Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

CNVD
CNVDadded 2020/01/07 12:0 a.m.1 views

Gila CMS File Unrestricted Upload Vulnerability

Gila CMS is an open source content management system CMS based on PHP and MySQL. Gila CMS 1.11.8 suffers from a file unrestricted upload vulnerability. An attacker can upload dangerous types of files to lzld/thumb?src= URI via .phar or .phtml, which can enable remote code execution...

9.1CVSS8.3AI score0.00793EPSS
Exploits1References1
OSV
OSVadded 2020/01/06 7:15 p.m.1 views

CVE-2020-5514

Gila CMS 1.11.8 allows Unrestricted Upload of a File with a Dangerous Type via .phar or .phtml to the lzld/thumb?src= URI...

9.1CVSS7.3AI score
Exploits0References1
CNVD
CNVDadded 2018/05/15 12:0 a.m.1 views

PrestaShop Attribute Wizard addon code execution vulnerability

PrestaShop is an open source e-commerce solution from PrestaShop. The program provides a variety of payment methods , SMS alerts and product image scaling and other features . Attribute Wizard addon is one of the product attribute add module . A security vulnerability exists in the...

9.8CVSS9.6AI score0.85677EPSS
Exploits1References1
OSV
OSVadded 2017/07/28 5:29 a.m.1 views

CVE-2017-11715

job/uploadfilesave.php in MetInfo through 5.3.17 blocks the .php extension but not related extensions, which might allow remote authenticated admins to execute arbitrary PHP code by uploading a .phtml file after certain actions involving admin/system/safe.php and job/cv.php...

9.8CVSS6.1AI score0.00851EPSS
Exploits1References1
Rows per page
Query Builder