Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

Nuclei
Nucleiadded yesterday12 views

Xfilesharing 2.5.1 - Arbitrary File Upload

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload.This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP. id: CVE-2019-18952 info: name: Xfilesharing 2.5.1 - Arbitrary File Upload...

9.8CVSS8.3AI score0.84694EPSS
Exploits6References3
RedhatCVE
RedhatCVEadded 2026/01/09 10:18 a.m.4 views

CVE-2019-18952

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP...

9.8CVSS7.4AI score0.84694EPSS
Exploits6References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2006-1944

Malware in sbrugna...

2.6CVSS6.4AI score0.02718EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2025/05/22 10:21 a.m.4 views

CVE-2019-18951

SibSoft Xfilesharing through 2.5.1 allows op=page=../ directory traversal to read arbitrary files...

7.5CVSS6.4AI score0.71465EPSS
Exploits5References1
VulnCheck KEV
VulnCheck KEVadded 2022/01/12 12:0 a.m.0 views

VulnCheck KEV: CVE-2019-18952

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP...

9.8CVSS7.8AI score0.84694EPSS
Exploits6References1
Packet Storm
Packet Stormadded 2019/11/14 12:0 a.m.266 views

Xfilesharing 2.5.1 Local File Inclusion / Shell Upload

Exploit Title: Xfilesharing 2.5.1 - Arbitrary File Upload Google Dork: inurl:/?op=registration Date: 2019-11-4 Exploit Author: Noman Riffat Vendor Homepage: https://sibsoft.net/xfilesharing.html Version: Shell : http://xyz.com/cgi-bin/temp/joe/shell.php Local File Inclusion...

8.7AI score0.84694EPSS
Exploits6
CNVD
CNVDadded 2019/11/14 12:0 a.m.4 views

SibSoft Xfilesharing File Upload Vulnerability

SibSoft Xfilesharing is a file sharing solution from the Russian company SibSoft. A file upload vulnerability exists in SibSoft Xfilesharing. An attacker can exploit this vulnerability to achieve remote code execution...

9.8CVSS8.1AI score0.84694EPSS
Exploits5References1
OSV
OSVadded 2019/11/13 11:15 p.m.2 views

CVE-2019-18951

SibSoft Xfilesharing through 2.5.1 allows op=page&tmpl=../ directory traversal to read arbitrary files...

7.5CVSS7.3AI score0.71465EPSS
Exploits5References2
OSV
OSVadded 2019/11/13 11:15 p.m.2 views

CVE-2019-18952

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP...

9.8CVSS7.7AI score0.84694EPSS
Exploits5References2
NVD
NVDadded 2019/11/13 11:15 p.m.5 views

CVE-2019-18952

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP...

9.8CVSS7.9AI score0.84694EPSS
Exploits5References2
Prion
Prionadded 2019/11/13 11:15 p.m.7 views

Design/Logic Flaw

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP...

7.5CVSS8.2AI score0.84694EPSS
Exploits6References2Affected Software1
Cvelist
Cvelistadded 2019/11/13 10:38 p.m.15 views

CVE-2019-18952

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP...

8.9AI score0.84694EPSS
Exploits5References2
CVE
CVEadded 2019/11/13 10:38 p.m.210 views

CVE-2019-18952

CVE-2019-18952 affects SibSoft Xfilesharing up to version 2.5.1, enabling an arbitrary file upload through cgi-bin/up.cgi. The accompanying data shows this can be chained with CVE-2019-18951 (directory traversal via op=page&tmpl=…) to achieve remote code execution, using a crafted HTML file serve...

9.8CVSS8.8AI score0.84694EPSS
In wildExploits5References2Affected Software1
CVE
CVEadded 2019/11/13 10:38 p.m.202 views

CVE-2019-18951

CVE-2019-18951 affects SibSoft Xfilesharing up to version 2.5.1. The vulnerability is a directory traversal via op=page&tmpl=../, allowing reading arbitrary files. Public sources in the connected documents corroborate a path traversal/LFI-style exposure, with exploit context and mention of a comb...

7.5CVSS8.4AI score0.71465EPSS
In wildExploits5References2Affected Software1
Cvelist
Cvelistadded 2019/11/13 10:38 p.m.14 views

CVE-2019-18951

SibSoft Xfilesharing through 2.5.1 allows op=page&tmpl=../ directory traversal to read arbitrary files...

8.6AI score0.71465EPSS
Exploits5References2
ATTACKERKB
ATTACKERKBadded 2019/11/13 12:0 a.m.604 views

CVE-2019-18952

SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value:...

9.8CVSS4.3AI score0.84694EPSS
In wildExploits6References3
Prion
Prionadded 2006/04/20 10:2 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in SibSoft CommuniMail 1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the listid parameter in mailadmin.cgi and 2 the formid parameter in templates.cgi...

2.6CVSS6.1AI score0.02718EPSS
Exploits1References7Affected Software1
NVD
NVDadded 2006/04/20 10:2 p.m.13 views

CVE-2006-1944

Multiple cross-site scripting XSS vulnerabilities in SibSoft CommuniMail 1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the listid parameter in mailadmin.cgi and 2 the formid parameter in templates.cgi...

2.6CVSS5.8AI score0.02718EPSS
Exploits1References7
CVE
CVEadded 2006/04/20 10:0 p.m.35 views

CVE-2006-1944

CVE-2006-1944 : Multiple cross-site scripting (XSS) vulnerabilities in SibSoft CommuniMail 1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the following parameters: (1) list_id in mailadmin.cgi and (2) form_id in templates.cgi. The affected software is SibSoft Co...

2.6CVSS5.8AI score0.02718EPSS
Exploits1References7Affected Software1
Cvelist
Cvelistadded 2006/04/20 10:0 p.m.16 views

CVE-2006-1944

Multiple cross-site scripting XSS vulnerabilities in SibSoft CommuniMail 1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the listid parameter in mailadmin.cgi and 2 the formid parameter in templates.cgi...

5.8AI score0.02718EPSS
Exploits1References7
Rows per page
Query Builder