Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

87 matches found

Nuclei
Nucleiadded 7 hours ago20 views

WeiPHP 5.0 - SQL Injection

WeiPHP 5.0 contains a SQL injection vulnerability via the wpwhere function. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. id: CVE-2020-20300 info: name: WeiPHP 5.0 - SQL...

9.8CVSS8AI score0.56461EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2020-13086

Malware in sbrugna...

7.5CVSS7.5AI score0.00614EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-27155

Malicious code in bioql PyPI...

8.4CVSS6.6AI score0.00051EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-19209

Malicious code in bioql PyPI...

8.7CVSS6.5AI score0.28086EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/09/10 12:34 a.m.3 views

CVE-2025-55849

WeiPHP v5.0 and before is vulnerable to SQL Injection via the SucaiController.class.php file and the cancelTemplatee...

8.4CVSS8.1AI score0.00051EPSS
Exploits1References1
NVD
NVDadded 2025/09/08 7:15 p.m.8 views

CVE-2025-55849

WeiPHP v5.0 and before is vulnerable to SQL Injection via the SucaiController.class.php file and the cancelTemplatee...

8.4CVSS0.00051EPSS
Exploits1References2
OSV
OSVadded 2025/09/08 7:15 p.m.3 views

CVE-2025-55849

WeiPHP v5.0 and before is vulnerable to SQL Injection via the SucaiController.class.php file and the cancelTemplatee...

8.4CVSS8.1AI score0.00051EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/09/08 12:0 a.m.10 views

CVE-2025-55849

WeiPHP v5.0 and before is vulnerable to SQL Injection via the SucaiController.class.php file and the cancelTemplatee...

7.5AI score0.00051EPSS
Exploits1References2
CNNVD
CNNVDadded 2025/09/08 12:0 a.m.3 views

Weiphp WeiPHP 安全漏洞

Weiphp WeiPHP is a WeChat development platform that supports the development of public numbers and small programs from Shenzhen Yuanmeng Yun Weiphp Company in China. A security vulnerability exists in Weiphp WeiPHP v5.0 and earlier versions, which originates from a SQL injection in the...

8.4CVSS7.7AI score0.00051EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/09/08 12:0 a.m.3 views

PT-2025-36501

Name of the Vulnerable Software and Affected Versions: WeiPHP versions 5.0 and earlier Description: WeiPHP is susceptible to a SQL injection issue through the SucaiController.class.php file and the cancelTemplatee function. Recommendations: At the moment, there is no information about a newer...

8.4CVSS7AI score0.00051EPSS
Exploits1References7
Cvelist
Cvelistadded 2025/09/08 12:0 a.m.5 views

CVE-2025-55849

WeiPHP v5.0 and before is vulnerable to SQL Injection via the SucaiController.class.php file and the cancelTemplatee...

0.00051EPSS
Exploits1References2
NVD
NVDadded 2025/06/26 4:15 p.m.4 views

CVE-2025-34045

A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...

8.7CVSS0.28086EPSS
Exploits1References3
OSV
OSVadded 2025/06/26 4:15 p.m.1 views

CVE-2025-34045

A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...

7.5CVSS6.7AI score
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/06/26 3:51 p.m.3 views

CVE-2025-34045 WeiPHP Path Traversal Arbitrary File Read

A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...

8.7CVSS6.4AI score0.28086EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/06/26 3:51 p.m.7 views

CVE-2025-34045 WeiPHP Path Traversal Arbitrary File Read

A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...

8.7CVSS0.28086EPSS
Exploits1References3
CVE
CVEadded 2025/06/26 3:51 p.m.23 views

CVE-2025-34045

WeiPHP 5.0 contains a path traversal vulnerability due to insufficient validation of the picUrl parameter in /public/index.php/material/Material/_download_imgage. Unauthenticated remote attackers can read arbitrary files on the server, potentially exposing sensitive data such as configuration fil...

8.7CVSS6.4AI score0.28086EPSS
In wildExploits1References3Affected Software1
Positive Technologies
Positive Technologiesadded 2025/06/26 12:0 a.m.2 views

PT-2025-26994 · Weiphp · Weiphp

Name of the Vulnerable Software and Affected Versions: WeiPHP version 5.0 Description: A path traversal issue exists in the /public/index.php/material/Material/ download imgage endpoint, specifically in the picUrl parameter, where insufficient input validation allows unauthenticated remote...

8.7CVSS7.3AI score0.28086EPSS
Exploits1References9
VulnCheck KEV
VulnCheck KEVadded 2025/06/26 12:0 a.m.1 views

VulnCheck KEV: CVE-2025-34045

A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...

8.7CVSS6AI score0.28086EPSS
In wildExploits1References34
CNNVD
CNNVDadded 2025/06/26 12:0 a.m.2 views

Weiphp WeiPHP 路径遍历漏洞

Weiphp WeiPHP is a WeChat development platform that supports the development of public numbers and small programs by China's Shenzhen Yuanmeng Yun Weiphp company. Weiphp WeiPHP 5.0 version of the existence of path traversal vulnerability, the vulnerability stems from the file...

8.7CVSS6.5AI score0.28086EPSS
Exploits1References4
VulnCheck KEV
VulnCheck KEVadded 2025/06/07 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-20300

SQL injection vulnerability in the wpwhere function in WeiPHP 5.0...

9.8CVSS5.9AI score0.56461EPSS
Exploits1References1
Rows per page
Query Builder