CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2011-4964

Malware in sbrugna...

7.5CVSS6.2AI score0.0188EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 4:48 a.m.•4 views

CVE-2011-5061

functions.php in WHMCompleteSolution WHMCS 4.0.x through 5.0.x allows remote attackers to trigger arbitrary code execution in the Smarty templating system by submitting a crafted ticket, related to improper handling of characters in the subject field...

7.5CVSS7.7AI score0.0188EPSS

Exploits0References1

BDU FSTEC•added 2025/03/27 12:0 a.m.•2 views

The vulnerability of the PHP Smarty templater, related to improper handling of code generation, allows attackers to execute arbitrary PHP code.

The vulnerability of the PHP Smarty templater is related to improper handling of code generation. Exploiting this vulnerability allows an attacker to execute arbitrary PHP code on the target system...

8.5CVSS7.6AI score0.00279EPSS

Exploits0References5Affected Software3

NVD•added 2018/01/02 5:29 p.m.•16 views

CVE-2017-1000453

CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution...

9.8CVSS9.9AI score0.00979EPSS

Exploits0References1

Prion•added 2018/01/02 5:29 p.m.•15 views

Design/Logic Flaw

CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution...

7.5CVSS9.8AI score0.00979EPSS

Exploits0References1Affected Software1

CVE•added 2018/01/02 5:0 p.m.•49 views

CVE-2017-1000453

CMS Made Simple versions 2.1.6 and 2.2 are affected by a Smarty templating injection in some core modules, enabling unauthenticated PHP code execution. The vulnerability stems from core module handling of Smarty templates (root cause as described). Impact is unauthenticated code execution with po...

9.8CVSS9.8AI score0.00979EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/01/02 5:0 p.m.•15 views

CVE-2017-1000453

CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution...

9.9AI score0.00979EPSS

Exploits0References1

Prion•added 2012/01/14 3:57 a.m.•13 views

Design/Logic Flaw

7.5CVSS8.1AI score0.0188EPSS

Exploits0References2Affected Software1

CVE•added 2012/01/14 2:0 a.m.•54 views

CVE-2011-5061

CVE-2011-5061 affects WHMCS (WHMCompleteSolution) 4.0.x–5.0.x. The vulnerability lies in functions.php allowing remote attackers to trigger arbitrary code execution in the Smarty templating system by submitting a crafted ticket with weaponized subject data, due to improper handling of characters....

7.5CVSS7.6AI score0.0188EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2012/01/14 12:0 a.m.•3 views

PT-2012-2039 · Whmcs · Whmcs

Name of the Vulnerable Software and Affected Versions: WHMCS versions 4.0.x through 5.0.x Description: The issue is related to improper handling of characters in the subject field of a crafted ticket, which can trigger arbitrary code execution in the Smarty templating system. This allows remote...

7.5CVSS8.5AI score0.0188EPSS

Exploits0References5

securityvulns•added 2005/09/02 12:0 a.m.•29 views

CMS Made Simple <= 0.10 - PHP injection

-- == -- == -- == -- == -- == -- == -- == -- == -- == -- Name: CMS Made Simple - PHP injection Version = 0.10 Homepage: http://www.cmsmadesimple.org/ Author: Filip Groszynski VXSfx Date: 31 August 2005 -- == -- == -- == -- == -- == -- == -- == -- == -- == -- Background: CMS Made Simple is an easy...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by