Lucene search
K

294 matches found

nuclei
nuclei
added 13 hours ago21 views

Adning Advertising <= 1.5.5 - Arbitrary File Upload

The Adning Advertising plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ninguploadimage function in versions up to, and including, 1.5.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites...

9.8CVSS7.5AI score0.06944EPSS
Exploits1References4
attackerkb
attackerkb
added 3 days ago5 views

CVE-2026-14894

The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 6.3.313 via the submitform function. This is due to missing file type validation and the absence of any capability check on the submitform nopriv AJAX...

9.8CVSS6.6AI score0.00523EPSS
Exploits1References3
nessus
nessus
added 3 days ago5 views

Langflow < 1.9.1 Multiple Vulnerabilities

The version of Langflow installed on the remote host is prior to 1.9.1. It is, therefore, affected by multiple vulnerabilities: - An Insecure Direct Object Reference IDOR vulnerability in the /api/v1/responses endpoint allows an authenticated attacker to execute any flow belonging to another user...

9.3CVSS6.3AI score0.00467EPSS
Exploits3References4
cisa_kev
cisa_kev
added 3 days ago8 views

Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability

Balbooa Forms contains an unrestricted upload of file with dangerous type vulnerability that allows an unauthenticated arbitrary file upload which could allow uploading of executable files leading to full RCE...

10CVSS6.2AI score0.00836EPSS
In wildExploits3
nvd
nvd
added 2026/06/30 7:16 a.m.12 views

CVE-2026-11589

The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploaded files, allowing unauthenticated users to upload files containing malicious JavaScript such as HTML or SVG to a publicly accessible location, leading to Stored Cross-Site Scripting attac...

8.8CVSS0.00276EPSS
Exploits0References1
euvd
euvd
added 2026/06/30 6:0 a.m.6 views

EUVD-2026-40262

The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploaded files, allowing unauthenticated users to upload files containing malicious JavaScript such as HTML or SVG to a publicly accessible location, leading to Stored Cross-Site Scripting attac...

8.8CVSS5.6AI score0.00276EPSS
Exploits0References1
euvd
euvd
added 2026/06/23 10:16 p.m.9 views

EUVD-2026-38394

Filament: Unauthenticated temporary file upload on auth pages...

6.5CVSS5.8AI score0.00207EPSS
Exploits0References2
nvd
nvd
added 2026/06/23 5:17 p.m.11 views

CVE-2026-55450

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the server without any limitations. No need for any prior knowledge, only network access to Langflow. This can lead to space exhaustion on the...

9.3CVSS0.00332EPSS
Exploits1References2
pypa
pypa
added 2026/06/23 5:17 p.m.5 views

PYSEC-0000-CVE-2026-55450

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the server without any limitations. No need for any prior knowledge, only network access to Langflow. This can lead to space exhaustion on the...

9.3CVSS5.9AI score0.00332EPSS
Exploits1References2Affected Software1
euvd
euvd
added 2026/06/23 4:26 p.m.7 views

EUVD-2026-38515

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.0.19, an attacker can send a /api/v1/files/upload/ request without any authentication token/cookies and abuse a very long multipart form boundary to make the langflow app unusable for all users for an...

7.5CVSS5.9AI score0.00321EPSS
Exploits1References2
cvelist
cvelist
added 2026/06/23 4:17 p.m.41 views

CVE-2026-55450 Langflow: Unauthenticated file upload leads to DoS (space exhaustion) and information leak

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the server without any limitations. No need for any prior knowledge, only network access to Langflow. This can lead to space exhaustion on the...

9.3CVSS0.00332EPSS
Exploits1References2
cve
cve
added 2026/06/23 4:17 p.m.41 views

CVE-2026-55450

Langflow prior to 1.9.1 allows unauthenticated uploads via the /upload/{flow_id} endpoint, enabling unlimited data transfer, which can cause server disk-space exhaustion (DoS). The response also leaks the absolute path of the uploaded file, an information leak that could aid further attacks. The ...

9.3CVSS5.9AI score0.00332EPSS
Exploits1References2Affected Software1
vulncheck_kev
vulncheck_kev
added 2026/06/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-12352

The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the copypostimage function in all versions up to, and including, 2.9.20. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's serv...

9.8CVSS6.7AI score0.00737EPSS
In wildExploits0References2
nvd
nvd
added 2026/06/22 10:16 p.m.9 views

CVE-2026-48500

Filament is a collection of full-stack components for accelerated Laravel development. From 3.0.0 until 3.3.52, 4.11.5, and 5.6.5, any schema can contain a file upload form field, so Filament applies Livewire's WithFileUploads trait to the Livewire component the schema is embedded in. However, so...

6.5CVSS0.00207EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/22 9:41 p.m.6 views

CVE-2026-48500

Filament is a collection of full-stack components for accelerated Laravel development. From 3.0.0 until 3.3.52, 4.11.5, and 5.6.5, any schema can contain a file upload form field, so Filament applies Livewire's WithFileUploads trait to the Livewire component the schema is embedded in. However, so...

6.5CVSS6AI score0.00207EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/06/22 9:41 p.m.36 views

CVE-2026-48500 Filament: Unauthenticated temporary file upload on auth pages

Filament is a collection of full-stack components for accelerated Laravel development. From 3.0.0 until 3.3.52, 4.11.5, and 5.6.5, any schema can contain a file upload form field, so Filament applies Livewire's WithFileUploads trait to the Livewire component the schema is embedded in. However, so...

6.5CVSS0.00207EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/22 12:0 a.m.18 views

PT-2026-51389

Name of the Vulnerable Software and Affected Versions Filament versions prior to 3.3.52 Filament versions prior to 4.11.5 Filament versions prior to 5.6.5 Description Filament applies Livewire's WithFileUploads trait to components where schemas may contain file upload fields. Certain schemas, suc...

6.5CVSS6AI score0.00207EPSS
Exploits0References4
euvd
euvd
added 2026/06/20 11:57 a.m.11 views

EUVD-2026-38110

A vulnerability in the SP Page Builder for Joomla allows the upload of arbitrary files for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS6.1AI score0.01569EPSS
Exploits6References1
vulnrichment
vulnrichment
added 2026/06/20 11:57 a.m.55 views

CVE-2026-48908 Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2

A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimately resulting in the upload and execution of PHP code...

10CVSS6.1AI score0.01569EPSS
Exploits6References1
cve
cve
added 2026/06/20 11:57 a.m.546 views

CVE-2026-48908

CVE-2026-48908 affects the Joomla extension SP Page Builder (com_sppagebuilder). Reports and PoCs confirm unauthenticated file upload via the asset.uploadCustomIcon task, allowing arbitrary files to be written to the webroot and potentially executing PHP code. Affected versions are 1.0.0 through ...

10CVSS6.1AI score0.01569EPSS
In wildExploits6References5Affected Software1
Rows per page
Query Builder