Back

Multiple CVEs Disclosed for php web scripts, getcujo, buildroot.org, and Sricam

Severity: Medium (Score: 51.1)

Sources: Radicalnotion.Ai

Published: 2026-06-03 · Updated: 2026-06-03

Keywords: vulnerabilities, cisa, known, cves, getcujo, security, advisories

Severity indicators: vulnerabilities

Summary

Four vendors have disclosed vulnerabilities through their respective CVE records. php web scripts has 7 CVEs since 2005, with 5 having known public exploits. getcujo has 7 CVEs since 2019, but none are exploited. buildroot.org has 6 CVEs since 2023, also with no public exploits. Sricam has 5 CVEs since 2019, with 4 having known public exploits. None of the vulnerabilities are listed in CISA's Known Exploited Vulnerabilities catalog. The average CVSS scores for the affected products range from 6.4 to 8.1, indicating varying levels of severity across these vulnerabilities. Key Points: • php web scripts has 7 CVEs, 5 with known public exploits. • getcujo and buildroot.org have CVEs but no public exploits reported. • Sricam has 5 CVEs, 4 of which are actively exploitable.

Detailed Analysis

**Impact** The vulnerabilities affect multiple products across php web scripts, getcujo, buildroot.org, and Sricam, with a total of 25 CVEs disclosed since 2005 or later. None of these CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, indicating no confirmed widespread exploitation. However, 5 php web scripts CVEs and 4 Sricam CVEs have known public exploits, increasing risk for users in sectors relying on these technologies. The average CVSS scores range from 6.4 (Sricam) to 8.1 (buildroot.org), suggesting moderate to high severity impacting web applications, embedded systems, and IoT devices globally. **Technical Details** No specific attack vectors, TTPs, malware, or infrastructure details are provided. The disclosed CVEs include 7 for php web scripts, 7 for getcujo, 6 for buildroot.org, and 5 for Sricam, with some having public exploit code but none currently exploited in the wild per CISA. The vulnerabilities span multiple weakness types, but no IOCs or kill chain stages are detailed in the sources. **Recommended Response** Apply all available patches and updates for php web scripts, getcujo, buildroot.org, and Sricam products promptly, prioritizing those with public exploits. Implement monitoring for unusual activity related to these products and review configurations to reduce attack surface. Since no active exploitation is reported, maintain vigilance for emerging threat intelligence and update detection rules accordingly.

Source articles (5)

  • php web scripts Vulnerabilities: CVEs, CISA KEV & Security Advisories — Radicalnotion.Ai · 2026-06-03
    php web scripts has 7 published CVE records since 2005, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 5 have a known public exploit. This page aggregates every publicly disclose…
  • getcujo Vulnerabilities: CVEs, CISA KEV & Security Advisories — Radicalnotion.Ai · 2026-06-03
    getcujo has 7 published CVE records since 2019, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs is 7.…
  • ramonsilva20 Vulnerabilities: CVEs, CISA KEV & Security Advisories — Radicalnotion.Ai · 2026-06-03
    ramonsilva20 has 7 published CVE records since 2017, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 4 have a known public exploit. The average CVSS base score across scored CVEs…
  • buildroot.org Vulnerabilities: CVEs, CISA KEV & Security Advisories — Radicalnotion.Ai · 2026-06-03
    buildroot.org has 6 published CVE records since 2023, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs…
  • Sricam Vulnerabilities: CVEs, CISA KEV & Security Advisories — Radicalnotion.Ai · 2026-06-03
    Sricam has 5 published CVE records since 2019, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 4 have a known public exploit. The average CVSS base score across scored CVEs is 6.4…

Timeline

  • 2026-06-03 — php web scripts CVEs disclosed: 7 CVEs published since 2005, with 5 having known public exploits.
  • 2026-06-03 — getcujo CVEs disclosed: 7 CVEs published since 2019, none with known public exploits and an average CVSS score of 7.8.
  • 2026-06-03 — buildroot.org CVEs disclosed: 6 CVEs published since 2023, none with known public exploits and an average CVSS score of 8.1.
  • 2026-06-03 — Sricam CVEs disclosed: 5 CVEs published since 2019, 4 of which have known public exploits and an average CVSS score of 6.4.

Related entities

  • Getcujo (Company)
  • Sricam (Company)
  • buildroot.org (Domain)
  • PHP (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed