CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-10694

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00165EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 7:39 a.m.•5 views

CVE-2024-31823

An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the removeSecondaryImage method of the Publish.php component...

8.8CVSS7.9AI score0.06188EPSS

Exploits1References1

RedhatCVE•added 2025/04/12 12:7 a.m.•11 views

CVE-2025-29150

BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...

4.3CVSS7.2AI score0.00165EPSS

Exploits1References1

Vulnrichment•added 2025/04/10 12:0 a.m.•6 views

CVE-2025-29150

BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...

4.7AI score0.00165EPSS

Exploits1References1

CVE•added 2025/04/10 12:0 a.m.•44 views

CVE-2025-29150

BlueCMS 1.6 is affected by CVE-2025-29150 via Arbitrary File Deletion caused by abuse of the id parameter in a "/publish.php?act=del" request. The issue potentially enables deletion of files, which can lead to a denial of service. The connected PT-2025-15993 entry documents the affected software/...

4.3CVSS7AI score0.00165EPSS

Exploits1References1Affected Software1

NVD•added 2024/04/29 6:15 p.m.•13 views

CVE-2024-31823

8.8CVSS7.5AI score0.06188EPSS

Exploits1References3

Cvelist•added 2024/04/29 12:0 a.m.•15 views

CVE-2024-31823

7.8AI score0.06188EPSS

Exploits1References3

CVE•added 2024/04/29 12:0 a.m.•54 views

CVE-2024-31823

CVE-2024-31823 affects Ecommerce-CodeIgniter-Bootstrap due to a code-execution flaw in the Publish.php component’s removeSecondaryImage method (commit d22b54e8915f167a135046ceb857caaf8479c4da). Remote attackers can trigger arbitrary code execution; CVSS 3.1 base score 8.8 (HIGH) with network acce...

8.8CVSS7.8AI score0.06188EPSS

Exploits1References3Affected Software1

CNNVD•added 2024/04/29 12:0 a.m.•2 views

Ecommerce-CodeIgniter-Bootstrap 安全漏洞

Ecommerce-CodeIgniter-Bootstrap is a responsive, multi-vendor, multi-language online store platform shopping cart solution. A security vulnerability exists in Ecommerce-CodeIgniter-Bootstrap, which stems from an arbitrary code execution vulnerability in the removeSecondaryImage method of the...

8.8CVSS7.8AI score0.06188EPSS

Exploits1References4

OSV•added 2021/09/10 2:15 p.m.•2 views

CVE-2021-38329

The DJ EmailPublish WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to a reflected $SERVER"PHPSELF" value in the /dj-email-publish.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.7.2...

6.1CVSS5.8AI score0.0021EPSS

Exploits1References2

CNVD•added 2020/09/10 12:0 a.m.•2 views

Ecommerce CodeIgniter Bootstrap cross-site scripting vulnerability (CNVD-2020-51506)

Bootstrap is an open source web front-end framework developed using HTML, CSS and JavaScript.CodeIgniter is an open source web framework written using the PHP language . Ecommerce-CodeIgniter-Bootstrap An XSS vulnerability exists in previous versions of...

6.1CVSS6.6AI score0.0024EPSS

Exploits0References1

Openbugbounty•added 2016/04/11 11:22 a.m.•11 views

idaniki.com XSS vulnerability

Vulnerable URL: http://www.idaniki.com/publish.php?=GR=256'"/alert/xssposed/...

6.9AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•29 views

TextPattern <= 1.19 (publish.php) Remote File Inclusion Vulnerability

No description provided by source. ---------------------------------------------------------------------------- TextPattern =g1.19 txpcfgtxpath Remote File Inclusion Vulnerability ---------------------------------------------------------------------------- Author : Zeni Susanto A.K.A Bithedz Date...

7.1AI score

Exploits0

seebug.org•added 2006/10/26 12:0 a.m.•30 views

TextPattern <= 1.19 (publish.php) Remote File Inclusion Vulnerability

No description provided by source. ----------------------------------------------------------------------------br / TextPattern =g1.19 txpcfgtxpath Remote File Inclusion Vulnerabilitybr / ----------------------------------------------------------------------------br / br / Author : Zeni Susanto...

7.1AI score

Exploits0

exploitpack•added 2006/10/25 12:0 a.m.•25 views

TextPattern 1.19 - publish.php Remote File Inclusion

TextPattern 1.19 - publish.php Remote File Inclusion ---------------------------------------------------------------------------- TextPattern =g1.19 txpcfgtxpath Remote File Inclusion Vulnerability ---------------------------------------------------------------------------- Author : Zeni Susanto...

7.5AI score

Exploits0

CVE•added 2006/06/15 10:0 a.m.•38 views

CVE-2006-3037

ST AdManager Lite (publish.php) has multiple XSS vulnerabilities disclosed, allowing remote attackers to inject arbitrary web script or HTML via the (1) title, (2) description, (3) article, (4) bio, and (5) name parameters. The description specifies the affected software/component and the vulnera...

2.6CVSS6AI score0.00346EPSS

Exploits0References4Affected Software1

Cvelist•added 2006/06/15 10:0 a.m.•11 views

CVE-2006-3037

Multiple cross-site scripting XSS vulnerabilities in publish.php in ST AdManager Lite allow remote attackers to inject arbitrary web script or HTML via the 1 title, 2 description, 3 article, 4 bio, and 5 name parameters...

5.8AI score0.00346EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by