Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

42 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2011-0425

Malware in sbrugna...

4.3CVSS6.4AI score0.00389EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.5 views

EUVD-2009-4107

Malware in sbrugna...

7.5CVSS6.1AI score0.04884EPSS
Exploits2References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2011-0427

Malware in sbrugna...

5CVSS6.4AI score0.0119EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2011-3748

Malware in sbrugna...

5CVSS6.4AI score0.00283EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2013-0231

Malware in sbrugna...

6.1CVSS6.1AI score0.00472EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2013-0229

Malware in sbrugna...

6.1CVSS6.1AI score0.00472EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2011-0424

Malware in sbrugna...

6.4CVSS6.4AI score0.00262EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2010-1481

Malware in sbrugna...

4.3CVSS6.1AI score0.02055EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2012-4469

Malware in sbrugna...

4.3CVSS6.4AI score0.00254EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2013-0230

Malware in sbrugna...

6.1CVSS6.1AI score0.00472EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-21429

Malicious code in bioql PyPI...

9.4CVSS6.5AI score0.7356EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/07/17 1:57 p.m.4 views

CVE-2025-34104

An authenticated remote code execution vulnerability exists in Piwik now Matomo versions prior to 3.0.3 via the plugin upload mechanism. In vulnerable versions, an authenticated user with Superuser privileges can upload and activate a malicious plugin ZIP archive, leading to arbitrary PHP code...

9.4CVSS7.4AI score0.7356EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2025/07/15 1:6 p.m.3 views

CVE-2025-34104

An authenticated remote code execution vulnerability exists in Piwik now Matomo versions prior to 3.0.3 via the plugin upload mechanism. In vulnerable versions, an authenticated user with Superuser privileges can upload and activate a malicious plugin ZIP archive, leading to arbitrary PHP code...

9.4CVSS6.6AI score0.7356EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/07/15 1:6 p.m.2 views

CVE-2025-34104 Piwik Authenticated RCE via Custom Plugin Upload

An authenticated remote code execution vulnerability exists in Piwik now Matomo versions prior to 3.0.3 via the plugin upload mechanism. In vulnerable versions, an authenticated user with Superuser privileges can upload and activate a malicious plugin ZIP archive, leading to arbitrary PHP code...

9.4CVSS8AI score0.7356EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/07/15 1:6 p.m.7 views

CVE-2025-34104 Piwik Authenticated RCE via Custom Plugin Upload

An authenticated remote code execution vulnerability exists in Piwik now Matomo versions prior to 3.0.3 via the plugin upload mechanism. In vulnerable versions, an authenticated user with Superuser privileges can upload and activate a malicious plugin ZIP archive, leading to arbitrary PHP code...

9.4CVSS0.7356EPSS
Exploits0References5
CVE
CVEadded 2025/07/15 1:6 p.m.16 views

CVE-2025-34104

CVE-2025-34104 affects Piwik (Matomo) versions prior to 3.0.3. An authenticated user with Superuser privileges can upload and activate a malicious plugin (ZIP) via the plugin upload mechanism, resulting in arbitrary PHP code execution on the underlying system. Starting with version 3.0.3, the plu...

9.4CVSS7.4AI score0.7356EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/22 12:34 p.m.7 views

CVE-2010-1453

Cross-site scripting XSS vulnerability in the Login form in Piwik 0.1.6 through 0.5.5 allows remote attackers to inject arbitrary web script or HTML via the formurl parameter...

4.3CVSS5.8AI score0.02055EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 12:8 p.m.7 views

CVE-2012-4541

Cross-site scripting XSS vulnerability in Piwik before 1.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.9AI score0.00254EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:15 a.m.4 views

CVE-2013-2633

Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters...

5CVSS6.3AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 12:42 a.m.7 views

CVE-2011-3791

Piwik 1.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/Widgetize/Widgetize.php and certain other files...

5CVSS6.5AI score0.00283EPSS
Exploits0References1
Rows per page
Query Builder