Lucene search
K

13 matches found

Circl
Circl
added 2026/05/09 10:47 p.m.16 views

CVE-2026-45347

creationtimestamp| type| source ---|---|--- 2026-05-09 22:47:27+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-f776-fp4w-266c 2026-05-16 00:51:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlwmx6fwfz2t...

5.4CVSS5.7AI score0.00186EPSS
Exploits1References2
EUVD
EUVD
added 2025/11/10 5:21 p.m.1 views

EUVD-2025-45347

Malicious code in scornfulduckz3n npm...

6.6AI score
Exploits0
Circl
Circl
added 2025/06/23 9:44 a.m.10 views

CVE-2024-45347

creationtimestamp| type| source ---|---|--- 2025-06-23 09:44:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19186 2025-06-23 10:03:28+00:00| published-proof-of-concept| Telegram/GDm1H2yMsUWi0B2hrQwSaQ-hj0W8UNWimUdimX7TtAl1LE 2025-06-23 11:14:00+00:00| seen|...

9.6CVSS4.8AI score0.00229EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/06/23 9:34 a.m.11 views

CVE-2024-45347 Mi Connect Service APP protocol flaws lead to unauthorized access

An unauthorized access vulnerability exists in the Xiaomi Mi Connect Service APP. The vulnerability is caused by the validation logic is flawed and can be exploited by attackers to Unauthorized access to the victim’s device...

9.6CVSS0.00229EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:47 p.m.15 views

CVE-2022-45347

Apache ShardingSphere-Proxy prior to 5.3.0 when using MySQL as database backend didn't cleanup the database session completely after client authentication failed, which allowed an attacker to execute normal commands by constructing a special MySQL client. This vulnerability has been fixed in Apac...

9.8CVSS7.3AI score0.01388EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/02 2:4 p.m.23 views

CVE-2023-45347 Online Food Ordering System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'verified' parameter of the routers/user-router.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS10AI score0.007EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/11/02 2:4 p.m.14 views

CVE-2023-45347 Online Food Ordering System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)

Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'verified' parameter of the routers/user-router.php resource does not validate the characters received and they are sent unfiltered to the database...

9.8CVSS8.2AI score0.007EPSS
Exploits1References2
CVE
CVE
added 2022/12/22 10:47 a.m.73 views

CVE-2022-45347

The CVE-2022-45347 issue affects Apache ShardingSphere-Proxy prior to 5.3.0 when using MySQL as the backend. The root cause is incomplete cleanup of the database session after client authentication fails, which could allow an attacker to issue normal commands by connecting with a crafted MySQL cl...

9.8CVSS9.7AI score0.01388EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/12/22 10:47 a.m.30 views

CVE-2022-45347 Apache ShardingSphere-Proxy: MySQL authentication bypass

Apache ShardingSphere-Proxy prior to 5.3.0 when using MySQL as database backend didn't cleanup the database session completely after client authentication failed, which allowed an attacker to execute normal commands by constructing a special MySQL client. This vulnerability has been fixed in Apac...

9.9AI score0.01388EPSS
Exploits0References1
OSV
OSV
added 2022/12/22 10:47 a.m.13 views

CVE-2022-45347 Apache ShardingSphere-Proxy: MySQL authentication bypass

Apache ShardingSphere-Proxy prior to 5.3.0 when using MySQL as database backend didn't cleanup the database session completely after client authentication failed, which allowed an attacker to execute normal commands by constructing a special MySQL client. This vulnerability has been fixed in Apac...

9.8CVSS7.1AI score0.01388EPSS
Exploits0References3
Circl
Circl
added 2022/02/14 10:33 p.m.4 views

CVE-2021-45347

creationtimestamp| type| source ---|---|--- 2022-02-14 22:33:06+00:00| seen| https://t.me/cibsecurity/37445...

7.5CVSS7.4AI score0.01166EPSS
Exploits1References1
OSV
OSV
added 2022/02/14 7:15 p.m.14 views

CVE-2021-45347

An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password...

7.5CVSS7AI score
Exploits0References1
CVE
CVE
added 2022/02/14 6:35 p.m.75 views

CVE-2021-45347

CVE-2021-45347 affects zzcms 8.2. It is an Incorrect Access Control vulnerability allowing an unauthenticated attacker to bypass login by changing the username in the cookie to use any password. The connected sources consistently describe this flaw as an authentication bypass in zzcms 8.2. No spe...

7.5CVSS7.6AI score0.01166EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder