Lucene search
K

550 matches found

Positive Technologies
Positive Technologies
added yesterday5 views

PT-2026-53866

Name of the Vulnerable Software and Affected Versions NetScaler ADC affected versions not specified NetScaler Gateway affected versions not specified Description An unauthenticated arbitrary file read issue exists when access to the NSIP NetScaler IP, Cluster Management IP, or SNIP Subnet IP with...

7.1CVSS5.9AI score
Exploits0References6
Positive Technologies
Positive Technologies
added 2 days ago6 views

PT-2026-53285

Name of the Vulnerable Software and Affected Versions Page Builder CK versions prior to 3.6.0 Description The Joomla extension Page Builder CK contains a flaw that allows an unauthenticated user to perform an arbitrary file upload. This issue enables the uploading of executable files, which can...

10CVSS6.2AI score0.00239EPSS
Exploits0References9
NVD
NVD
added 5 days ago5 views

CVE-2026-56066

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS0.00346EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 6 days ago5 views

CVE-2026-54845

Unauthenticated Local File Inclusion in MDTF = 1.3.8 versions...

8.1CVSS5.8AI score0.00274EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.7 views

PT-2026-52136

Name of the Vulnerable Software and Affected Versions Cacti versions prior to 1.2.31 Description Cacti is an open source performance and fault management framework. The software contains an unauthenticated Local File Inclusion LFI issue, which occurs through the graph theme parameter and rrdtool...

9.8CVSS5.8AI score0.00436EPSS
Exploits1References8
EUVD
EUVD
added 2026/06/17 6:35 p.m.7 views

EUVD-2025-210228

Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site = 1.0.7 versions...

10CVSS5.2AI score0.00432EPSS
Exploits0References2
NVD
NVD
added 2026/06/17 2:17 p.m.8 views

CVE-2025-69175

Unauthenticated Local File Inclusion in Line Agency = 1.3.1 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 2:17 p.m.5 views

CVE-2025-69106

Unauthenticated Local File Inclusion in Imba = 1.5.0 versions...

8.1CVSS0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:20 p.m.10 views

CVE-2026-52705

Unauthenticated Arbitrary File Upload in SigmaForms Pro – AI Generated Forms = 1.4.5 versions...

9CVSS0.00294EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:20 p.m.8 views

CVE-2026-39582

Unauthenticated Local File Inclusion in Hitek 1.8.3 versions...

8.1CVSS0.00338EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:19 p.m.10 views

CVE-2025-69129

Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site = 1.0.7 versions...

10CVSS0.00432EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:19 p.m.7 views

CVE-2025-69118

Unauthenticated Local File Inclusion in CopyPress = 1.4.5 versions...

8.1CVSS0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 1:19 p.m.6 views

CVE-2025-60085

Unauthenticated Local File Inclusion in Learnify = 1.15.0 versions...

8.1CVSS0.00423EPSS
Exploits0References1
NVD
NVD
added 2026/06/15 9:16 p.m.4 views

CVE-2026-40772

Unauthenticated Arbitrary File Upload in GeekyBot = 1.2.2 versions...

10CVSS0.00347EPSS
Exploits0References1
NVD
NVD
added 2026/06/15 12:16 p.m.12 views

CVE-2026-5482

Responsive FileManager's allows an unauthenticated attacker to upload files of any type and extension without restriction using dialog.php endpoint, leading to Remote Code Execution. This project is unmaintained at the time of CVE assignment. The vulnerability was found in the latest release 9.14...

9.3CVSS0.00445EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/06/13 1:43 p.m.90 views

Exploit for CVE-2026-1555

CVE-2026-1555: Unauthenticated Arbitrary File Upload in WebSta...

9.8CVSS5.3AI score0.00984EPSS
Exploits3
CVE
CVE
added 2026/06/12 1:52 p.m.33 views

CVE-2026-53787

Amasty Order Attributes for Magento 2 (versions

9.8CVSS6.2AI score0.03692EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.14 views

PT-2026-48882

Name of the Vulnerable Software and Affected Versions Amasty Order Attributes for Magento 2 versions prior to 4.0.0 Description An unauthenticated arbitrary file upload issue allows attackers to write files of any type or name to the store's media directory. This occurs because the upload endpoin...

9.8CVSS6.1AI score0.03692EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/06/06 8:37 a.m.58 views

Exploit for CVE-2026-3844

CVE-2026-3844 – Breeze Cache WordPress Plugin Unauthenticated...

9.8CVSS6.1AI score0.36512EPSS
Exploits8
RedhatCVE
RedhatCVE
added 2026/06/05 7:9 p.m.10 views

CVE-2026-35033

Jellyfin is an open source self hosted media server. Versions prior to 10.11.7 contain an unauthenticated arbitrary file read vulnerability via ffmpeg argument injection through the StreamOptions query parameter parsing mechanism. The ParseStreamOptions method in StreamingHelpers.cs adds any...

9.3CVSS5.5AI score0.00319EPSS
Exploits0References1
Rows per page
Query Builder