CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Prion•added 2022/10/17 2:15 p.m.•16 views

Privilege escalation

An arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary code via a crafted PHP file...

7.5CVSS9.5AI score0.00801EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/10/17 12:0 a.m.•16 views

CVE-2022-42154

An arbitrary file upload vulnerability in the component /apiadmin/upload/attach of 74cmsSE v3.13.0 allows attackers to execute arbitrary code via a crafted PHP file...

9.8AI score0.00801EPSS

Exploits1References1

CVE•added 2022/10/17 12:0 a.m.•252 views

CVE-2022-42154

CVE-2022-42154 involves an arbitrary file upload vulnerability in the 74cmsSE web app, specifically the "/apiadmin/upload/attach" endpoint. A crafted PHP file can be uploaded, enabling attackers to achieve arbitrary code execution on v3.13.0. The CVSS v3.1 score is 9.8 (CRITICAL) with network att...

9.8CVSS9.5AI score0.00801EPSS

Exploits1References1Affected Software1

NVD•added 2022/05/11 12:15 p.m.•7 views

CVE-2020-19228

An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files...

9CVSS0.00629EPSS

Exploits1References2

OSV•added 2022/05/11 12:15 p.m.•14 views

CVE-2020-19228

An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files...

7.2CVSS7AI score

Exploits0References2

Prion•added 2022/05/11 12:15 p.m.•10 views

Design/Logic Flaw

An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files...

9CVSS7AI score0.00629EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/05/11 12:0 p.m.•13 views

CVE-2020-19228

An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files...

7AI score0.00629EPSS

Exploits1References2

CVE•added 2022/05/11 12:0 p.m.•45 views

CVE-2020-19228

The CVE-2020-19228 entry concerns Bludit v3.13.0, where an unsafe backup-plugin implementation allows attackers to upload arbitrary files. The vulnerability is described with high severities in CVSS terms (AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H) across both CVSSv3.1 and CVSSv2, indicating network-ex...

9CVSS7AI score0.00629EPSS

Exploits1References2Affected Software1

NVD•added 2021/09/01 12:15 a.m.•9 views

CVE-2020-20495

bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the deleteBackup' parameter...

9.1CVSS0.00592EPSS

Exploits1References1

OSV•added 2021/09/01 12:15 a.m.•10 views

CVE-2020-20495

bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the deleteBackup' parameter...

9.1CVSS7AI score

Exploits0References1

Prion•added 2021/09/01 12:15 a.m.•8 views

Arbitrary file deletion

bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the deleteBackup' parameter...

5.8CVSS9.1AI score0.00592EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/08/31 11:7 p.m.•9 views

CVE-2020-20495

bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the deleteBackup' parameter...

9.2AI score0.00592EPSS

Exploits1References1

CVE•added 2021/08/31 11:7 p.m.•38 views

CVE-2020-20495

Bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin, exploitable via the deleteBackup parameter. This affects the backup component and can impact integrity and availability (CVSS:3.1 base score 9.1). No remediation details are provided in the supplied documents. ...

9.1CVSS9.2AI score0.00592EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by