Lucene search
K
NucleiRecent

4143 matches found

Nuclei
Nuclei
added 2026/02/04 7:0 a.m.18 views

Commvault Initial Administrator Login Process Vulnerability

An issue was discovered in Commvault before 11.36.60.During the brief window between installation and the first administrator login, remote attackers may exploit the default credential to gain admin control. This is limited to the setup phase, before any jobs have been configured. id:...

5.4CVSS7.3AI score0.01104EPSS
Exploits0References3
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.11 views

XWiki REST API - Private Pages Disclosure

A vulnerability in XWiki's REST API allows unauthenticated users to access information about private pages through the pages endpoint. This could lead to disclosure of sensitive information and page metadata. id: CVE-2025-29925 info: name: XWiki REST API - Private Pages Disclosure author:...

8.7CVSS6.2AI score0.00906EPSS
Exploits1
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.7 views

PowerJob List - Authorization Bypass

PowerJob = 5.1.2 contains a broken access control caused by missing authorization in /user/list function, letting remote attackers access unauthorized resources, exploit requires no special privileges. id: CVE-2025-11580 info: name: PowerJob List - Authorization Bypass author: DhiyaneshDk severit...

6.9CVSS5.5AI score0.01013EPSS
Exploits0References2
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.12 views

Fanwei e-cology - SQL Injection

Fanwei e-cology 8.0 contains a sql injection caused by unsanitized user input in the sql parameter of getdata.jsp, letting unauthenticated attackers execute arbitrary SQL queries and access sensitive data. id: CVE-2025-34038 info: name: Fanwei e-cology - SQL Injection author: ritikchaddha severit...

8.7CVSS8.3AI score0.01837EPSS
Exploits1References1
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.140 views

UNA CMS <= 14.0.0-RC4 - PHP Object Injection

The vulnerability is located in the /template/scripts/BxBaseMenuSetAclLevel.php script. Specifically, within the BxBaseMenuSetAclLevel::getCode method. When calling this method, user input passed through the "profileid" POST parameter is not properly sanitized before being used in a call to the...

7.2AI score
Exploits1References2
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.9 views

WeiPHP 5.0 - Path Traversal

WeiPHP 5.0 contains a path traversal caused by insufficient input validation of the picUrl parameter in /public/index.php/material/Material/downloadimgage, letting unauthenticated remote attackers read arbitrary files. id: CVE-2025-34045 info: name: WeiPHP 5.0 - Path Traversal author: pikpikcu...

8.7CVSS6.9AI score0.04311EPSS
Exploits1References2
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.43 views

AfterLogic Aurora and WebMail Pro < 7.7.9 - Full Path Disclosure

AfterLogic Aurora and WebMail Pro products with 7.7.9 and all lower versions are affected by this vulnerability, simply sending an HTTP DELETE request to WebDAV EndPoint with built-in “caldavpublicuser@localhost” and it’s the predefined password “caldavpublicuser” allows the attacker to obtain we...

7.1AI score
Exploits1References2
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.79 views

Temenos Transact - Cross-Site Scripting

Multiple vulnerabilities in Temenos Transact formerly T24 that allows multiple reflected cross-site scripting XSS attacks. id: CVE-2022-38322 info: name: Temenos Transact - Cross-Site Scripting author: qotoz severity: high description: | Multiple vulnerabilities in Temenos Transact formerly T24...

6.2AI score
Exploits0References1
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.155 views

OpenCMS - XML external entity (XXE)

users can execute code without authentication. An attacker can execute malicious requests on the OpenCms server. When the requests are successful vulnerable OpenCms can be exploited resulting in an unauthenticated XXE vulnerability. Based on research OpenCMS versions from 9.0.0 to 10.5.0 are...

7.3CVSS7.5AI score0.02231EPSS
Exploits0References2
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.50 views

Nodogsplash - Directory Traversal

Nodogsplash product was affected by a directory traversal vulnerability that also impacted the OpenWrt product. This vulnerability was addressed in Nodogsplash version 5.0.1. Exploiting this vulnerability, remote attackers could read arbitrary files from the target system. id: CVE-2023-39120 info...

6.9AI score
Exploits0References4
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.206 views

Monitorr Services Configuration - Arbitrary File Upload

A vulnerability was found in Monitorr 1.7.6m. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assets/php/upload.php of the component Services Configuration. The manipulation of the argument fileToUpload leads to unrestricted upload. The...

8.7AI score
Exploits7References3
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.20 views

Twonky Server 8.5.2 on Linux and Windows - Log File Exposure

Twonky Server 8.5.2 contains a broken access control vulnerability caused by bypassing web service API authentication, letting unauthenticated attackers read log files with administrator credentials, exploit requires no authentication id: CVE-2025-13315 info: name: Twonky Server 8.5.2 on Linux an...

9.8CVSS6.8AI score0.32548EPSS
Exploits3References1
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.15 views

TRUfusion Enterprise <= 7.10.4.0 - Authentication Bypass

Hard-Coded Cryptographic key allowing to forge session cookies that can be used to entirely bypass authentication id: CVE-2025-27223 info: name: TRUfusion Enterprise = 7.10.4.0 - Authentication Bypass author: DhiyaneshDK,rcesecurity severity: critical description: | Hard-Coded Cryptographic key...

7.5CVSS6.7AI score0.02102EPSS
Exploits1References3
Nuclei
Nuclei
added 2025/12/15 1:42 a.m.15 views

Django QuerySet.order_by - SQL Injection

Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 contain a SQL injection caused by untrusted input in QuerySet.orderby, letting attackers execute arbitrary SQL commands, exploit requires attacker to control orderby input. id: CVE-2021-35042 info: name: Django QuerySet.orderby - SQL Injection...

9.8CVSS8.2AI score0.44369EPSS
Exploits1References3
Nuclei
Nuclei
added 2025/10/28 12:38 a.m.15 views

Adobe Experience Manager Forms - Insecure Deserialization

Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration vulnerability that could result in arbitrary code execution. An attacker could leverage this vulnerability to bypass security mechanisms and execute code. Exploitation of this issue does not require user...

10CVSS7.8AI score0.87515EPSS
Exploits7References1
Nuclei
Nuclei
added 2025/08/01 1:55 p.m.9 views

Güralp Systems FMUS Series - Unauthenticated Access

Güralp Systems FMUS Series Seismic Monitoring Devices expose an unauthenticated Telnet-based command line interface that allows attackers to modify hardware configurations, manipulate data, or factory reset the device. id: CVE-2025-8286 info: name: Güralp Systems FMUS Series - Unauthenticated...

9.8CVSS7AI score0.01217EPSS
Exploits0References2
Nuclei
Nuclei
added 2025/06/03 7:13 p.m.19 views

Abandoned Cart Lite for WooCommerce - Authentication Bypass

The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.14.2. This is due to insufficient encryption on the user being supplied during the abandoned cart link decode through the plugin. This allows unauthenticated...

9.8CVSS9.6AI score0.41077EPSS
Exploits5References5
Nuclei
Nuclei
added 2025/05/27 9:29 p.m.91 views

WordPress XStore Theme - SQL Injection

SQL Injection vulnerability in the WordPress XStore Theme CVE-2024-33559. This flaw allows remote unauthenticated attackers to execute arbitrary SQL queries via the 's' query parameter in a POST request. id: CVE-2024-33559 info: name: WordPress XStore Theme - SQL Injection author: Haliteroglu...

9.3CVSS8.9AI score0.03553EPSS
Exploits3References5
Nuclei
Nuclei
added 2025/03/28 10:17 a.m.119 views

CrushFTP - Authentication Bypass

CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access. Remote and unauthenticated HTTP requests to CrushFTP may allow attackers to gain unauthorized access. id: CVE-2025-2825 info: name: CrushFTP - Authenticatio...

9.8CVSS7.4AI score0.99301EPSS
Exploits66References4
Nuclei
Nuclei
added 2024/11/11 8:11 p.m.101 views

Jenkins CLI - Java Deserialization

Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an unauthenticated remote code execution. An unauthenticated remote code execution vulnerability allowed attackers to transfer a serialized Java SignedObject object to the Jenkins CLI, that would be deserialized...

9.8CVSS8.3AI score0.99679EPSS
Exploits36References3
Nuclei
Nuclei
added 2024/11/10 10:28 p.m.61 views

GitHub Enterprise - SAML Authentication Bypass

An improper verification of cryptographic signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed resulting in unauthorized provisioning of users and access to the instance. Exploitation required the encrypted assertions feature to be...

9.5CVSS9.3AI score0.22443EPSS
Exploits0References2
Nuclei
Nuclei
added 2024/11/10 11:32 a.m.63 views

Apache Tomcat - Remote Code Execution via JMX Ports

Apache Tomcat versions before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 are vulnerable to remote code execution if JmxRemoteLifecycleListener is used and the JMX ports are exposed to attackers. The vulnerability exists due to inconsistent credentia...

10CVSS8.5AI score0.92334EPSS
Exploits1References2
Nuclei
Nuclei
added 2023/10/17 7:20 a.m.173 views

Enrollment System Project v1.0 - SQL Injection Authentication Bypass

Enrollment System Project V1.0, developed by Sourcecodester, has been found to be vulnerable to SQL Injection SQLI attacks. This vulnerability allows an attacker to manipulate the SQL queries executed by the application. The system fails to properly validate user-supplied input in the username an...

9.8CVSS10AI score0.14242EPSS
Exploits5References5
Nuclei
Nuclei
added 2023/08/16 8:46 a.m.683 views

Harbor <=2.5.3 - Unauthorized Access

An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication id: CVE-2022-46463 info: name: Harbor =2.5.3 - Unauthorized Access author: Arm!tage severity: high description: | An access control issue in Harbor v1.X.X to...

7.5CVSS7.6AI score0.06237EPSS
Exploits2References5
Nuclei
Nuclei
added 2023/07/12 9:13 a.m.31 views

Popup-Maker < 1.8.12 - Broken Authentication

An issue was discovered in the Popup Maker plugin before 1.8.13 for WordPress. An unauthenticated attacker can partially control the arguments of the doaction function to invoke certain popmake or pum methods, as demonstrated by controlling content and delivery of popmake-system-info.txt aka the...

9.1CVSS9.4AI score0.0931EPSS
Exploits2References5
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.49 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manageteam&id=. id: CVE-2022-31980 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to SQL...

7.2CVSS7.4AI score0.01971EPSS
Exploits1References3
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.36 views

Purchase Order Management v1.0 - SQL Injection

Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchaseorder/classes/Master.php?f=deletesupplier. id: CVE-2022-28023 info: name: Purchase Order Management v1.0 - SQL Injection author: theamanrawat severity: critical description: | Purchase Order...

9.8CVSS9.9AI score0.02971EPSS
Exploits1References5
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.44 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/managerequest&id=. id: CVE-2022-31983 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to...

7.2CVSS7.4AI score0.02624EPSS
Exploits1References5
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.32 views

Purchase Order Management v1.0 - SQL Injection

Purchase Order Management v1.0 was discovered to contain a SQL injection vulnerability via the password parameter at /purchaseorder/admin/login.php. id: CVE-2023-29622 info: name: Purchase Order Management v1.0 - SQL Injection author: theamanrawat severity: critical description: | Purchase Order...

9.8CVSS10AI score0.01657EPSS
Exploits1References4
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.31 views

Purchase Order Management v1.0 - SQL Injection

SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter. id: CVE-2021-40908 info: name: Purchase Order Management v1.0 - SQL Injection author: theamanrawat severity:...

9.8CVSS10AI score0.02534EPSS
Exploits1References3
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.44 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/viewrequest&id=. id: CVE-2022-31982 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to S...

7.2CVSS7.4AI score0.01971EPSS
Exploits1References3
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.63 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System 1.0 is vulnerable to SQL Injection via the date parameter. id: CVE-2022-31879 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat,j4vaovo severity: high description: | Online Fire Reporting System 1.0 is vulnerable to SQL Injection via t...

8.8CVSS9.1AI score0.01195EPSS
Exploits1References3
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.37 views

Purchase Order Management v1.0 - SQL Injection

Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchaseorder/classes/Master.php?f=deleteitem. id: CVE-2022-28022 info: name: Purchase Order Management v1.0 - SQL Injection author: theamanrawat severity: critical description: | Purchase Order...

9.8CVSS9.9AI score0.02971EPSS
Exploits1References5
Nuclei
Nuclei
added 2023/06/05 7:3 a.m.48 views

Online Fire Reporting System v1.0 - SQL injection

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/viewteam&id=. id: CVE-2022-31981 info: name: Online Fire Reporting System v1.0 - SQL injection author: theamanrawat severity: high description: | Online Fire Reporting System v1.0 is vulnerable to SQL...

7.2CVSS7.4AI score0.01971EPSS
Exploits1References3
Nuclei
Nuclei
added 2023/04/01 6:50 p.m.11 views

HTTP File Server <2.3c - Remote Command Execution

HTTP File Server before 2.3c is susceptible to remote command execution. The findMacroMarker function in parserLib.pas allows an attacker to execute arbitrary programs via a %00 sequence in a search action. Therefore, an attacker can obtain sensitive information, modify data, and/or gain full...

10CVSS9.8AI score0.99323EPSS
Exploits23References5
Nuclei
Nuclei
added 2023/03/18 10:7 p.m.66 views

SEO Panel 4.8.0 - Blind SQL Injection

SEO Panel 4.8.0 is susceptible to time-based blind SQL injection via the ordercol parameter in archive.php. An attacker can potentially retrieve all databases and thus obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected...

7.2CVSS7.4AI score0.10672EPSS
Exploits4References5
Nuclei
Nuclei
added 2023/02/02 9:44 a.m.404 views

Plesk Obsidian <=18.0.49 - Open Redirect

Plesk Obsidian through 18.0.49 contains an open redirect vulnerability via the login page. An attacker can redirect users to malicious websites via a host request header and thereby access user credentials and execute unauthorized operations. NOTE: The vendor's position is "the ability to use...

6.3AI score0.02157EPSS
Exploits3References5
Nuclei
Nuclei
added 2022/09/30 5:18 p.m.60 views

Sourcecodester Multi Restaurant Table Reservation System 1.0 - SQL Injection

Sourcecodester Multi Restaurant Table Reservation System 1.0 contains a SQL injection vulnerability via the file view-chair-list.php. It does not perform input validation on the tableid parameter, which allows unauthenticated SQL injection. An attacker can send malicious input in the GET request ...

9.8CVSS10AI score0.06093EPSS
Exploits1References5
Nuclei
Nuclei
added 2022/09/30 2:26 p.m.41 views

Sourcecodester Hotel and Lodge Management System 2.0 - SQL Injection

Sourcecodester Hotel and Lodge Management System 2.0 contains a SQL injection vulnerability via the email parameter to the edit page for Customer, Room, Currency, Room Booking Details, or Tax Details. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized...

9.8CVSS9.9AI score0.03446EPSS
Exploits1References4
Nuclei
Nuclei
added 2021/07/26 5:18 p.m.35 views

Django SQL Injection

Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allow SQL injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it is possible to break characte...

8.8CVSS7.8AI score0.22513EPSS
Exploits0References5
Nuclei
Nuclei
added 2021/07/16 5:57 p.m.96 views

phpMyAdmin <4.9.0 - Cross-Site Request Forgery

phpMyAdmin before 4.9.0 is susceptible to cross-site request forgery. An attacker can utilize a broken tag which points at the victim's phpMyAdmin database, thus leading to potential delivery of a payload, such as a specific INSERT or DELETE statement. id: CVE-2019-12616 info: name: phpMyAdmin ta...

6.5CVSS7.6AI score0.19184EPSS
Exploits4References5
Nuclei
Nuclei
added 2021/06/10 12:0 a.m.329 views

WordPress Core <4.7.1 - Username Enumeration

WordPress Core before 4.7.1 is susceptible to user enumeration because it does not properly restrict listings of post authors via wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API, which allows a remote attacker to obtain sensitive information via a...

5.3CVSS5.1AI score0.87095EPSS
Exploits7References5
Nuclei
Nuclei
added 2021/03/21 5:51 p.m.278 views

WordPress Contact Form 7 - Unrestricted File Upload

WordPress Contact Form 7 before 5.3.2 allows unrestricted file upload and remote code execution because a filename may contain special characters. id: CVE-2020-35489 info: name: WordPress Contact Form 7 - Unrestricted File Upload author: soyelmago severity: critical description: WordPress Contact...

10CVSS9.8AI score0.89626EPSS
Exploits4References5
Total number of security vulnerabilities4143