Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-30916

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00912EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:31 a.m.7 views

CVE-2023-27132

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product...

9.8CVSS7.1AI score0.01932EPSS
Exploits4References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:38 a.m.6 views

CVE-2019-14253

An issue was discovered in servletcontroller in the secure portal in Publisure 2.1.2. One can bypass authentication and perform a query on PHP forms within the /AdminDir folder that should be restricted...

6.5CVSS7.3AI score0.01078EPSS
Exploits2References1
CNNVD
CNNVDadded 2023/10/17 12:0 a.m.4 views

TSplus Security Vulnerabilities

TSplus is a remote access software software from TSplus. A security vulnerability exists in TSplus Remote Work version 16.0.0.0, which originates from a plaintext password placed on the var pass of the HTML source code of the secure single sign-on web portal...

9.8CVSS7.2AI score0.00912EPSS
Exploits1References2
NVD
NVDadded 2019/09/18 4:15 p.m.11 views

CVE-2019-14254

An issue was discovered in the secure portal in Publisure 2.1.2. Because SQL queries are not well sanitized, there are multiple SQL injections in userAccFunctions.php functions. Using this, an attacker can access passwords and/or grant access to the user account "user" in order to become...

9.8CVSS9.6AI score0.01482EPSS
Exploits2References1
NVD
NVDadded 2019/09/18 4:15 p.m.15 views

CVE-2019-14252

An issue was discovered in the secure portal in Publisure 2.1.2. Once successfully authenticated as an administrator, one is able to inject arbitrary PHP code by using the adminCons.php form. The code is then stored in the E:\PUBLISURE\webservice\webpages\AdminDir\Templates\ folder even if remove...

7.2CVSS7AI score0.01503EPSS
Exploits2References1
OSV
OSVadded 2019/09/18 4:15 p.m.4 views

CVE-2019-14253

An issue was discovered in servletcontroller in the secure portal in Publisure 2.1.2. One can bypass authentication and perform a query on PHP forms within the /AdminDir folder that should be restricted...

6.5CVSS5.8AI score0.01078EPSS
Exploits2References1
Cvelist
Cvelistadded 2019/09/18 3:38 p.m.20 views

CVE-2019-14254

An issue was discovered in the secure portal in Publisure 2.1.2. Because SQL queries are not well sanitized, there are multiple SQL injections in userAccFunctions.php functions. Using this, an attacker can access passwords and/or grant access to the user account "user" in order to become...

9.7AI score0.01482EPSS
Exploits2References1
CVE
CVEadded 2019/09/18 3:35 p.m.68 views

CVE-2019-14252

Publisure 2.1.2 secure portal: after admin authentication, injection of arbitrary PHP via adminCons.php is stored in E:\PUBLISURE\webservice\webpages\AdminDir\Templates\ and can be hidden even after removal, enabling persistent code execution on the server. Affected component: adminCons.php handl...

7.2CVSS7.5AI score0.01503EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder