Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 7:10 a.m.7 views

CVE-2024-55417

DevDojo Voyager through version 1.8.0 is vulnerable to bypassing the file type verification when an authenticated user uploads a file via /admin/media/upload. An authenticated user can upload a web shell causing arbitrary code execution on the server...

4.3CVSS5.2AI score0.17764EPSS
Exploits1References1
Veracode
Veracodeadded 2025/04/22 2:46 p.m.7 views

OS Command Injection

tcg/voyager is vulnerable to OS Command Injection. The vulnerability is due to insufficient validation of input passed to a specific PHP Artisan command, allowing authenticated administrators to execute arbitrary OS commands in Laravel 8 or later...

9.1CVSS7.5AI score0.00233EPSS
Exploits0References5Affected Software1
Snyk
Snykadded 2025/04/14 6:31 p.m.1 views

Arbitrary Argument Injection

Overview Affected versions of this package are vulnerable to Arbitrary Argument Injection via a specific php artisan command at the /admin/compass endpoint. An attacker can execute arbitrary OS commands by injecting arguments into the command execution process. This is only exploitable if the...

9.1CVSS8.1AI score0.00233EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/04/14 12:0 a.m.1 views

Voyager 安全漏洞

Voyager is an application by David Borland Personal Developer. A security vulnerability exists in Voyager versions 1.4.0 through 1.8.0 that originates from an authenticated administrator being able to execute arbitrary OS commands via specific php artisan commands...

9.1CVSS7.1AI score0.00233EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/01/30 12:0 a.m.3 views

Voyager 安全漏洞

Voyager is an application by David Borland Personal Developer. A security vulnerability exists in Voyager version 1.8.0 and earlier, which stems from vulnerability to path traversal attacks via /admin/compass...

5.7CVSS9AI score0.63776EPSS
Exploits1References3
CNNVD
CNNVDadded 2025/01/30 12:0 a.m.2 views

Voyager 安全漏洞

Voyager is an application by David Borland, an individual developer. A security vulnerability exists in Voyager version 1.8.0 and earlier, which stems from the ease of bypassing file type validation when an authenticated user uploads a file via /admin/media/upload...

4.3CVSS8.9AI score0.17764EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/01/30 12:0 a.m.4 views

Voyager 安全漏洞

Voyager is an application by David Borland Personal Developer. A security vulnerability exists in Voyager version 1.8.0 and earlier, which stems from vulnerability to reflective cross-site scripting XSS attacks via /admin/compass...

3.5CVSS8.1AI score0.0128EPSS
Exploits1References3
Snyk
Snykadded 2025/01/27 10:0 p.m.2 views

Arbitrary File Upload

Overview Affected versions of this package are vulnerable to Arbitrary File Upload at the /admin/media/upload, which checks file types in the upload function. An authenticated user with the browsemedia privilege can provide a file spoofing one of the allowedMimeTypes, that contains malicious code...

6.5CVSS6.8AI score0.17764EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/04/26 12:0 a.m.3 views

Voyager 安全漏洞

Voyager is an application by David Borland Personal Developer. A security vulnerability exists in Voyager version v.1.4 and earlier versions, which stems from the presence of an insecure privilege vulnerability. An attacker can exploit this vulnerability to execute arbitrary code via specially...

9.8CVSS8.9AI score0.01731EPSS
Exploits0References2
Rows per page
Query Builder