Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-3741

Malware in sbrugna...

9.8CVSS9.5AI score0.0025EPSS
Exploits1References2
CVE
CVEadded 2018/06/05 12:0 p.m.31 views

CVE-2018-11722

CVE-2018-11722 affects WUZHI CMS 4.1.0 with a SQL Injection in api/uc.php driven by the 'code' parameter due to a hard-coded UC_KEY. The vulnerability is described across multiple datasources as enabling arbitrary SQL commands; CVSS metrics indicate network-level access, low attack complexity, an...

9.8CVSS9.8AI score0.0025EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2018/06/05 12:0 p.m.13 views

CVE-2018-11722

WUZHI CMS 4.1.0 has a SQL Injection in api/uc.php via the 'code' parameter, because 'UCKEY' is hard coded...

9.9AI score0.0025EPSS
Exploits1References1
seebug.org
seebug.orgadded 2016/05/03 12:0 a.m.18 views

ecshop /api/uc.php注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2015/09/15 12:0 a.m.39 views

FineCMS高级版前台getshell(demo成功)

简要描述: demo也shell了哦 详细说明: 看到\member\api\uc.php define'DISCUZROOT', dirnamedirnamedirnameFILE.'/member/ucenter/'; include DISCUZROOT.'api/uc.php'; 就是包含了uc的那个插件。但是这个功能只有高级版才有,免费版没有 然后uckey都是默认的 8808cer8o1UJsEpt2G2Jn0uhEn/YgEva589Mfo0 然后就可以直接getshell了 附上脚本 ! /usr/bin/env python coding=utf-8 import...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2015/05/12 12:0 a.m.187 views

CmsTop媒体版中某处sql注入漏洞

简要描述: sql注入漏洞 详细说明: 可以直接修改 管理员密码。 问题出现在 uc.php接口中,没有正确的判断UC接口是否开启,而key又是默认的。 因为代码中自己关闭了GPC,所以会导致注入。 $set= setting'member'; $set'ucdbtablepre' = ''.$set'ucdbname'.'.'.$set'ucdbtablepre'; $set = arraychangekeycase$set, CASEUPPER; foreach$set as $k = $v ifpregmatch'/^UC/',$k define$k,$v;...

7.1AI score
Exploits0
myhack58
myhack58added 2014/02/20 12:0 a.m.12 views

kingcms the latest version sql injection vulnerability-vulnerability warning-the black bar safety net

Brief description: kingcms injection vulnerability Detailed description: api/uc.php UCKEY not initialized cause injection ? php define'UCCLIENTVERSION', '1.5.0'; //note UCenter version identifier define'UCCLIENTRELEASE', '2 0 0 9 0 5 0 2'; define'APIDELETEUSER', 1; //note the user to delete the A...

7.7AI score
Exploits0
seebug.org
seebug.orgadded 2013/07/30 12:0 a.m.37 views

Modoer 2.6 /api/uc.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2013/07/29 12:0 a.m.23 views

PHPDisk 6.8.0 api/uc.php SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
myhack58
myhack58added 2011/02/23 12:0 a.m.22 views

DISCUZX1. 5 local file inclusion vulnerability-vulnerability warning-the black bar safety net

DISCUZX1. 5 local file inclusion, of course, is conditional, is to use a file as a cache. configglobal.php $config'cache''type' = 'file'; function cachedata$cachenames ...... $isfilecache = getglobal'config/cache/type' == 'file'; ...... if$isfilecache $lostcaches = array; foreach$cachenames as...

0.7AI score
Exploits0
Rows per page
Query Builder