Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-28189

Malware in sbrugna...

9.9CVSS8.9AI score0.03072EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-28326

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0111EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-35344

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00729EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-10961

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00575EPSS
Exploits1References2
NVD
NVD
added 2025/07/30 4:16 a.m.6 views

CVE-2025-8323

The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...

8.8CVSS0.00582EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/04 12:0 a.m.26 views

CVE-2025-29093

File Upload vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker to execute arbitrary code via the Content/Gallery/Images component...

0.00511EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:55 a.m.6 views

CVE-2024-28424

zenml v0.55.4 was discovered to contain an arbitrary file upload vulnerability in the load function at /materializers/cloudpicklematerializer.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...

8.8CVSS8.9AI score0.00713EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:58 a.m.6 views

CVE-2024-53345

An authenticated arbitrary file upload vulnerability in Car Rental Management System v1.0 to v1.3 allows attackers to execute arbitrary code via uploading a crafted file...

8.8CVSS7.6AI score0.01277EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:5 a.m.8 views

CVE-2023-37692

An arbitrary file upload vulnerability in October CMS v3.4.4 allows attackers to execute arbitrary code via a crafted file...

5.4CVSS7.7AI score0.00493EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 1:23 a.m.6 views

CVE-2022-43146

An arbitrary file upload vulnerability in the image upload function of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

7.2CVSS7.9AI score0.00979EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:46 p.m.8 views

CVE-2022-29725

An arbitrary file upload in the image upload component of wityCMS v0.6.2 allows attackers to execute arbitrary code via a crafted PHP file...

8.8CVSS7.9AI score0.01327EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.7 views

CVE-2022-29353

An arbitrary file upload vulnerability in the file upload module of Graphql-upload v13.0.0 allows attackers to execute arbitrary code via a crafted filename...

9.8CVSS7.8AI score0.01615EPSS
Exploits1References1
CVE
CVE
added 2025/04/15 12:0 a.m.52 views

CVE-2025-29281

CVE-2025-29281 affects PerfreeBlog 4.0.11, where an arbitrary file upload vulnerability in the attach component lets regular users upload files and execute code within them. The CVSS v3.1 vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H with a base score of 8.8 (HIGH). Exploitation is descr...

8.8CVSS7.7AI score0.00575EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/01/15 11:15 p.m.20 views

CVE-2024-57728

SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files anywhere on the file system by uploading a crafted zip file i.e. zip slip. This can be exploited to execute arbitrary code on the host in the context of the SimpleHelp server user...

7.2CVSS0.07549EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/01/07 12:0 a.m.9 views

CVE-2022-45185

An issue was discovered in SuiteCRM 7.12.7. Authenticated users can use CRM functions to upload malicious files. Then, deserialization can be used to achieve code execution...

7.7AI score0.01117EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/03/14 12:0 a.m.5 views

PT-2024-22427 · Zenml · Zenml

Name of the Vulnerable Software and Affected Versions: zenml version 0.55.4 Description: The issue allows attackers to execute arbitrary code via uploading a crafted file, exploiting an arbitrary file upload vulnerability in the load function at /materializers/cloudpickle materializer.py...

8.8CVSS7.2AI score0.00713EPSS
Exploits0References7
Cvelist
Cvelist
added 2019/10/24 5:30 p.m.15 views

CVE-2019-18417

Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files...

8.8AI score0.0173EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/07/01 8:1 p.m.38 views

CVE-2019-7274

Optergy Proton/Enterprise devices allow Authenticated File Upload with Code Execution as root...

9.7AI score0.29043EPSS
Exploits5References4
exploitpack
exploitpack
added 2018/10/11 12:0 a.m.85 views

jQuery-File-Upload 9.22.0 - Arbitrary File Upload

jQuery-File-Upload 9.22.0 - Arbitrary File Upload Title: jQuery-File-Upload 9.22.0 - Arbitrary File Upload Author: Larry W. Cashdollar, @larry0 Date: 2018-10-09 Vendor: https://github.com/blueimp Download Site: https://github.com/blueimp/jQuery-File-Upload/releases CVE-ID: N/A Vulnerability: The...

7.5CVSS0.1AI score0.97107EPSS
Exploits15
CNVD
CNVD
added 2015/11/10 12:0 a.m.3 views

Denial of Service Vulnerability in Multiple F5 Products (CNVD-2015-07477)

F5 BIG-IP Analytics and others are products of F5 Corporation, USA. f5 BIG-IP Analytics is a suite of web application performance analytics software. apm is a solution that provides secure and unified access to business-critical applications and networks. ltm is a local traffic manager. datastor...

9CVSS7.5AI score0.03892EPSS
Exploits0References1
Rows per page
Query Builder