Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/06/01 10:3 p.m.12 views

CVE-2026-10172

A security flaw has been discovered in Bdtask Multi-Store Inventory Management System 1.0. The affected element is the function Upload of the file application/modules/dashboard/controllers/Module.php of the component Component Module. The manipulation of the argument module results in unrestricte...

6.5CVSS5.5AI score0.00206EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/04 12:30 a.m.20 views

MindsDB has an Improper Access Control Issue

A weakness has been identified in MindsDB up to 26.01. This impacts the function exec of the file mindsdb/integrations/handlers/byomhandler/procwrapper.py of the component Engine Handler. Executing a manipulation can lead to unrestricted upload. The attack can be executed remotely. The exploit ha...

7.5CVSS6.7AI score0.00284EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/06 12:19 a.m.11 views

CVE-2025-15448

A vulnerability was found in cld378632668 JavaMall up to 994f1e2b019378ec9444cdf3fce2d5b5f72d28f0. This impacts the function Upload of the file src/main/java/com/macro/mall/controller/MinioController.java. The manipulation results in unrestricted upload. It is possible to launch the attack...

6.5CVSS6.7AI score0.00324EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/01/04 9:32 a.m.4 views

CVE-2026-0577

A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /handgunner-administrator/prod.php. Executing a manipulation can lead to unrestricted upload. It is possible to launch the attack remotely. The...

9.8CVSS6.1AI score0.00309EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2026/01/02 3:15 a.m.4 views

CVE-2025-15423

A vulnerability has been found in EmpireSoft EmpireCMS up to 8.0. Impacted is the function CheckSaveTranFiletype of the file e/class/connect.php. Such manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The...

8.8CVSS6.1AI score0.00314EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2025/12/08 6:2 a.m.3 views

CVE-2025-14219

A weakness has been identified in Campcodes Retro Basketball Shoes Online Store 1.0. The impacted element is an unknown function of the file /admin/adminrunning.php. Executing a manipulation of the argument productimage can lead to unrestricted upload. It is possible to launch the attack remotely...

7.2CVSS5.2AI score0.00297EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2025/11/17 11:15 a.m.9 views

CVE-2025-13275

A security vulnerability has been detected in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This affects an unknown part of the file /admin/about.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has be...

5.8CVSS0.00252EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/11/13 9:6 p.m.4 views

CVE-2025-13061

A vulnerability was detected in itsourcecode Online Voting System 1.0. This impacts an unknown function of the file /index.php?page=managevoting. Performing manipulation results in unrestricted upload. The attack is possible to be carried out remotely. The exploit is now public and may be used...

8.8CVSS6.6AI score0.00295EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/18 1:2 a.m.4 views

CVE-2025-9099 Acrel Environmental Monitoring Cloud Platform UploadNewsImg unrestricted upload

A vulnerability was identified in Acrel Environmental Monitoring Cloud Platform up to 20250804. This affects an unknown part of the file /NewsManage/UploadNewsImg. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has...

6.5CVSS6.9AI score0.0031EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/18 12:0 a.m.6 views

PT-2025-33628 · Acrel · Environmental Monitoring Cloud Platform

Name of the Vulnerable Software and Affected Versions: Acrel Environmental Monitoring Cloud Platform versions prior to 20250805 Description: A vulnerability exists in Acrel Environmental Monitoring Cloud Platform up to version 20250804. The issue affects an unknown part of the...

6.5CVSS6.2AI score0.0031EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 8:14 a.m.5 views

CVE-2024-9975

A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclos...

8.8CVSS6.9AI score0.00562EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:17 a.m.5 views

CVE-2023-2776

A vulnerability was found in code-projects Simple Photo Gallery 1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-229282 is the identifier assigned to this vulnerability...

9.8CVSS7.4AI score0.0072EPSS
Exploits0References1
OSV
OSV
added 2025/04/08 5:15 a.m.5 views

CVE-2025-3410

A vulnerability classified as critical was found in mymagicpower AIAS 20250308. This vulnerability affects unknown code of the file trainingplatform/train-platform/src/main/java/top/aias/training/controller/LocalStorageController.java. The manipulation of the argument File leads to unrestricted...

8.8CVSS5.4AI score0.00478EPSS
Exploits1References4
OSV
OSV
added 2023/06/15 1:15 p.m.4 views

CVE-2023-3274

A vulnerability classified as critical has been found in code-projects Supplier Management System 1.0. Affected is an unknown function of the file btnfunctions.php of the component Picture Handler. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The...

8.8CVSS6.2AI score0.00939EPSS
Exploits1References3
Rows per page
Query Builder