10 matches found
CVE-2026-39276
The template upload feature in Emlog Pro v2.6.9 has a path traversal vulnerability, allowing authenticated administrators to execute arbitrary PHP code. By uploading a malicious ZIP archive containing directory traversal sequences in filenames, an attacker can overwrite default template files or...
CVE-2026-10855
An authorization flaw existed in the MISP Event Template Importer overwrite workflow. When importing an event template in overwrite mode, the application checked whether a matching template already existed but did not verify that the importing user belonged to the organization that owned the...
Apache HertzBeat 1.8.0 - Remote Code Execution
Exploit Title: Apache HertzBeat 1.8.0 - Remote Code Execution Google Dork: N/A Date: 2026-03-09 Exploit Author: Brett Gervasoni Vendor Homepage: https://hertzbeat.apache.org/ Software Link: https://github.com/apache/hertzbeat/releases Version: 1.8.0 Tested on: Linux Docker; official HertzBeat...
EUVD-2001-1101
Malware in sbrugna...
Mosets Tree 2.1.6 (Joomla) Template Overwrite CSRF
No description provided by source. ?php / Mosets Tree 2.1.6 Joomla Template Overwrite CSRF 3 October 2010 jdc How it works - admin template form has no nonce How to exploit - get a logged in admin to click the wrong link ; Patched in 2.1.7 / // change these $target = 'http://localhost/joomla';...
Mosets Tree 2.1.6 Cross Site Request Forgery
'; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect pageadvSearchResults pageadvSearch pageclaim pageconfirmDelete pagecontactOwner pageerrorListing pageerror pagegallery pageimage pageindex pagelistAlpha pagelisting pagelistListings pageownerListing pageprint pagerecomme...
Mosets Tree 2.1.6 (Joomla) Template Overwrite CSRF
Exploit for php platform in category web applications ================================================== Mosets Tree 2.1.6 Joomla Template Overwrite CSRF ================================================== '; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect...
Joomla! Component com_mtree 2.1.6 - Overwrite Cross-Site Request Forgery
Joomla! Component commtree 2.1.6 - Overwrite Cross-Site Request Forgery '; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect pageadvSearchResults pageadvSearch pageclaim pageconfirmDelete pagecontactOwner pageerrorListing pageerror pagegallery pageimage pageindex...
Joomla! Component com_mtree 2.1.6 - Overwrite Cross-Site Request Forgery
'; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect pageadvSearchResults pageadvSearch pageclaim pageconfirmDelete pagecontactOwner pageerrorListing pageerror pagegallery pageimage pageindex pagelistAlpha pagelisting pagelistListings pageownerListing pageprint pagerecomme...
CVE-2001-1427
Technical details of CVE-2001-1427 are not publicly available in the provided documents. Please monitor for updates from official advisories; current sources describe an unknown vulnerability in ColdFusion Server 2.0–4.5.1 SP2 without specifics.