2118 matches found
Exploit for CVE-2025-52691
CVE‑2025‑52691 – SmarterMail Arbitrary File Upload Vulnerabili...
CVE-2025-57460
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...
EUVD-2025-205584
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...
CVE-2025-57460
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...
CVE-2025-57460
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...
MachSol MachPanel 安全漏洞
MachSol MachPanel is a cloud automation control panel and billing platform from US-based MachSol. A security vulnerability exists in MachSol MachPanel version 8.0.32, which stems from a flaw in the file upload functionality that could lead to the acquisition of a webshell...
CVE-2025-57460
MachSol MachPanel 8.0.32 is affected by a file upload vulnerability that enables an attacker to gain a webshell. The Red Hat, ENISA, NVD, CNNVD, CVE records concur on the issue being a file upload flaw in MachPanel 8.0.32, with high impact (C/H/I/A) and network access. Root cause is described as ...
CVE-2025-57460
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...
PT-2025-53721
Name of the Vulnerable Software and Affected Versions machsol machpanel version 8.0.32 Description A file upload issue exists in machsol machpanel version 8.0.32 that could allow an attacker to gain a webshell. The vulnerability involves the ability to upload malicious files, potentially leading ...
CVE-2025-57460
File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell...
Linux Distros Unpatched Vulnerability : CVE-2025-67436
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme...
📄 Adobe Commerce Insecure Deserialization
This flaw in Magento 2 / Adobe Commerce 2.4.x enables remote attackers to manipulate internal session handling paths and abuse PHP object chains Guzzle FileCookieJar gadget to achieve arbitrary file write, leading to remote code execution...
CVE-2025-67436
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
EUVD-2025-204758
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
CVE-2025-67436
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
CVE-2025-67436
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
CVE-2025-67436
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
UBUNTU-CVE-2025-67436
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
CVE-2025-67436
Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file e.g., home.php...
CVE-2025-67436
CVE-2025-67436 affects PluXml CMS 5.8.22. A authenticated administrator can inject a malicious PHP webshell into a theme file (e.g., home.php), enabling remote code execution. The exploit details in related PT-2025-52722 confirm the vulnerability arises from module/theme file handling allowing ar...