Lucene search
K

2037 matches found

Cvelist
Cvelist
added 2026/01/22 4:52 p.m.19 views

CVE-2025-68986 WordPress Miion theme <= 1.2.7 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Miion miion allows Upload a Web Shell to a Web Server.This issue affects Miion: from n/a through = 1.2.7...

9.9CVSS0.00434EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.10 views

PT-2026-4116

Name of the Vulnerable Software and Affected Versions zozothemes Miion versions through 1.2.7 Description A flaw exists in zozothemes Miion that permits the unrestricted upload of files with dangerous types. This allows for the upload of a web shell to a web server. Recommendations Update...

5.3AI score0.00434EPSS
Exploits0References3
OSV
OSV
added 2026/01/16 3:16 a.m.4 views

CVE-2026-1021

Police Statistics Database System developed by Gotac has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attacker to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS6.4AI score0.00636EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.14 views

PT-2026-3208

Police Statistics Database System developed by Gotac has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attacker to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

9.8CVSS8.5AI score0.00636EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.6 views

CVE-2021-27130

Online Reviewer System 1.0 contains a SQL injection vulnerability through authentication bypass, which may lead to a reverse shell upload...

9.8CVSS8AI score0.02231EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:51 a.m.7 views

CVE-2022-42064

Online Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell...

9.8CVSS8.1AI score0.01133EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.8 views

CVE-2019-11680

KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...

9.8CVSS7.6AI score0.04153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 9:17 a.m.5 views

CVE-2025-67924 WordPress Corpkit theme <= 2.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Corpkit corpkit allows Upload a Web Shell to a Web Server.This issue affects Corpkit: from n/a through = 2.0...

9.9CVSS6.5AI score0.00326EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/06 8:56 p.m.30 views

CVE-2025-30996 Arbitrary File Upload Vulnerability in WordPress themes by Themify

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Themify Sidepane WordPress Theme, Themify Themify Newsy, Themify Themify Folo, Themify Themify Edmin, Themify Bloggie, Themify Photobox, Themify Wigi, Themify Rezo, Themify Slide allows Upload a Web Shell to a Web Server.Thi...

9.9CVSS0.00437EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/01/06 11:14 a.m.14 views

CVE-2025-31048

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Shopo allows Upload a Web Shell to a Web Server.This issue affects Shopo: from n/a through 1.1.4...

9.9CVSS4.6AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2026/01/05 10:27 a.m.14 views

CVE-2025-31048

CVE-2025-31048 affects WordPress plugin/theme Shopo (Themify Shopo) up to version 1.1.4, with an Unrestricted Upload of File with Dangerous Type vulnerability that can permit uploading a web shell to the server. The issue is described across multiple sources (NVD/Red Hat entries and Patchstack), ...

9.9CVSS4.6AI score0.00264EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/05 10:27 a.m.4 views

CVE-2025-31048 WordPress Shopo <= 1.1.4 - Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Themify Shopo allows Upload a Web Shell to a Web Server.This issue affects Shopo: from n/a through 1.1.4...

9.9CVSS6.5AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/31 5:6 p.m.8 views

CVE-2025-52835

Cross-Site Request Forgery CSRF vulnerability in ConoHa by GMO WING WordPress Migrator wing-migrator allows Upload a Web Shell to a Web Server.This issue affects WING WordPress Migrator: from n/a through = 1.2.0...

9.6CVSS5.9AI score0.00171EPSS
Exploits0References1
NVD
NVD
added 2025/12/30 5:15 p.m.7 views

CVE-2025-52835

Cross-Site Request Forgery CSRF vulnerability in ConoHa by GMO WING WordPress Migrator wing-migrator allows Upload a Web Shell to a Web Server.This issue affects WING WordPress Migrator: from n/a through = 1.2.0...

9.6CVSS0.00171EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/30 4:48 p.m.3 views

CVE-2025-52835 WordPress WING WordPress Migrator plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ConoHa by GMO WING WordPress Migrator wing-migrator allows Upload a Web Shell to a Web Server.This issue affects WING WordPress Migrator: from n/a through = 1.2.0...

9.6CVSS5.2AI score0.00171EPSS
Exploits0References1
CVE
CVE
added 2025/12/30 4:48 p.m.24 views

CVE-2025-52835

Technical details for CVE-2025-52835 are not provided in the supplied documents. No confirmation of affected products, impact, or fixes is available here; please monitor for updates from official advisories.

9.6CVSS5.9AI score0.00171EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/30 4:48 p.m.5 views

EUVD-2025-205805

Cross-Site Request Forgery CSRF vulnerability in ConoHa by GMO WING WordPress Migrator allows Upload a Web Shell to a Web Server.This issue affects WING WordPress Migrator: from n/a through 1.1.9...

9.6CVSS6.3AI score0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/30 4:48 p.m.40 views

CVE-2025-52835 WordPress WING WordPress Migrator plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ConoHa by GMO WING WordPress Migrator wing-migrator allows Upload a Web Shell to a Web Server.This issue affects WING WordPress Migrator: from n/a through = 1.2.0...

9.6CVSS0.00171EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.11 views

PT-2025-54199

Name of the Vulnerable Software and Affected Versions ConoHa by GMO WING WordPress Migrator versions through 1.1.9 Description A Cross-Site Request Forgery CSRF issue exists in ConoHa by GMO WING WordPress Migrator. This allows for the upload of a web shell to a web server. Exploitation requires ...

9.6CVSS6.7AI score0.00171EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/12/29 9:13 p.m.5 views

CVE-2025-68562 WordPress MapSVG plugin <= 8.7.3 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG allows Upload a Web Shell to a Web Server.This issue affects MapSVG: from n/a through 8.7.3...

9.9CVSS6.5AI score0.00359EPSS
Exploits0References1
Rows per page
Query Builder