CVE-2025-57460

File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...

EUVD-2025-205584

File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...

CVE-2025-57460

MachSol MachPanel 8.0.32 is affected by a file upload vulnerability that enables an attacker to gain a webshell. The Red Hat, ENISA, NVD, CNNVD, CVE records concur on the issue being a file upload flaw in MachPanel 8.0.32, with high impact (C/H/I/A) and network access. Root cause is described as ...

CVE-2025-57460

File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...

CVE-2025-41694

A low privileged remote attacker can run the webshell with an empty command containing whitespace. The server will then block until it receives more data, resulting in a DoS condition of the websserver...

EUVD-2020-11207

Malware in sbrugna...

EUVD-2020-11787

Malware in sbrugna...

EUVD-2021-30951

Malicious code in bioql PyPI...

Exploit for Code Injection in Ispconfig

CVE-2023-46818 PoC This is a python implemntation of the PoC p...

CVE-2021-44093

A Remote Command Execution vulnerability on the background in zrlog 2.2.2, at the upload avatar function, could bypass the original limit, upload the JSP file to get a WebShell...

CVE-2020-19302

An arbitrary file upload vulnerability in the avatar upload function of vaeThink v1.0.1 allows attackers to open a webshell via changing uploaded file suffixes to ".php"...

CVE-2021-4096

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...

Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity

Exploiting CVE-2024-27198-RCE Vulnerability In this project, I...

CVE-2024-8463

File upload restriction bypass vulnerability in PHPGurukul Job Portal 1.0, the exploitation of which could allow an authenticated user to execute an RCE via webshell...

PT-2024-21265 · Amss++ · Amss++

Name of the Vulnerable Software and Affected Versions: AMSS++ version 4.31 Description: The issue is related to a file upload restriction evasion vulnerability. This could allow an authenticated user to potentially obtain remote code execution RCE through a webshell, compromising the entire...

PT-2023-12130 · Unknown · Cms Made Simple

Name of the Vulnerable Software and Affected Versions: CMS Made Simple versions through 2.2.15 Description: The issue allows remote authenticated attackers to gain a webshell via a crafted phar file. This is achieved through a file upload vulnerability. Recommendations: For versions through 2.2.1...

WordPress plugin Fancy Product Designer cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress plugin Fancy Product Designer, which...

CVE-2021-4096

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...

CVE-2021-4096

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...

Cross site request forgery (csrf)

The Fancy Product Designer plugin for WordPress is vulnerable to Cross-Site Request Forgery via the FPDAdminImport class that makes it possible for attackers to upload malicious files that could be used to gain webshell access to a server in versions up to, and including, 4.7.5...