CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-18790

Malware in sbrugna...

8.8CVSS8.6AI score0.01126EPSS

Exploits2References5

CNVD•added 2021/01/04 12:0 a.m.•2 views

qdPM PHP Object Injection Vulnerability

qdPM is a free Web-based open source project management tool , written in symfony framework for small teams . qdPM 9.1 and earlier versions have PHP object injection vulnerabilities. An attacker can exploit this vulnerability by using timeReportActions::executeExport in...

8.8CVSS7.4AI score0.01126EPSS

Exploits2References1

NVD•added 2020/12/31 9:15 p.m.•10 views

CVE-2020-26165

qdPM through 9.1 allows PHP Object Injection via timeReportActions::executeExport in core/apps/qdPM/modules/timeReport/actions/actions.class.php because unserialize is used...

8.8CVSS8.9AI score0.01126EPSS

Exploits2References3

Cvelist•added 2020/12/31 8:38 p.m.•11 views

CVE-2020-26165

qdPM through 9.1 allows PHP Object Injection via timeReportActions::executeExport in core/apps/qdPM/modules/timeReport/actions/actions.class.php because unserialize is used...

9AI score0.01126EPSS

Exploits2References3

CVE•added 2020/12/31 8:38 p.m.•73 views

CVE-2020-26165

CVE-2020-26165 affects qdPM through v9.1, where PHP object injection is possible via timeReportActions::executeExport due to using unserialize on user-supplied input. This vulnerability stems from unserialize on the export parameter, enabling injection attacks that can lead to code execution or o...

8.8CVSS8.8AI score0.01126EPSS

Exploits2References3Affected Software1

CNNVD•added 2020/12/31 12:0 a.m.•2 views

qdPM 代码注入漏洞

8.8CVSS5.8AI score0.01126EPSS

Exploits2References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by