•3 views

CVE-2024-54724

PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file writing and file inclusion...

9.8CVSS7.6AI score0.00469EPSS

Exploits0References1

NVD•added 2025/01/09 8:15 p.m.•12 views

CVE-2024-54724

PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file writing and file inclusion...

9.8CVSS0.00469EPSS

Exploits0References2

Vulnrichment•added 2025/01/09 12:0 a.m.•5 views

CVE-2024-54724

PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file writing and file inclusion...

7.8AI score0.00469EPSS

Exploits0References2

Cvelist•added 2025/01/09 12:0 a.m.•10 views

CVE-2024-54724

PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file writing and file inclusion...

0.00469EPSS

Exploits0References2

CVE•added 2025/01/09 12:0 a.m.•58 views

CVE-2024-54724

CVE-2024-54724 affects PHPYun prior to 7.0.2. The documented vulnerability allows code execution through backdoor‑restricted arbitrary file writing and file inclusion. Public sources indicate a high‑severity impact (CVSS v3.1: 9.8, CRITICAL, network access, no privileges required, no user interac...

9.8CVSS7.8AI score0.00469EPSS

Exploits0References2

CNVD•added 2021/05/17 12:0 a.m.•6 views

Command execution vulnerability in phpyun backend (CNVD-2021-37948)

phpyun a talent recruitment system built with PHP and MySQL databases. A command execution vulnerability exists in the backend of phpyun, which can be exploited by attackers to gain control of the server...

7.6AI score

Exploits0

CNVD•added 2019/05/30 12:0 a.m.•1 views

Arbitrary Code Execution Vulnerability in phpyun

PHP cloud talent system phpyun is an open source talent and enterprise job search recruitment, hiring solutions built using PHP and MySQL database. phpyun has an arbitrary code execution vulnerability that can be exploited by attackers to gain control of the web server...

8.2AI score

Exploits0

Positive Technologies•added 2018/10/27 12:0 a.m.•3 views

PT-2018-14591 · Phpyun · Phpyun

Name of the Vulnerable Software and Affected Versions: PHPYun version 4.6 Description: The issue allows remote attackers to read arbitrary files via directory traversal. This is possible through the function down sql action in the file /admin/model/database.class.php. The vulnerability can be...

7.5CVSS7.4AI score0.01EPSS

Exploits0References3

seebug.org•added 2014/12/26 12:0 a.m.•27 views

phpyun v3.2 (20141222) 前台注入 #5

简要描述：目测最后一发。详细说明：在member/model/blacklist.class.php中 function saveaction ifisarray$POST'buid'&&$POST'buid' $company=$this-obj-DBselectall"company","uid in".@implode',',$POST'buid'."","uid,name";//直接整合成字符串后带入查询没有经过自带的pylode处理或者 intval 和单引号导致了注入 foreach$company as $val...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by