Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2126 matches found

ATTACKERKB
ATTACKERKBadded 2025/11/18 11:6 a.m.4 views

CVE-2025-41347

Unlimited upload vulnerability for dangerous file types in WinPlus v24.11.27 from Informática del Este. This vulnerability allows an attacker to upload a 'webshell' by sending a POST request to '/WinplusPortal/ws/sWinplus.svc/json/uploadfile'...

9.8CVSS5.6AI score0.003EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2025/11/18 12:0 a.m.3 views

Informática del Este WinPlus 代码问题漏洞

Informática del Este WinPlus is a human resource management platform from the Spanish company Informática del Este. A code issue vulnerability exists in Informática del Este WinPlus version v24.11.27, which stems from an unrestricted upload of a dangerous file type that could lead to an attacker...

9.8CVSS6.9AI score0.003EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/11/18 12:0 a.m.4 views

PT-2025-47296

Name of the Vulnerable Software and Affected Versions WinPlus version 24.11.27 Description An issue exists in WinPlus that allows for the upload of dangerous file types. An attacker can upload a 'webshell' by sending a POST request to the ''/WinplusPortal/ws/sWinplus.svc/json/uploadfile'' endpoin...

8.7CVSS6.8AI score0.003EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/11/13 12:0 a.m.4 views

Generex UPS Adapter CS141 Unrestricted Upload of File with Dangerous Type (CVE-2022-47190)

Generex UPS CS141 below 2.06 version, could allow a remote attacker to upload a firmware file containing a webshell that could allow him to execute arbitrary code as root. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

10CVSS8.8AI score0.0157EPSS
Exploits0References4
GithubExploit
GithubExploitadded 2025/11/09 3:34 p.m.145 views

Exploit for SQL Injection in Zoneminder

CVE-2016-10204Webshell A concre...

9.8CVSS7.1AI score0.02082EPSS
Exploits2
GithubExploit
GithubExploitadded 2025/11/06 9:38 a.m.432 views

Exploit for Improper Input Validation in Adobe Commerce

CVE-2025-54236 - Magento Remote Code Execution Exploit Des...

9.1CVSS8.7AI score0.96742EPSS
Exploits9
GithubExploit
GithubExploitadded 2025/10/27 12:46 a.m.253 views

Exploit for Unrestricted Upload of File with Dangerous Type in Pluck-Cms Pluck

Pluck CMS 4.7.13 File Upload RCE Exploit !Exploit Bannerht...

7.2CVSS9AI score0.33428EPSS
Exploits6
The Hacker News
The Hacker Newsadded 2025/10/23 5:47 a.m.7 views

Over 250 Magento Stores Hit Overnight as Hackers Exploit New Adobe Commerce Flaw

E-commerce security company Sansec has warned that threat actors have begun to exploit a recently disclosed security vulnerability in Adobe Commerce and Magento Open Source platforms, with more than 250 attack attempts recorded against multiple stores over the past 24 hours. The vulnerability in...

9.8CVSS9.8AI score0.99994EPSS
Exploits35
RedhatCVE
RedhatCVEadded 2025/10/15 7:38 p.m.8 views

CVE-2025-61678

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS8.1AI score0.50159EPSS
Exploits6References1
NVD
NVDadded 2025/10/14 8:15 p.m.8 views

CVE-2025-61678

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS0.50159EPSS
Exploits6References1
Cvelist
Cvelistadded 2025/10/14 7:33 p.m.9 views

CVE-2025-61678 FreePBX Endpoint Manager vulnerable to authenticated arbitrary file upload via fwbrand parameter

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS0.50159EPSS
Exploits6References1
OSV
OSVadded 2025/10/14 7:33 p.m.4 views

CVE-2025-61678 FreePBX Endpoint Manager vulnerable to authenticated arbitrary file upload via fwbrand parameter

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS8.2AI score0.50159EPSS
Exploits6References1
EUVD
EUVDadded 2025/10/14 7:33 p.m.3 views

EUVD-2025-34456

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS7.7AI score0.50159EPSS
Exploits6References1
ATTACKERKB
ATTACKERKBadded 2025/10/14 7:33 p.m.4 views

CVE-2025-61678

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS6.2AI score0.50159EPSS
Exploits6References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/14 7:33 p.m.1 views

CVE-2025-61678 FreePBX Endpoint Manager vulnerable to authenticated arbitrary file upload via fwbrand parameter

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. In versions prior to 16.0.92 for FreePBX 16 and versions prior to 17.0.6 for FreePBX 17, the Endpoint Manager module contains an authenticated arbitrary file upload vulnerability affecting the fwbrand...

8.6CVSS7.9AI score0.50159EPSS
Exploits6References1
GithubExploit
GithubExploitadded 2025/10/14 2:18 p.m.173 views

Exploit for Improper Authentication in Apache Activemq

Apache ActiveMQ CVE-2022-41678 Vulnerability Exploitation Tool...

8.8CVSS7.9AI score0.8581EPSS
Exploits2
Positive Technologies
Positive Technologiesadded 2025/10/14 12:0 a.m.3 views

PT-2025-42186

Name of the Vulnerable Software and Affected Versions FreePBX Endpoint Manager versions prior to 16.0.92 FreePBX Endpoint Manager versions prior to 17.0.6 Description The FreePBX Endpoint Manager module contains an authenticated arbitrary file upload issue. The fwbrand parameter allows an attacke...

8.6CVSS7.9AI score0.50159EPSS
Exploits6References19
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2019-6730

Malware in sbrugna...

8.8CVSS8.6AI score0.33236EPSS
Exploits7References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-15645

Malware in sbrugna...

7.2CVSS7AI score0.01294EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-1988

Malware in sbrugna...

8.8CVSS8.8AI score0.02137EPSS
Exploits0References3
Rows per page
Query Builder