Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 6 days ago5 views

EUVD-2019-20167

Zuz Music 2.1 contains a persistent cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious JavaScript by submitting crafted contact form data. Attackers can inject script code through the name, subject, and message parameters in POST requests to...

7.2CVSS5.7AI score0.00081EPSS
Exploits0References4
EUVD
EUVDadded 2026/03/27 2:8 p.m.0 views

EUVD-2026-16622

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.158, 25.0.92, and 26.0.17, an authenticated SQL Injection vulnerability in the JMAP Contact/query endpoint allows any authenticated user with basic addressbook access to extract arbitrary data...

8.8CVSS6.1AI score0.00016EPSS
Exploits1References1
EUVD
EUVDadded 2025/11/11 3:31 p.m.2 views

EUVD-2025-84352

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'firstname' in '/clients/savecontact/'...

5.1CVSS6.8AI score0.00025EPSS
Exploits0References2
CVE
CVEadded 2025/11/11 12:21 p.m.4 views

CVE-2025-41106

An HTML injection flaw is present in Fairsketch’s RISE CRM Framework v3.8.1 (CVE-2025-41106). The root cause is insufficient validation of user input, enabling HTML code injection via a POST to /clients/save_contact/ with the first_name parameter. Affected product: Fairsketch RISE CRM Framework; ...

5.4CVSS6.9AI score0.00025EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/11/11 12:21 p.m.2 views

CVE-2025-41106 Multiple vulnerabilities in Fairsketch's RISE CRM Framework

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'firstname' in '/clients/savecontact/'...

5.1CVSS6.9AI score0.00025EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/11/11 12:0 a.m.5 views

PT-2025-46334

HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'first name' in '/clients/save contact/'...

5.1CVSS7.3AI score0.00025EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/03 6:31 p.m.2 views

EUVD-2025-37491

Car-Booking-System-PHP v.1.0 is vulnerable to SQL Injection in /carlux/contact.php...

7.5AI score0.00059EPSS
Exploits1References2
OSV
OSVadded 2025/02/11 2:15 a.m.1 views

CVE-2025-1168

A vulnerability was found in SourceCodester Contact Manager with Export to VCF 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/delete-contact.php. The manipulation of the argument contact leads to sql injection. The attack can be initiated...

9.8CVSS6.5AI score0.00178EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2022/02/10 12:0 a.m.3 views

PT-2022-16772 · Unknown · Hospital Management System

Name of the Vulnerable Software and Affected Versions: Hospital Management System version 4.0 Description: The issue is related to a SQL injection vulnerability. It affects the /Hospital-Management-System-master/contact.php endpoint via the txtMsg parameters. Recommendations: For Hospital...

9.8CVSS8.7AI score0.04944EPSS
Exploits5References6
Rows per page
Query Builder