Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2025/08/10 6:14 p.m.3 views

CVE-2012-10044

MobileCartly version 1.0 contains an arbitrary file creation vulnerability in the savepage.php script. The application fails to perform authentication or authorization checks before invoking fileputcontents on attacker-controlled input. An unauthenticated attacker can exploit this flaw by sending...

10CVSS7.9AI score0.64724EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/08/08 12:0 a.m.1 views

MobileCartly 安全漏洞

MobileCartly is an m-commerce shopping cart system from MobileCartly, Inc. A security vulnerability exists in MobileCartly version 1.0, which stems from a savepage.php script that does not perform authentication or authorization checks, and could lead to arbitrary file creation and remote code...

10CVSS8AI score0.64724EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/05/22 11:6 p.m.3 views

CVE-2022-34937

Yuba u5cms v8.3.5 was discovered to contain a Cross-Site Request Forgery CSRF via the component savepage.php. This vulnerability allows attackers to execute arbitrary code...

8.8CVSS8.1AI score0.00341EPSS
Exploits1References1
NVD
NVDadded 2022/08/03 1:15 a.m.8 views

CVE-2022-34937

Yuba u5cms v8.3.5 was discovered to contain a Cross-Site Request Forgery CSRF via the component savepage.php. This vulnerability allows attackers to execute arbitrary code...

8.8CVSS0.00341EPSS
Exploits1References1
OSV
OSVadded 2022/08/03 1:15 a.m.5 views

CVE-2022-34937

Yuba u5cms v8.3.5 was discovered to contain a Cross-Site Request Forgery CSRF via the component savepage.php. This vulnerability allows attackers to execute arbitrary code...

8.8CVSS8AI score
Exploits0References1
Prion
Prionadded 2022/08/03 1:15 a.m.11 views

Cross site request forgery (csrf)

Yuba u5cms v8.3.5 was discovered to contain a Cross-Site Request Forgery CSRF via the component savepage.php. This vulnerability allows attackers to execute arbitrary code...

6.8CVSS9AI score0.00341EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2022/08/03 12:50 a.m.14 views

CVE-2022-34937

Yuba u5cms v8.3.5 was discovered to contain a Cross-Site Request Forgery CSRF via the component savepage.php. This vulnerability allows attackers to execute arbitrary code...

9.2AI score0.00341EPSS
Exploits1References1
Exploit DB
Exploit DBadded 2012/09/05 12:0 a.m.18 views

MobileCartly 1.0 - Arbitrary File Creation (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "MobileCartly 1.0...

7.4AI score
Exploits0
Metasploit
Metasploitadded 2012/09/04 7:23 p.m.11 views

MobileCartly 1.0 Arbitrary File Creation Vulnerability

This module exploits a vulnerability in MobileCartly. The savepage.php file does not do any permission checks before using fileputcontents, which allows any user to have direct control of that function to create files under the 'pages' directory by default, or anywhere else as long as the user ha...

7.2AI score
Exploits0
Rows per page
Query Builder