Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Vulnrichment
Vulnrichmentadded 2018/12/31 8:0 p.m.5 views

CVE-2018-6334

Multipart-file uploads call variables to be improperly registered in the global scope. In cases where variables are not declared explicitly before being used this can lead to unexpected behavior. This affects all supported versions of HHVM prior to the patch 3.25.1, 3.24.5, and 3.21.9 and below...

9.4AI score0.0063EPSS
Exploits0References2
Prion
Prionadded 2018/12/31 7:29 p.m.15 views

Design/Logic Flaw

Multipart-file uploads call variables to be improperly registered in the global scope. In cases where variables are not declared explicitly before being used this can lead to unexpected behavior. This affects all supported versions of HHVM prior to the patch 3.25.1, 3.24.5, and 3.21.9 and below...

7.5CVSS9.3AI score0.0063EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2018/12/31 7:29 p.m.15 views

CVE-2018-6334

Multipart-file uploads call variables to be improperly registered in the global scope. In cases where variables are not declared explicitly before being used this can lead to unexpected behavior. This affects all supported versions of HHVM prior to the patch 3.25.1, 3.24.5, and 3.21.9 and below...

9.8CVSS6.8AI score
Exploits0References2
seebug.org
seebug.orgadded 2015/03/05 12:0 a.m.28 views

嘉缘人才系统sql注入#4

简要描述: 求20rank 详细说明: 看到\frcms\wap\index.php $rid='';$title='我的求职简历';$chinese=$cnstatus=$visitnum=$personinfo=1; $member=$login;$adddate=dtime$frtime,6;$flag=$regpArray4==1?0:1; $rsqls=$rsqlss=''; foreach$rsqlstr as $v $v=strreplace'r','',$v; ifisset$$v $rsqls.="r$v,"; $rsqlss.="'".cleartags$$v."',...

7.1AI score
Exploits0
myhack58
myhack58added 2011/11/15 12:0 a.m.18 views

DEDECMS global variable overwrite vulnerability science-vulnerability warning-the black bar safety net

DEDECMS global variable overwrite vulnerability was first wolves security team 0 9 published in the official soften up until now didn't repair the vulnerability, and now covers substantially DEDECMS full version. Personal guess is not the official deliberately left the back door. The following...

0.5AI score
Exploits0
myhack58
myhack58added 2011/10/17 12:0 a.m.19 views

DEDECMS full version gotopage variable XSS ROOTKITS, 0DAY-vulnerability warning-the black bar safety net

Affected versions: DEDECMS full version The vulnerability described in: DEDECMS background landing template gotopage variable is not tested incoming data, leading toXSSvulnerabilities. \dede\templets\login.htm 6 5 the left and right input type="hidden" name="gotopage" value="? php if!...

1.3AI score
Exploits0
Rows per page
Query Builder