Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11457 matches found

Tenable Nessus
Tenable Nessusadded 2025/12/30 12:0 a.m.1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992691)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992691 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: add check for rioaddnet in rioscanallocnet The return value of rioaddnet should be...

5.5CVSS6.2AI score0.00185EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/12/30 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992306)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992306 advisory. In the Linux kernel, the following vulnerability has been resolved: chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the followin...

5.5CVSS5.8AI score0.00169EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2025/12/29 9:32 p.m.4 views

CVE-2025-15206

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/addarea.php. Executing a manipulation of the argument txtAreaCode can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be us...

9.8CVSS5.3AI score0.00434EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2025/12/29 9:32 p.m.27 views

CVE-2025-15206 Campcodes Supplier Management System add_area.php sql injection

A flaw has been found in Campcodes Supplier Management System 1.0. This impacts an unknown function of the file /admin/addarea.php. Executing a manipulation of the argument txtAreaCode can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be us...

7.5CVSS0.00434EPSS
Exploits1References5
EUVD
EUVDadded 2025/12/29 6:30 p.m.1 views

EUVD-2025-205608

A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file /admin/add-module.php. This manipulation of the argument linked causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

7.5CVSS7.3AI score0.00385EPSS
Exploits1References6
NVD
NVDadded 2025/12/29 4:15 p.m.2 views

CVE-2025-15195

A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file /admin/add-module.php. This manipulation of the argument linked causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

9.8CVSS0.00385EPSS
Exploits1References5
OSV
OSVadded 2025/12/29 4:15 p.m.2 views

CVE-2025-15195

A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file /admin/add-module.php. This manipulation of the argument linked causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

9.8CVSS5.8AI score
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/12/29 4:2 p.m.3 views

CVE-2025-15195 code-projects Assessment Management add-module.php sql injection

A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file /admin/add-module.php. This manipulation of the argument linked causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

7.5CVSS6.8AI score0.00385EPSS
Exploits1References5
CVE
CVEadded 2025/12/29 4:2 p.m.9 views

CVE-2025-15195

Code-Projects Assessment Management 1.0 is affected. The vulnerability lies in /admin/add-module.php where manipulating the linked[] parameter enables SQL injection. The issue can be exploited remotely and exploits have been publicly disclosed. Multiple sources corroborate the SQLi risk and remot...

9.8CVSS7.4AI score0.00385EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2025/12/29 4:2 p.m.27 views

CVE-2025-15195 code-projects Assessment Management add-module.php sql injection

A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue is some unknown functionality of the file /admin/add-module.php. This manipulation of the argument linked causes sql injection. The attack can be initiated remotely. The exploit has been publicly...

7.5CVSS0.00385EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/12/29 12:0 a.m.2 views

Code-Projects Refugee Food Management System SQL注入漏洞

Refugee Food Management System is a refugee food management system. Refugee Food Management System suffers from a SQL injection vulnerability that stems from the incorrect manipulation of parameter a in the file /home/addusers.php, no details of the vulnerability are available at this time...

9.8CVSS7.1AI score0.00326EPSS
Exploits1References7
CNNVD
CNNVDadded 2025/12/29 12:0 a.m.4 views

CampCodes Supplier Management System SQL注入漏洞

CampCodes Supplier Management System is a supplier management system from CampCodes, Inc. A SQL injection vulnerability exists in CampCodes Supplier Management System version 1.0, which stems from an incorrect manipulation of the parameter txtAreaCode in the file /admin/addarea.php, which could...

9.8CVSS7.8AI score0.00434EPSS
Exploits1References6
CNNVD
CNNVDadded 2025/12/28 12:0 a.m.4 views

moga-mall 代码问题漏洞

moga-mall is a microservices architecture based e-commerce platform by h-moses individual developers. A code issue vulnerability exists in moga-mall 392d631a5ef15962a9bddeeb9f1269b9085473fa and earlier versions, which originates from the file...

6.5CVSS6.5AI score0.00202EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2025/12/28 12:0 a.m.6 views

PT-2025-53664

Name of the Vulnerable Software and Affected Versions rawchen ecms affected versions not specified Description A cross site scripting issue exists in rawchen ecms. The updateProductServlet function within the src/servlet/product/updateProductServlet.java file, specifically related to the Add New...

4.8CVSS5.6AI score0.00206EPSS
Exploits0References9
RedhatCVE
RedhatCVEadded 2025/12/27 12:5 a.m.22 views

CVE-2025-67349

A cross-site scripting XSS vulnerability was identified in FluentCMS 1.2.3. After logging in as an admin and navigating to the "Add Page" function, the application fails to properly sanitize input in the...

6.1CVSS5.9AI score0.00261EPSS
Exploits1References1
Snyk
Snykadded 2025/12/26 3:39 p.m.2 views

Cross-site Scripting (XSS)

Overview FluentCMS.Web.UI is a FluentCMS Web UI Affected versions of this package are vulnerable to Cross-site Scripting XSS via the Add Page process. An attacker can execute arbitrary JavaScript code in the context of an administrator's session by injecting malicious script tags into the section...

6.1CVSS5.4AI score0.00261EPSS
Exploits1References2
NVD
NVDadded 2025/12/26 3:15 p.m.3 views

CVE-2025-67349

A cross-site scripting XSS vulnerability was identified in FluentCMS 1.2.3. After logging in as an admin and navigating to the "Add Page" function, the application fails to properly sanitize input in the section, allowing remote attackers to inject arbitrary script tags...

6.1CVSS0.00261EPSS
Exploits1References2
OSV
OSVadded 2025/12/26 3:15 p.m.4 views

CVE-2025-67349

A cross-site scripting XSS vulnerability was identified in FluentCMS 1.2.3. After logging in as an admin and navigating to the "Add Page" function, the application fails to properly sanitize input in the section, allowing remote attackers to inject arbitrary script tags...

6.1CVSS5.8AI score0.00261EPSS
Exploits1References2
Cvelist
Cvelistadded 2025/12/26 12:0 a.m.19 views

CVE-2025-67349

A cross-site scripting XSS vulnerability was identified in FluentCMS 1.2.3. After logging in as an admin and navigating to the "Add Page" function, the application fails to properly sanitize input in the section, allowing remote attackers to inject arbitrary script tags...

0.00261EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/12/26 12:0 a.m.2 views

CVE-2025-67349

A cross-site scripting XSS vulnerability was identified in FluentCMS 1.2.3. After logging in as an admin and navigating to the "Add Page" function, the application fails to properly sanitize input in the section, allowing remote attackers to inject arbitrary script tags...

5.6AI score0.00261EPSS
Exploits1References2
Rows per page
Query Builder