Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:57 a.m.12 views

CVE-2020-12479

TeamPass 2.1.27.36 allows any authenticated TeamPass user to trigger a PHP file include vulnerability via a crafted HTTP request with sources/users.queries.php newValue directory traversal...

8.8CVSS6.6AI score0.02575EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-20771

Malware in sbrugna...

9.8CVSS9.5AI score0.01489EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-12863

Malware in sbrugna...

9.8CVSS9.5AI score0.01577EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2013-3179

Malware in sbrugna...

5.5CVSS9.3AI score0.04848EPSS
Exploits6References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-4206

Malware in sbrugna...

9.8CVSS9.3AI score0.01835EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-3286

Malware in sbrugna...

6CVSS6.4AI score0.01479EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-3746

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.03713EPSS
Exploits0References15
Vulnrichment
Vulnrichment
added 2025/07/13 10:27 p.m.7 views

CVE-2025-1735 pgsql extension does not check for errors during escaping

In PHP versions:8.1. before 8.1.33, 8.2. before 8.2.29, 8.3. before 8.3.23, 8.4. pgsql and pdopgsql escaping functions do not check if the underlying quoting functions returned errors. This could cause crashes if Postgres server rejects the string as invalid...

5.9CVSS7.2AI score0.00953EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/21 12:0 a.m.5 views

WordPress Finance Consultant Theme <= 2.8 is vulnerable to PHP Object Injection

Software Finance Consultant Type Theme Vulnerable versions = 2.8 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-32293 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID f21e6a47c3bc Credits Tran Nguyen Bao Khanh VCI - VNPT Cyber...

8.8CVSS6.8AI score0.00473EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/03/30 5:49 a.m.1529 views

CVE-2025-1736

CVE-2025-1736 affects PHP 8.1.x before 8.1.32, 8.2.x before 8.2.28, 8.3.x before 8.3.19, and 8.4.x before 8.4.5. The issue is caused by insufficient validation of end-of-line characters in user-supplied headers, which may prevent certain headers from being sent or cause headers to be misinterpret...

7.3CVSS6.2AI score0.00531EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/15 8:42 a.m.24 views

CVE-2024-4258 Video Gallery – YouTube Playlist, Channel Gallery by YotuWP <= 1.3.13 - Unauthenticated Local File Inclusion

The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the settings parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the...

9.8CVSS8.2AI score0.0077EPSS
Exploits0References3
CNVD
CNVD
added 2021/11/10 12:0 a.m.20 views

WordPress SpiderCatalog plugin SQL injection vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in WordPress SpiderCatalog plugin 1.7.3 and earlier versions, which stems...

7.2CVSS7.3AI score0.01467EPSS
Exploits2References1
exploitpack
exploitpack
added 2015/11/07 12:0 a.m.31 views

Google AdWords API PHP client library 6.2.0 - Arbitrary PHP Code Execution

Google AdWords API PHP client library 6.2.0 - Arbitrary PHP Code Execution Date: 06.11.2015 Title: Google AdWords API PHP client library = 6.2.0 Arbitrary PHP Code Execution Exploit Author: Dawid Golunski Vendor Homepage: https://developers.google.com/adwords/api/docs/clientlibraries Software Lin...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2006/11/14 12:0 a.m.27 views

minibb2-rfi.txt

Title : MiniBB Forum = 2 Remote File Include index.php Discovered By :::: ThE-LoRd-Of-CrAcKiNg MeHdi ------------------------------------------------------------------------ Sorce Code: http://www.minibb.net/download.php?file=minibb20 ----- Affected software description : Application : MiniBB For...

7.4AI score
Exploits0
Rows per page
Query Builder