Lucene search
K

400 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-33492

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00657EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-51726

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00365EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.11 views

CVE-2023-51051

S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Atextauth parameter at /admin/ajax.php...

9.8CVSS8.3AI score0.00534EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 5:0 a.m.10 views

CVE-2023-51048

S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Anewsauth parameter at /admin/ajax.php...

9.8CVSS8.3AI score0.00534EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:59 a.m.11 views

CVE-2023-51049

S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Abbsauth parameter at /admin/ajax.php...

9.8CVSS8.3AI score0.00534EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:59 a.m.10 views

CVE-2023-51050

S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aproductauth parameter at /admin/ajax.php...

9.8CVSS8.3AI score0.00534EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:59 a.m.12 views

CVE-2023-51052

S-CMS v5.0 was discovered to contain a SQL injection vulnerability via the Aformauth parameter at /admin/ajax.php...

9.8CVSS8.3AI score0.00534EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:41 a.m.6 views

CVE-2023-29963

S-CMS v5.0 was discovered to contain an authenticated remote code execution RCE vulnerability via the component /admin/ajax.php...

7.2CVSS8.2AI score0.01618EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:46 a.m.9 views

CVE-2023-29962

S-CMS v5.0 was discovered to contain an arbitrary file read vulnerability...

6.5CVSS7.5AI score0.00657EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:46 a.m.13 views

CVE-2022-4377

A vulnerability was found in S-CMS 5.0 Build 20220328. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Contact Information Page. The manipulation of the argument Make a Call leads to cross site scripting. The attack can be launched...

5.4CVSS6.2AI score0.00365EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:54 p.m.8 views

CVE-2022-23336

S-CMS v5.0 was discovered to contain a SQL injection vulnerability in memberpay.php via the Oid parameter...

9.8CVSS8.3AI score0.01096EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:4 p.m.7 views

CVE-2020-19158

Cross Site Scripting XSS in S-CMS build 20191014 and earlier allows remote attackers to execute arbitrary code via the 'Site Title' parameter of the component '/data/admin//app/config/'...

5.4CVSS6.9AI score0.00713EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:29 p.m.8 views

CVE-2020-20426

S-CMS Government Station Building System v5.0 contains a cross-site scripting XSS vulnerability in /function/booksave.php...

6.1CVSS5.8AI score0.0065EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:28 p.m.7 views

CVE-2020-19954

An XML External Entity XXE vulnerability was discovered in /api/notify.php in S-CMS 3.0 which allows attackers to read arbitrary files...

7.5CVSS6.9AI score0.01203EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.11 views

CVE-2020-20698

A remote code execution RCE vulnerability in /1.com.php of S-CMS PHP v3.0 allows attackers to getshell via modification of a PHP file...

7.2CVSS7.9AI score0.0195EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:56 p.m.7 views

CVE-2020-20340

A SQL injection vulnerability in the 4.edu.php\conn\function.php component of S-CMS v1.0 allows attackers to access sensitive database information...

7.5CVSS7.7AI score0.01254EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:52 p.m.10 views

CVE-2020-20701

A stored cross site scripting XSS vulnerability in /app/config/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

4.8CVSS5.7AI score0.00579EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:47 p.m.7 views

CVE-2020-20425

S-CMS Government Station Building System v5.0 contains a cross-site scripting XSS vulnerability in the search function...

6.1CVSS5.8AI score0.0065EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:18 p.m.8 views

CVE-2020-20699

A cross site scripting XSS vulnerability in S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Copyright text box under Basic Settings...

4.8CVSS5.8AI score0.00527EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:18 p.m.7 views

CVE-2020-20700

A stored cross site scripting XSS vulnerability in /app/formadd/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box...

4.8CVSS5.7AI score0.00579EPSS
Exploits1
Rows per page
Query Builder