CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

NVD•added 2026/01/15 7:16 a.m.•5 views

CVE-2025-14457

The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to unauthorized modification of data due to a missing ownership check in the dndcodedropzuploaddelete function in all versions up to, and including, 1.3.9.2. This makes it possible for unauthenticated...

7.4CVSS0.00196EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-19199

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.0019EPSS

Exploits1References5

Cvelist•added 2025/09/29 8:41 p.m.•19 views

CVE-2025-34222 Vasion Print (formerly PrinterLogic) Unauthenticated Admin APIs Used to Modify SSL Certificates

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 VA/SaaS deployments expose four admin routes – /admin/hp/certupload, /admin/hp/certdelete, /admin/certs/ca, and /admin/certs/serviceclients/scid – without any...

10CVSS0.00488EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 5:24 p.m.•5 views

CVE-2020-11701

An issue was discovered in ProVide formerly zFTPServer through 13.1. CSRF exists in the User Web Interface, as demonstrated by granting filesystem access to the public for uploading and deleting files and directories...

8.8CVSS8.6AI score0.00496EPSS

Exploits1References1

CNNVD•added 2023/11/30 12:0 a.m.•3 views

Tyler Technologies Civil and Criminal Electronic Filing Authorization Issue Vulnerability

Tyler Technologies Civil and Criminal Electronic Filing is Tyler Technologies' electronic filing system for criminal and civil cases. A security vulnerability exists in Tyler Technologies Civil and Criminal Electronic Filing. A remote attacker could use this vulnerability to upload, delete, and...

9.4CVSS6.8AI score0.00991EPSS

Exploits0References4

CNNVD•added 2022/05/26 12:0 a.m.•2 views

Desdev DedeCMS 路径遍历漏洞

Desdev DedeCMS Dream Weaving Content Management System is a PHP-based open-source content management system CMS of China Zhuozhuo network Desdev company. The system has content publishing, content management, content editing and content retrieval functions. DedeCMS v5.7.93 version of a security...

6.5CVSS6.7AI score0.01076EPSS

Exploits1References2

OSV•added 2022/03/18 6:15 p.m.•4 views

CVE-2020-25178

ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x using TCP/IP. This communication protocol provides various file system operations, as well as the uploading of applications. Data is transferred over this protocol unencrypted, which could allow a remote...

8.8CVSS5.8AI score

Exploits0References4

OSV•added 2019/06/20 12:15 a.m.•15 views

CVE-2019-12901

Pydio Cells before 1.5.0 fails to neutralize '../' elements, allowing an attacker with minimum privilege to Upload files to, and Delete files/folders from, an unprivileged directory, leading to Privilege escalation...

8.8CVSS6.9AI score

Exploits0References2

CNVD•added 2017/11/30 12:0 a.m.•1 views

Hitachi Vantara Pentaho Business Analytics Platform Cross-Site Request Forgery Vulnerability

Hitachi Vantara Pentaho Business Analytics BA Platform is an open source Business Intelligence BI system from Hitachi Vantara Japan that provides data integration, OLAP services, reporting, dashboards, data mining, and ETL capabilities. A cross-site request forgery vulnerability exists in Hitachi...

8.8CVSS6.9AI score0.00773EPSS

Exploits0References1

Exploit DB•added 1998/12/25 12:0 a.m.•30 views

Allaire ColdFusion Server 4.0 - Remote File Display / Deletion / Upload / Execution

source: https://www.securityfocus.com/bid/115/info To display and delete any file on the system use an URL of the following form: http://www.victim.test/cfdocs/expeval/ExprCalc.cfm?OpenFilePath=C:\the\target\file To upload files to the sever first find out the location of the sample code on the...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by