Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

RedhatCVE
RedhatCVEadded 2026/04/27 1:22 p.m.1 views

CVE-2026-7024

A flaw has been found in rawchen sims up to 004f783b1db5ecdfad81c8fdc3b34171211112de. Affected by this issue is some unknown functionality of the file sims-master/src/web/servlet/file/DeleteFileServlet.java of the component deleteFileServlet Endpoint. Executing a manipulation of the argument...

5.5CVSS5.3AI score0.00079EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/26 6:45 a.m.28 views

CVE-2026-7024 rawchen sims deleteFileServlet Endpoint DeleteFileServlet.java path traversal

A flaw has been found in rawchen sims up to 004f783b1db5ecdfad81c8fdc3b34171211112de. Affected by this issue is some unknown functionality of the file sims-master/src/web/servlet/file/DeleteFileServlet.java of the component deleteFileServlet Endpoint. Executing a manipulation of the argument...

5.5CVSS0.00079EPSS
Exploits0References4
CVE
CVEadded 2026/04/26 6:45 a.m.9 views

CVE-2026-7024

CVE-2026-7024 affects rawchen sims up to 004f783b1db5ecdfad81c8fdc3b34171211112de, specifically the file DeleteFileServlet.java in the deleteFileServlet endpoint. A manipulation of the filename argument enables path traversal, and the issue can be exploited remotely. The exploit has been publishe...

5.5CVSS5.5AI score0.00079EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/12/29 7:0 p.m.2 views

CVE-2025-15149

A vulnerability has been found in rawchen ecms up to b59d7feaa9094234e8aa6c8c6b290621ca575ded. Affected by this vulnerability is the function updateProductServlet of the file src/servlet/product/updateProductServlet.java of the component Add New Product Page. The manipulation of the argument...

4.8CVSS2.9AI score0.00019EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/28 9:30 p.m.1 views

EUVD-2025-205524

A vulnerability has been found in rawchen ecms up to b59d7feaa9094234e8aa6c8c6b290621ca575ded. Affected by this vulnerability is the function updateProductServlet of the file src/servlet/product/updateProductServlet.java of the component Add New Product Page. The manipulation of the argument...

4.8CVSS2.8AI score0.00019EPSS
Exploits0References5
NVD
NVDadded 2025/12/28 7:15 p.m.1 views

CVE-2025-15149

A vulnerability has been found in rawchen ecms up to b59d7feaa9094234e8aa6c8c6b290621ca575ded. Affected by this vulnerability is the function updateProductServlet of the file src/servlet/product/updateProductServlet.java of the component Add New Product Page. The manipulation of the argument...

4.8CVSS0.00019EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/12/28 6:32 p.m.1 views

CVE-2025-15149 rawchen ecms Add New Product updateProductServlet.java updateProductServlet cross site scripting

A vulnerability has been found in rawchen ecms up to b59d7feaa9094234e8aa6c8c6b290621ca575ded. Affected by this vulnerability is the function updateProductServlet of the file src/servlet/product/updateProductServlet.java of the component Add New Product Page. The manipulation of the argument...

4.8CVSS2.8AI score0.00019EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/12/28 6:32 p.m.17 views

CVE-2025-15149 rawchen ecms Add New Product updateProductServlet.java updateProductServlet cross site scripting

A vulnerability has been found in rawchen ecms up to b59d7feaa9094234e8aa6c8c6b290621ca575ded. Affected by this vulnerability is the function updateProductServlet of the file src/servlet/product/updateProductServlet.java of the component Add New Product Page. The manipulation of the argument...

4.8CVSS0.00019EPSS
Exploits0References4
CVE
CVEadded 2025/12/28 6:32 p.m.6 views

CVE-2025-15149

CVE-2025-15149 affects rawchen ecms, specifically the updateProductServlet in src/servlet/product/updateProductServlet.java (Add New Product Page). The vulnerability arises from manipulating the productName parameter, enabling cross-site scripting with remote exploitation. Public exploit details ...

4.8CVSS3.2AI score0.00019EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/12/28 12:0 a.m.2 views

PT-2025-53664

Name of the Vulnerable Software and Affected Versions rawchen ecms affected versions not specified Description A cross site scripting issue exists in rawchen ecms. The updateProductServlet function within the src/servlet/product/updateProductServlet.java file, specifically related to the Add New...

4.8CVSS5.6AI score0.00019EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-43359

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00526EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-43361

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01394EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-43360

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00179EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-43358

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00331EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 12:38 a.m.5 views

CVE-2022-40034

Cross-Site Scripting XSS vulnerability found in Rawchen blog-ssm v1.0 allows attackers to execute arbitrary code via the 'notifyInfo' parameter...

5.4CVSS6.2AI score0.00331EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 12:38 a.m.3 views

CVE-2022-40035

File Upload Vulnerability found in Rawchen Blog-ssm v1.0 allowing attackers to execute arbitrary commands and gain escalated privileges via the /uploadFileList component...

8.8CVSS8AI score0.00526EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:36 p.m.2 views

CVE-2022-40036

An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component...

6.5CVSS6.2AI score0.00179EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:36 p.m.2 views

CVE-2022-40037

An issue discovered in Rawchen blog-ssm v1.0 allows remote attacker to escalate privileges and execute arbitrary commands via the component /upFile...

9.8CVSS9.7AI score0.01394EPSS
Exploits1References1
NVD
NVDadded 2023/01/26 9:16 p.m.6 views

CVE-2022-40037

An issue discovered in Rawchen blog-ssm v1.0 allows remote attacker to escalate privileges and execute arbitrary commands via the component /upFile...

9.8CVSS9.9AI score0.01394EPSS
Exploits1References1
OSV
OSVadded 2023/01/26 9:16 p.m.1 views

CVE-2022-40037

An issue discovered in Rawchen blog-ssm v1.0 allows remote attacker to escalate privileges and execute arbitrary commands via the component /upFile...

9.8CVSS6AI score
Exploits0References1
Rows per page
Query Builder