CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

GithubExploit•added 2026/01/11 7:48 p.m.•477 views

SweetRice-CMS-1.5.1-RCE-Exploit

SweetRice CMS 1.5.1 RCE Exploit Overview SweetRice CMS 1.5...

7.8AI score

RedhatCVE•added 2026/01/09 11:52 a.m.•10 views

CVE-2009-4231

Directory traversal vulnerability in as/lib/plugins.php in SweetRice 0.5.3 and earlier allows remote attackers to include and execute arbitrary local files via .. dot dot in the plugin parameter...

7.5CVSS7.6AI score0.02317EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2010-5275

Malware in sbrugna...

7.5CVSS6.4AI score0.01203EPSS

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2009-4193

Malware in sbrugna...

6.8CVSS6.4AI score0.02635EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2010-5274

Malware in sbrugna...

4.3CVSS6.4AI score0.00966EPSS

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2011-3761

Malware in sbrugna...

5CVSS6.4AI score0.01229EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2010-5276

Malware in sbrugna...

4.3CVSS6.4AI score0.01756EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2009-4200

Malware in sbrugna...

7.5CVSS6.4AI score0.02317EPSS

RedhatCVE•added 2025/05/22 9:59 a.m.•6 views

CVE-2011-3804

SweetRice 0.7.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugin/tinymce/plugins/advimage/images.php...

5CVSS6.5AI score0.01229EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:32 a.m.•3 views

CVE-2010-5318

The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to modify the administrator's password by specifying the administrator's e-mail address in the email parameter...

4.3CVSS7.1AI score0.01756EPSS

RedhatCVE•added 2025/05/22 2:46 a.m.•3 views

CVE-2010-5317

Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before 0.6.7.1 allow remote attackers to execute arbitrary SQL commands via 1 the filename parameter in an attachment action, 2 the post parameter in a showcomment action, 3 the sys-name parameter in an rssfeed action, or 4 the...

7.5CVSS8.9AI score0.01203EPSS

RedhatCVE•added 2025/05/22 12:29 a.m.•6 views

CVE-2010-5316

Cross-site scripting XSS vulnerability in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to inject arbitrary web script or HTML via a topheight cookie...

4.3CVSS5.9AI score0.00966EPSS

Packet Storm•added 2016/11/07 12:0 a.m.•56 views

SweetRice 1.5.1 Cross Site Request Forgery / Cross Site Scripting

alert1' alert1 3. Xss in Page Limit: Payload should inject in cookies. Vulnerable Parameter : pagelimit Headers : GET /as/?appmode=database&plugin=App&type=plugin& HTTP/1.1 Host: localhost User-Agent: Mozilla/5.0 Windows NT 10.0; rv:49.0 Gecko/20100101 Firefox/49.0 Accept:...

CNVD•added 2016/11/07 12:0 a.m.•2 views

SweetRice Backup Information Disclosure Vulnerability

SweetRice CMS is an open source web content management system CMS. The system provides search engine optimization and other features. SweetRice version 1.5.1 suffers from a backup information disclosure vulnerability, which can be exploited by an attacker to obtain database and website backup...

6.3AI score

Exploits0References1

exploitpack•added 2016/11/06 12:0 a.m.•293 views

SweetRice 1.5.1 - Backup Disclosure

SweetRice 1.5.1 - Backup Disclosure Title: SweetRice 1.5.1 - Backup Disclosure Application: SweetRice Versions Affected: 1.5.1 Vendor URL: http://www.basic-cms.org/ Software URL: http://www.basic-cms.org/attachment/sweetrice-1.5.1.zip Discovered by: Ashiyane Digital Security Team Tested on: Windo...

7.4AI score

Packet Storm•added 2016/11/06 12:0 a.m.•49 views

SweetRice 1.5.1 Backup Disclosure

Title: SweetRice 1.5.1 - Backup Disclosure Application: SweetRice Versions Affected: 1.5.1 Vendor URL: http://www.basic-cms.org/ Software URL: http://www.basic-cms.org/attachment/sweetrice-1.5.1.zip Discovered by: Ashiyane Digital Security Team Tested on: Windows 10 Bugs: Backup Disclosure Date:...

7.4AI score

0day.today•added 2016/11/06 12:0 a.m.•417 views

SweetRice 1.5.1 - Backup Disclosure Vulnerability

Exploit for php platform in category web applications Title: SweetRice 1.5.1 - Backup Disclosure Application: SweetRice Versions Affected: 1.5.1 Vendor URL: http://www.basic-cms.org/ Software URL: http://www.basic-cms.org/attachment/sweetrice-1.5.1.zip Discovered by: Ashiyane Digital Security Tea...

7.1AI score

exploitpack•added 2016/11/06 12:0 a.m.•60 views

SweetRice 1.5.1 - Arbitrary File Upload

SweetRice 1.5.1 - Arbitrary File Upload /usr/bin/python -- Coding: utf-8 -- Exploit Title: SweetRice 1.5.1 - Unrestricted File Upload Exploit Author: Ashiyane Digital Security Team Date: 03-11-2016 Vendor: http://www.basic-cms.org/ Software Link:...

0.1AI score

Exploit DB•added 2016/11/06 12:0 a.m.•29 views

SweetRice 1.5.1 - Backup Disclosure

7.4AI score