CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CNNVD•added 2026/04/21 12:0 a.m.•4 views

Visitor Management System 安全漏洞

The Visitor Management System is a system for managing visitors. Version 1.0 of the Visitor Management System has security vulnerabilities. These vulnerabilities stem from the lack of validation in the upload functions of the vms/php/adminuserinsert.php and vms/php/update1.php files, which may le...

7.2CVSS6.1AI score0.00144EPSS

Exploits1References1

CVE•added 2026/04/21 12:0 a.m.•2 views

CVE-2026-37748

CVE-2026-37748 affects Visitor Management System 1.0 by sanjay1313. The vulnerability is an Unrestricted File Upload in vms/php/admin_user_insert.php and vms/php/update_1.php, where move_uploaded_file() runs without MIME type, extension, or content validation. This allows an authenticated admin t...

7.2CVSS5.9AI score0.00144EPSS

Exploits1References2Affected Software1

Debian CVE•added 2021/09/09 2:41 p.m.•26 views

CVE-2021-22239

Removed by vendor...

5CVSS5.8AI score0.00165EPSS

Exploits0

0day.today•added 2018/09/06 12:0 a.m.•20 views

osCommerce 2.3.4.1 Cross Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: osCommerce Add Admin User CSRF Vulnerability Exploit Author: Hesam Bazvand Contact: email protected Download Link: https://www.oscommerce.com/Products&Download=oscom2341 Tested on: Windows 10 / Kali Linux Category: WebApps...

0.1AI score

Exploits0

Prion•added 2010/04/29 7:30 p.m.•12 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in index.php in OpenCart 1.4 allows remote attackers to hijack the authentication of an application administrator for requests that create an administrative account via a POST request with the route parameter set to "user/user/insert." NOTE: some of...

6.8CVSS7.5AI score0.00164EPSS

Exploits0References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by