CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CVE•added 2026/03/02 2:53 p.m.•4 views

CVE-2025-50191

Chamilo LMS is affected by an error-based SQL injection in the /main/exercise/hotpotatoes.php script via POST to userFile, exploitable on versions prior to 1.11.30. The vulnerability allows an attacker to impact confidentiality and availability (HIGH severity per CVSS 4.0 metrics), with attack ve...

7.2CVSS5.9AI score0.00052EPSS

Exploits1References3Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2006-6895

Malware in sbrugna...

7.5CVSS6.4AI score0.00399EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-4295

Malware in sbrugna...

7.2CVSS6.9AI score0.00509EPSS

Exploits0References2

Positive Technologies•added 2025/04/01 12:0 a.m.•5 views

PT-2025-35790

Name of the Vulnerable Software and Affected Versions Chamilo versions prior to 1.11.30 Description The Chamilo learning management system has an issue due to a lack of validation of XML object sequences. This can allow a remote attacker to execute arbitrary SQL queries. The issue exists in the...

9.4CVSS6.2AI score0.00052EPSS

Exploits1References13

CNNVD•added 2023/07/21 12:0 a.m.•2 views

Chengdu Flash Flood Disaster Monitoring and Warning System 代码问题漏洞

Chengdu Flash Flood Disaster Monitoring and Warning System is a flash flood disaster monitoring and warning system in Chengdu. A code issue exists in version 2.0 of the Chengdu Flash Flood Disaster Monitoring and Warning System where an incorrect operation of the parameter userFile can lead to...

9.8CVSS6.5AI score0.00112EPSS

Exploits1References4

Positive Technologies•added 2023/07/21 12:0 a.m.•2 views

PT-2023-26261 · Unknown · Chengdu Flash Flood Disaster Monitoring/Warning System

Name of the Vulnerable Software and Affected Versions: Chengdu Flash Flood Disaster Monitoring and Warning System version 2.0 Description: A problematic vulnerability was found in the Chengdu Flash Flood Disaster Monitoring and Warning System. This issue affects the file /Service/FileHandler.ashx...

9.8CVSS5.8AI score0.00112EPSS

Exploits1References8

CNVD•added 2017/08/10 12:0 a.m.•2 views

Extplorer Command Injection Vulnerability

eXtplorer is a PHP-based online file management program that supports online browsing of files and folders as well as logging into FTP servers as an FTP client. A command injection vulnerability exists in eXtplorer 2.1.9 and earlier versions. The vulnerability can be exploited to inject commands...

7.2CVSS7.2AI score0.00509EPSS

Exploits0References1