Lucene search
K

96 matches found

EUVD
EUVD
added 2026/03/06 3:31 p.m.9 views

EUVD-2018-21622

Net-Billetterie 2.9 contains an SQL injection vulnerability in the login parameter of login.inc.php that allows unauthenticated attackers to execute arbitrary SQL queries. Attackers can submit malicious SQL code through the login POST parameter to extract database information including usernames,...

8.8CVSS6.1AI score0.00232EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.7 views

PT-2026-23679

Net-Billetterie 2.9 contains an SQL injection vulnerability in the login parameter of login.inc.php that allows unauthenticated attackers to execute arbitrary SQL queries. Attackers can submit malicious SQL code through the login POST parameter to extract database information including usernames,...

8.8CVSS6.1AI score0.00232EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/01 12:30 a.m.10 views

EUVD-2026-9111

wpForo 2.4.14 contains an unauthenticated SQL injection vulnerability in Topics::gettopics where the ORDER BY clause relies on ineffective escsql sanitization on unquoted identifiers. Attackers exploit the wpfob parameter with CASE WHEN payloads to perform blind boolean extraction of credentials...

8.8CVSS6AI score0.00428EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/28 12:0 a.m.12 views

PT-2026-22483

Name of the Vulnerable Software and Affected Versions wpForo version 2.4.14 Description The software contains an unauthenticated SQL injection issue in the Topics::get topics function. The problem stems from ineffective sanitization using esc sql on unquoted identifiers within the ORDER BY clause...

9.8CVSS6AI score0.00428EPSS
Exploits0References8
Packet Storm
Packet Storm
added 2026/02/16 12:0 a.m.269 views

📄 FortiGate Advanced Symlink Bypass Exploit

This Python script is an advanced exploitation tool targeting vulnerable FortiGate devices manufactured by Fortinet. It attempts to exploit a symlink/path bypass vulnerability via the /lang//custom/ endpoint in order to access sensitive internal files that should not be publicly accessible...

5.9CVSS5.6AI score0.00477EPSS
Exploits1
CVE
CVE
added 2026/01/13 1:14 a.m.14 views

CVE-2026-0503

This CVE affects SAP ERP Central Component (SAP ECC) and SAP S/4HANA (SAP EHS Management). The root cause is a missing authorization check that could let an attacker extract hardcoded clear-text credentials and bypass password authentication by tampering with user parameters. Successful exploitat...

6.4CVSS6.3AI score0.00201EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/13 1:14 a.m.29 views

CVE-2026-0503 Missing Authorization check in in SAP ERP Central Component and SAP S/4HANA (SAP EHS Management)

Due to missing authorization check in the SAP ERP Central Component SAP ECC and SAP S/4HANA SAP EHS Management, an attacker could extract hardcoded clear-text credentials and bypass the password authentication check by manipulating user parameters. Upon successful exploitation, the attacker can...

6.4CVSS0.00201EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

SAP ERP Central Component 安全漏洞

SAP ERP Central Component is a core enterprise resource planning software from SAP, Germany. A security vulnerability exists in SAP ERP Central Component that stems from a lack of authorization checks and could allow an attacker to extract hard-coded plaintext credentials and bypass password...

6.4CVSS5.8AI score0.00201EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/01/11 4:8 p.m.248 views

Exploit for Out-of-bounds Write in Mikrotik Routeros

Mikrotik Exploit Scan and Export RouterOS Password A security...

9.8CVSS9.2AI score0.02554EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.7 views

CVE-2019-18250

In all versions of ABB Power Generation Information Manager PGIM and Plant Connect, the affected product is vulnerable to authentication bypass, which may allow an attacker to remotely bypass authentication and extract credentials from the affected device...

9.8CVSS7.1AI score0.01678EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/17 3:34 p.m.5 views

EUVD-2025-203889

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system. Other related CVE's ar...

8.4CVSS6.2AI score0.00399EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/17 12:0 a.m.3 views

Radiometer Products 安全漏洞

Radiometer Products is a line of medical diagnostic instruments from the Danish company Radiometer. A security vulnerability exists in Radiometer Products that stems from inadequate operating system design and credential protection, which could allow a physical visitor to extract credential...

8.4CVSS6AI score0.00116EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/17 12:0 a.m.8 views

PT-2025-51827

Name of the Vulnerable Software and Affected Versions Radiometer products affected versions not specified Description A security issue exists in multiple Radiometer products that could allow an attacker with physical access to the analyzer to obtain credential information. The vulnerability is du...

8.4CVSS6AI score0.00116EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.6 views

PT-2025-44917

Name of the Vulnerable Software and Affected Versions CE21 Suite plugin for WordPress versions prior to 2.3.2 Description The CE21 Suite plugin for WordPress is susceptible to sensitive information exposure through the log file. This allows unauthenticated attackers to extract sensitive data,...

9.8CVSS6.3AI score0.00444EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-27322

Malware in sbrugna...

9.8CVSS9.2AI score0.07329EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-9806

Malware in sbrugna...

10CVSS6.4AI score0.01717EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-8048

Malware in sbrugna...

9.8CVSS9.1AI score0.01678EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-20466

Malware in sbrugna...

9.8CVSS9.5AI score0.01193EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-4693

Malware in sbrugna...

7.5CVSS7.5AI score0.01037EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-0970

Malware in sbrugna...

4.7CVSS5.8AI score0.00863EPSS
Exploits0References10
Rows per page
Query Builder