CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

NVD•added 2025/12/28 6:15 p.m.•2 views

CVE-2025-15148

A flaw has been found in CmsEasy up to 7.7.7. Affected is the function savetempaction in the library /lib/admin/templateadmin.php of the component Backend Template Management Page. Executing a manipulation of the argument content/tempdata can lead to code injection. The attack may be launched...

7.2CVSS0.00028EPSS

Exploits1References4

CNNVD•added 2025/12/28 12:0 a.m.•1 views

CmsEasy 代码注入漏洞

CmsEasy is a content management system CMS for creating responsive websites from China's CmsEasy company. A code injection vulnerability exists in CmsEasy 7.7.7 and earlier versions, which stems from incorrect manipulation of the parameter content/tempdata in the file /lib/admin/templateadmin.php...

7.2CVSS5.3AI score0.00028EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 9:45 a.m.•2 views

CVE-2024-25828

cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/templateadmin.php...

4.9CVSS7.1AI score0.00164EPSS

Exploits1References1

NVD•added 2024/05/07 7:15 p.m.•8 views

CVE-2024-34315

CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the filegetcontents function in the fckeditaction method of /admin/templateadmin.php. This vulnerability allows attackers to read arbitrary files...

7.5CVSS6.8AI score0.0026EPSS

Exploits1References1

Cvelist•added 2024/05/07 12:0 a.m.•6 views

CVE-2024-34314

CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the filegetcontents function in the fetchaction method of /admin/templateadmin.php. This vulnerability allows attackers to read arbitrary files...

7AI score0.00159EPSS

Exploits0References1

Vulnrichment•added 2024/05/07 12:0 a.m.•12 views

CVE-2024-34315

7.1AI score0.0026EPSS

Exploits1References1

CVE•added 2024/05/07 12:0 a.m.•79 views

CVE-2024-34315

CmsEasy v7.7.7.9 contains a local file inclusion vulnerability exposed via the file_get_contents call inside the fckedit_action method of /admin/template_admin.php. This allows an attacker to read arbitrary files on the server. The CVE CVE-2024-34315 is documented across NVD/Red Hat/CNVD and rela...

7.5CVSS7AI score0.0026EPSS

Exploits1References1Affected Software1

CVE•added 2024/05/07 12:0 a.m.•60 views

CVE-2024-34314

CmsEasy v7.7.7.9 contains a local file inclusion vulnerability exploitable through file_get_contents in the fetch_action() of /admin/template_admin.php, enabling reading arbitrary files. The issue is documented across multiple feeds (NVD, Red Hat, CVE databases). The available sources do not prov...

7.5CVSS7AI score0.00159EPSS

Exploits0References1Affected Software1

NVD•added 2024/02/22 4:15 p.m.•7 views

CVE-2024-25828

cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/templateadmin.php...

4.9CVSS6.7AI score0.00164EPSS

Exploits1References1

Prion•added 2024/02/22 4:15 p.m.•9 views

Arbitrary file deletion

cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/templateadmin.php...

7.5AI score0.00164EPSS

Exploits1References1

Cvelist•added 2024/02/22 12:0 a.m.•11 views

CVE-2024-25828

cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/templateadmin.php...

7AI score0.00164EPSS

Exploits1References1

Vulnrichment•added 2024/02/22 12:0 a.m.•7 views

CVE-2024-25828

cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/templateadmin.php...

7.1AI score0.00164EPSS

Exploits1References1

CVE•added 2024/02/22 12:0 a.m.•3882 views

CVE-2024-25828

CMSEasy v7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/template_admin.php. From the documents: vulnerable component is the file lib/admin/template_admin.php; impact is arbitrary file deletion with no confidentiality impact but potential integrity/availability effects; attack v...

4.9CVSS6.9AI score0.00164EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by