Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-9370

Malware in sbrugna...

6.1CVSS6.3AI score0.00923EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/20 2:32 p.m.12 views

CVE-2025-7895 harry0703 MoneyPrinterTurbo File Extension video.py upload_bgm_file unrestricted upload

A vulnerability, which was classified as critical, was found in harry0703 MoneyPrinterTurbo up to 1.2.6. Affected is the function uploadbgmfile of the file app/controllers/v1/video.py of the component File Extension Handler. The manipulation of the argument File leads to unrestricted upload. It i...

6.5CVSS0.00372EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:21 a.m.7 views

CVE-2015-9530

The Easy Digital Downloads EDD Upload File extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...

6.1CVSS6.2AI score0.00923EPSS
Exploits0References1
CVE
CVE
added 2025/04/08 6:0 p.m.69 views

CVE-2025-32035

DNN (DotNetNuke) prior to version 9.13.2 does not verify file contents during uploads; it only checks file extensions, allowing a malicious file renamed to a benign extension (e.g., executable renamed to .jpg) to be uploaded. The issue is addressed in version 9.13.2. The practical implication is ...

7.5CVSS6.9AI score0.00165EPSS
Exploits0References2Affected Software1
0day.today
0day.today
added 2020/03/03 12:0 a.m.140 views

GUnet OpenEclass 1.7.3 E-learning platform - (month) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: GUnet OpenEclass 1.7.3 E-learning platform - 'month' SQL Injection Google Dork: intext:"© GUnet 2003-2007" Exploit Author: emaragkos Vendor Homepage: https://www.openeclass.org/ Software Link:...

0.1AI score
Exploits0
CNVD
CNVD
added 2019/10/29 12:0 a.m.2 views

WordPress Easy Digital Downloads Upload File extension cross-site scripting vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Easy Digital Downloads EDD Upload File extension is a file upload plugin used in it. A cross-site scripting vulnerability...

6.1CVSS6.4AI score0.00923EPSS
Exploits0References1
Rows per page
Query Builder