CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-54444

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0011EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-54445

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00065EPSS

Exploits0References1

NVD•added 2023/11/03 12:15 p.m.•7 views

CVE-2023-4591

A local file inclusion vulnerability has been found in WPN-XM Serverstack affecting version 0.8.6, which would allow an unauthenticated user to perform a local file inclusion LFI via the /tools/webinterface/index.php?page parameter by sending a GET request. This vulnerability could lead to the...

9.8CVSS8AI score0.0011EPSS

Exploits0References1

OSV•added 2023/11/03 12:15 p.m.•1 views

CVE-2023-4591

9.8CVSS5.7AI score0.0011EPSS

Exploits0References1

NVD•added 2023/11/03 12:15 p.m.•12 views

CVE-2023-4592

A Cross-Site Scripting vulnerability has been detected in WPN-XM Serverstack affecting version 0.8.6. This vulnerability could allow a remote attacker to send a specially crafted JavaScript payload through the /tools/webinterface/index.php parameter and retrieve the cookie session details of an...

6.1CVSS6AI score0.00065EPSS

Exploits0References1

OSV•added 2023/11/03 12:15 p.m.•0 views

CVE-2023-4592

6.1CVSS5.7AI score

Exploits0References1

Prion•added 2023/11/03 12:15 p.m.•15 views

Cross site scripting

5.8CVSS6AI score0.00065EPSS

Exploits0References1Affected Software1

Prion•added 2023/11/03 12:15 p.m.•13 views

Remote file inclusion

7.5CVSS9.1AI score0.0011EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/11/03 11:4 a.m.•12 views

CVE-2023-4592 Improper Neutralization of Input During Web Page Generation in WPN-XM Serverstack

6.1CVSS6.2AI score0.00065EPSS

Exploits0References1

CVE•added 2023/11/03 11:4 a.m.•31 views

CVE-2023-4592

CVE-2023-4592 concerns WPN-XM Serverstack 0.8.6. The vulnerability is a Cross-Site Scripting flaw allowing a remote attacker to send a crafted JavaScript payload via the "/tools/webinterface/index.php" parameter to access an authenticated user’s cookie/session information, enabling session hijack...

6.1CVSS6AI score0.00065EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/11/03 11:4 a.m.•12 views

CVE-2023-4592 Improper Neutralization of Input During Web Page Generation in WPN-XM Serverstack

6.1CVSS6.2AI score0.00065EPSS

Exploits0References1

Cvelist•added 2023/11/03 11:1 a.m.•15 views

CVE-2023-4591 Inclusion of Functionality from Untrusted Control Sphere in WPN-XM Serverstack

7.5CVSS9.4AI score0.0011EPSS

Exploits0References1

CVE•added 2023/11/03 11:1 a.m.•38 views

CVE-2023-4591

CVE-2023-4591 affects WPN-XM Serverstack 0.8.6. A local file inclusion flaw in the /tools/webinterface/index.php?page parameter allows an unauthenticated user to load server PHP files, potentially enabling a webshell. The issue is rooted in LFI handling and is described across multiple sources as...

9.8CVSS8AI score0.0011EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/11/03 11:1 a.m.•10 views

CVE-2023-4591 Inclusion of Functionality from Untrusted Control Sphere in WPN-XM Serverstack

7.5CVSS7.2AI score0.0011EPSS

Exploits0References1

Positive Technologies•added 2023/11/03 12:0 a.m.•2 views

PT-2023-29763 · Unknown · Wpn-Xm Serverstack

Name of the Vulnerable Software and Affected Versions: WPN-XM Serverstack version 0.8.6 Description: A local file inclusion issue has been found, allowing an unauthenticated user to perform a local file inclusion via the "/tools/webinterface/index.php?page" parameter by sending a GET request. Thi...

9.8CVSS9.3AI score0.0011EPSS

Exploits0References4

CNNVD•added 2023/11/03 12:0 a.m.•2 views

WPN-XM Serverstack Cross-Site Scripting Vulnerability

WPN-XM Serverstack is a server stack from the WPN-XM organization for developing PHP on Windows. A cross-site scripting vulnerability exists in WPN-XM Serverstack version 0.8.6, which stems from the presence of a cross-site scripting vulnerability that could allow a remote attacker to send a...

6.1CVSS6.2AI score0.00065EPSS

Exploits0References2

Positive Technologies•added 2023/11/03 12:0 a.m.•1 views

PT-2023-29766 · Unknown · Wpn-Xm Serverstack

Name of the Vulnerable Software and Affected Versions: WPN-XM Serverstack version 0.8.6 Description: A Cross-Site Scripting issue has been detected in WPN-XM Serverstack. This issue could allow a remote attacker to send a specially crafted JavaScript payload through the...

6.1CVSS6.1AI score0.00065EPSS

Exploits0References4

CNNVD•added 2023/11/03 12:0 a.m.•2 views

WPN-XM Serverstack Security Vulnerability

WPN-XM Serverstack is a server stack from the WPN-XM organization for developing PHP on Windows. A security vulnerability exists in WPN-XM Serverstack version 0.8.6, which stems from the presence of a local file inclusion vulnerability that could result in loading PHP files on the server, which...

9.8CVSS6.5AI score0.0011EPSS

Exploits0References2

Exploit DB•added 2023/03/27 12:0 a.m.•174 views

WPN-XM Serverstack for Windows 0.8.6 - Multiple Vulnerabilities

Exploit Title: WPN-XM Serverstack for Windows 0.8.6 - Multiple Vulnerabilities Discovery by: Rafael Pedrero Discovery Date: 2022-02-13 Vendor Homepage: http://wpn-xm.org/ Software Link : https://github.com/WPN-XM/WPN-XM/ Tested Version: 0.8.6 Tested on: Windows 10 using XAMPP Vulnerability Type:...

7.4AI score

Exploits0

Packet Storm•added 2023/03/27 12:0 a.m.•201 views

WPN-XM Serverstack For Windows 0.8.6 XSS / LFI / Traversal

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by