Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-45519

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01712EPSS
Exploits1References1
OSV
OSVadded 2025/02/21 9:15 p.m.1 views

CVE-2025-1555

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects the function saveImage. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the publ...

9.8CVSS5.4AI score0.0004EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/02/21 9:0 p.m.4 views

CVE-2025-1555 hzmanyun Education and Training System saveImage unrestricted upload

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects the function saveImage. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the publ...

7.5CVSS7.2AI score0.0004EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/02/21 12:0 a.m.2 views

PT-2025-7529

Name of the Vulnerable Software and Affected Versions hzmanyun Education and Training System version 3.1.1 Description A critical vulnerability was found in the hzmanyun Education and Training System, affecting the saveImage function. The manipulation of the file argument leads to unrestricted...

9.8CVSS7AI score0.0004EPSS
Exploits0References11
OSV
OSVadded 2023/09/01 4:15 p.m.18 views

CVE-2023-40980

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file...

9.8CVSS8.1AI score
Exploits0References1
NVD
NVDadded 2023/09/01 4:15 p.m.14 views

CVE-2023-40980

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file...

9.8CVSS9.6AI score0.01712EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/09/01 12:0 a.m.3 views

DWSurvey Code Issue Vulnerability

DWSurvey is a questionnaire system written in Java. A security vulnerability exists in DWSurvey v.3.2.0 and earlier versions, which stems from a file upload vulnerability that allows remote attackers to execute arbitrary code via the saveimage and savveFile methods in the action/UploadAction.java...

9.8CVSS7.9AI score0.01712EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/09/01 12:0 a.m.3 views

PT-2023-27728 · Dwsurvey · Dwsurvey

Name of the Vulnerable Software and Affected Versions: DWSurvey DWSurvey-OSS versions 3.2.0 and earlier Description: The issue allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file. This enables the attacker to upload...

9.8CVSS9.6AI score0.01712EPSS
Exploits1References4
exploitpack
exploitpackadded 2007/06/12 12:0 a.m.26 views

TEC-IT TBarCode - OCX ActiveX Arbitrary File Overwrite

TEC-IT TBarCode - OCX ActiveX Arbitrary File Overwrite ----------------------------------------------------------------------------------------------------------------- TEC-IT TBarCode OCX ActiveX Control TBarCode7.ocx v. 7.0.2.3524 "SaveImage" Remote Arbitrary File Overwrite url:...

Exploits0
Rows per page
Query Builder