Lucene search
K

116 matches found

Snyk
Snyk
added 2026/03/25 9:28 p.m.2 views

Arbitrary File Upload

Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Arbitrary File Upload through the downloadVideoFromDownloadURL function. A user with upload permissions can execute arbitrary code on the server by uploading a...

8.8CVSS6.1AI score0.00395EPSS
Exploits1References2
NVD
NVD
added 2026/03/20 12:16 a.m.6 views

CVE-2026-32985

Xerte Online Toolkits versions 3.14 and earlier contain an unauthenticated arbitrary file upload vulnerability in the template import functionality that allows remote attackers to execute arbitrary code by uploading a crafted ZIP archive containing malicious PHP payloads. Attackers can bypass...

9.8CVSS0.01479EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.10 views

PT-2026-21780

Name of the Vulnerable Software and Affected Versions Altec DocLink version 4.0.336.0 Description The software has insecure .NET Remoting endpoints exposed over TCP and HTTP/SOAP via Altec.RDCHostService.exe using the ObjectURI "doclinkServer.soap". The service does not require authentication and...

10CVSS6.2AI score0.00739EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/02/18 12:0 a.m.5 views

CVE-2025-70151

code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code execution via unrestricted file upload. The endpoints updateprofilepicture.php and uploadpicture.php store uploaded files in a web-accessible uploads/ directory using the original, user-supplied...

8.8CVSS6.8AI score0.00589EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/06 1:26 a.m.18 views

CVE-2025-69906

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to...

8.8CVSS8.5AI score0.00681EPSS
Exploits2References1
CVE
CVE
added 2026/02/05 12:0 a.m.14 views

CVE-2025-69906

CVE-2025-69906 affects Monstra CMS v3.0.4, specifically the Files Manager plugin. The vulnerability arises from blacklist-based file extension validation and storing uploaded files in a web-accessible directory, enabling remote code execution when uploaded files are interpreted as executable code...

8.8CVSS8.6AI score0.00681EPSS
Exploits2References2Affected Software1
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.12 views

Monstra CMS 安全漏洞

Monstra CMS is a lightweight content management system CMS developed by Sergey Romanenko from Ukraine using PHP. Version 3.0.4 of Monstra CMS has a security vulnerability. This vulnerability stems from the Files Manager plugin, which allows arbitrary file uploads. The application relies on...

8.8CVSS7.7AI score0.00681EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2026/02/05 12:0 a.m.4 views

CVE-2025-69906

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to...

6.1AI score0.00681EPSS
Exploits2References2
Cvelist
Cvelist
added 2026/02/05 12:0 a.m.29 views

CVE-2025-69906

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to...

0.00681EPSS
Exploits2References2
Github Security Blog
Github Security Blog
added 2026/02/02 9:52 p.m.12 views

CI4MS Vulnerable to Remote Code Execution (RCE) via Arbitrary File Creation and Save in File Editor

Summary A critical vulnerability has been identified in CI4MS that allows an authenticated user with file editor permissions to achieve Remote Code Execution RCE. By leveraging the file creation and save endpoints, an attacker can upload and execute arbitrary PHP code on the server. Vulnerability...

9.9CVSS6.5AI score0.00805EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/01/05 12:0 a.m.31 views

CVE-2025-67303

An issue in ComfyUI-Manager prior to version 3.38 allowed remote attackers to potentially manipulate its configuration and critical data. This was due to the application storing its files in an insufficiently protected location that was accessible via the web interface...

0.01361EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2025/12/26 12:0 a.m.220 views

📄 FuguHub 8.1 RSA Private Key Disclosure

A web-accessible documentation file in FuguHub version 8.1 was found to contain an embedded RSA private key paired with an X.509 certificate. The affected file resides within an examples directory and is intended solely for demonstration purposes...

6.1CVSS7AI score0.00218EPSS
Exploits3
Cvelist
Cvelist
added 2025/12/05 4:29 a.m.30 views

CVE-2025-13494 SSP Debug <= 1.0.0 - Unauthenticated Sensitive Information Exposure

The SSP Debug plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.0. This is due to the plugin storing PHP error logs in a predictable, web-accessible location wp-content/uploads/ssp-debug/ssp-debug.log without any access controls. This...

5.3CVSS0.00256EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/05 4:29 a.m.6 views

EUVD-2025-201342

The SSP Debug plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.0. This is due to the plugin storing PHP error logs in a predictable, web-accessible location wp-content/uploads/ssp-debug/ssp-debug.log without any access controls. This...

5.3CVSS5.2AI score0.00256EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/05 12:0 a.m.6 views

PT-2025-49194

The SSP Debug plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.0. This is due to the plugin storing PHP error logs in a predictable, web-accessible location wp-content/uploads/ssp-debug/ssp-debug.log without any access controls. This...

5.3CVSS5.7AI score0.00256EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/03 8:57 a.m.5 views

CVE-2025-13516

The SureMail – SMTP and Email Logs Plugin for WordPress is vulnerable to Unrestricted Upload of File with Dangerous Type in versions up to and including 1.9.0. This is due to the plugin's savefile function in inc/emails/handler/uploads.php which duplicates all email attachments to a web-accessibl...

8.1CVSS7.4AI score0.00891EPSS
Exploits0References1
CVE
CVE
added 2025/12/02 8:24 a.m.35 views

CVE-2025-13516

The SureMail – SMTP and Email Logs Plugin for WordPress is affected by an Unauthenticated Arbitrary File Upload in versions

8.1CVSS7.1AI score0.00891EPSS
Exploits0References6
EUVD
EUVD
added 2025/11/11 12:30 p.m.8 views

EUVD-2025-84363

The TNC Toolbox: Web Performance plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.2. This is due to the plugin storing cPanel API credentials hostname, username, and API key in files within the web-accessible wp-content directory witho...

10CVSS6.6AI score0.01041EPSS
Exploits1References3
NVD
NVD
added 2025/11/11 11:15 a.m.8 views

CVE-2025-12539

The TNC Toolbox: Web Performance plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.2. This is due to the plugin storing cPanel API credentials hostname, username, and API key in files within the web-accessible wp-content directory witho...

10CVSS0.01041EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/22 1:13 p.m.14 views

CVE-2025-60500

QDocs Smart School Management System 7.1 allows authenticated users with roles such as "accountant" or "admin" to bypass file type restrictions in the media upload feature by abusing the alternate YouTube URL option. This logic flaw permits uploading of arbitrary PHP files, which are stored in a...

7.2CVSS6.9AI score0.00482EPSS
Exploits1References1
Rows per page
Query Builder