Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

30 matches found

Packet Storm News
Packet Storm Newsadded 2026/02/19 12:0 a.m.3 views

SofaWiki 3.9.2 Shell Upload

This is a proof of concept remote shell upload exploit for SofaWiki version 3.9.2 that leverages an issue originally discovered in 2024...

6AI score
Exploits0
Packet Storm
Packet Stormadded 2026/02/19 12:0 a.m.131 views

📄 SofaWiki 3.9.2 Shell Upload

This is a proof of concept remote shell upload exploit for SofaWiki version 3.9.2 that leverages an issue originally discovered in 2024. ============================================================================================================================================= | Title : SofaWiki...

5.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/01/09 12:38 p.m.6 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.8CVSS7AI score0.01138EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-33259

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01138EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-33258

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00387EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 3:41 a.m.4 views

CVE-2023-29720

SofaWiki =3.8.9 is vulnerable to Cross Site Scripting XSS via index.php...

6.1CVSS6AI score0.00387EPSS
Exploits1References1
0day.today
0day.todayadded 2024/10/22 12:0 a.m.281 views

SofaWiki 3.9.2 Shell Upload Exploit

Exploit Title: SofaWiki 3.9.2 - Remote Code Execution RCE via Open Ticket File Upload Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A remote code execution RCE...

7.4AI score
Exploits0
0day.today
0day.todayadded 2024/10/22 12:0 a.m.248 views

SofaWiki 3.9.2 Cross Site Scripting Vulnerability

Exploit Title: SofaWiki 3.9.2 - Stored XSS Authenticated Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A stored XSS exists in SofaWiki's Open Ticket feature. An...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/10/17 12:0 a.m.335 views

SofaWiki 3.9.2 Cross Site Scripting

Exploit Title: SofaWiki 3.9.2 - Stored XSS Authenticated Date: 10/17/2024 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A stored XSS exists in SofaWiki's Open...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/10/17 12:0 a.m.322 views

SofaWiki 3.9.2 Cross Site Scripting

Exploit Title: SofaWiki 3.9.2 - Reflected XSS Authenticated via Regex Replace Preview Date: 10/17/2024 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A reflected...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/10/17 12:0 a.m.401 views

SofaWiki 3.9.2 Shell Upload

Exploit Title: SofaWiki 3.9.2 - Remote Code Execution RCE via Open Ticket File Upload Date: 10/17/2024 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Version: 3.9.2 Tested on: Windows XP Summary: A remote co...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/04/22 12:0 a.m.222 views

SofaWiki 3.9.2 Shell Upload

Exploit Title: SofaWiki 3.9.2 - Remote Command Execution RCE Authenticated Discovered by: Ahmet Ümit BAYRAM Discovered Date: 18.04.2024 Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Tested Version: v3.9.2 latest Tested on: MacOS import...

7.4AI score
Exploits0
0day.today
0day.todayadded 2024/04/21 12:0 a.m.281 views

SofaWiki 3.9.2 - Remote Command Execution (Authenticated) Exploit

Exploit Title: SofaWiki 3.9.2 - Remote Command Execution RCE Authenticated Discovered by: Ahmet Ümit BAYRAM Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Tested Version: v3.9.2 latest Tested on: MacOS import requests import random import...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2024/04/21 12:0 a.m.279 views

SofaWiki 3.9.2 - Remote Command Execution (RCE) (Authenticated)

Exploit Title: SofaWiki 3.9.2 - Remote Command Execution RCE Authenticated Discovered by: Ahmet Ümit BAYRAM Discovered Date: 18.04.2024 Vendor Homepage: https://www.sofawiki.com Software Link: https://www.sofawiki.com/site/files/snapshot.zip Tested Version: v3.9.2 latest Tested on: MacOS import...

7.4AI score
Exploits0
OSV
OSVadded 2023/05/24 9:15 p.m.2 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.8CVSS7.3AI score0.01138EPSS
Exploits1References2
NVD
NVDadded 2023/05/24 9:15 p.m.13 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.8CVSS9.7AI score0.01138EPSS
Exploits1References2
Prion
Prionadded 2023/05/24 9:15 p.m.15 views

Privilege escalation

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

7.5CVSS9.6AI score0.01138EPSS
Exploits1References2Affected Software1
CNNVD
CNNVDadded 2023/05/24 12:0 a.m.2 views

SofaWiki 代码问题漏洞

SofaWiki is a PHP-based CMS. A security vulnerability exists in SofaWiki 3.8.9 and earlier versions, which stems from a file upload vulnerability that can lead to the execution of command...

9.8CVSS8.5AI score0.01138EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2023/05/24 12:0 a.m.8 views

CVE-2023-29721

SofaWiki = 3.8.9 has a file upload vulnerability that leads to command execution...

9.7AI score0.01138EPSS
Exploits1References2
CVE
CVEadded 2023/05/24 12:0 a.m.58 views

CVE-2023-29721

CVE-2023-29721 affects SofaWiki versions up to 3.8.9. A file-upload vulnerability allows command execution, per multiple connected records (e.g., Red Hat, NVD, CNNVD). The CVSS indicates critical impact with network attack vector and no user interaction required. Remediation guidance found in PT-...

9.8CVSS9.5AI score0.01138EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder