Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

OSV
OSVadded 2025/08/25 6:15 p.m.1 views

CVE-2025-9412

A vulnerability was detected in lostvip-com ruoyi-go up to 2.1. This affects the function SelectListByPage of the file modules/system/dao/DictDataDao.go. The manipulation of the argument orderByColumn/isAsc results in sql injection. The attack can be launched remotely. The exploit is now public a...

9.8CVSS7.2AI score
Exploits0References6
OSV
OSVadded 2025/08/08 5:15 p.m.3 views

CVE-2025-50465

OpenMetadata =1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the TestDefinitionDAO interface. The testPlatform parameter can be used to build a SQL query...

8.8CVSS7.2AI score
Exploits0References3
Cvelist
Cvelistadded 2025/08/08 12:0 a.m.22 views

CVE-2025-50465

OpenMetadata =1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the TestDefinitionDAO interface. The testPlatform parameter can be used to build a SQL query...

7.1CVSS0.00059EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/08/08 12:0 a.m.6 views

CVE-2025-50468

OpenMetadata =1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the DocStoreDAO interface. The entityType parameters can be used to build a SQL query...

0.00073EPSS
Exploits1References3
OSV
OSVadded 2025/01/15 12:15 a.m.2 views

CVE-2024-57760

JeeWMS before v2025.01.01 was discovered to contain a SQL injection vulnerability via the ReportId parameter at /core/CGReportDao.java...

6.5CVSS5.8AI score
Exploits0References1
CNNVD
CNNVDadded 2025/01/13 12:0 a.m.2 views

gymxmjpa 安全漏洞

gymxmjpa is a gym management system for liujianview individual developers. A security vulnerability exists in gymxmjpa version 1.0, which originates in the src/main/java/com/liujian/gymxmjpa/controller/SubjectController.java file, where the subname parameter in the SubjectDaoImpl function contain...

8.8CVSS7AI score0.0006EPSS
Exploits1References5
CNNVD
CNNVDadded 2023/03/16 12:0 a.m.2 views

Pimcore SQL注入漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce frameworks and product information management applications. A SQL injection vulnerability exists in Pimcor...

7.9CVSS7.5AI score0.00015EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2022/08/18 2:15 a.m.1 views

CVE-2022-35605

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc...

9.8CVSS7.7AI score0.00245EPSS
Exploits0References3
OSV
OSVadded 2022/08/18 2:15 a.m.0 views

CVE-2022-35603

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

9.8CVSS6AI score
Exploits0References2
CNNVD
CNNVDadded 2022/08/18 12:0 a.m.2 views

InventoryManagementSystem SQL注入漏洞

InventoryManagementSystem is an inventory management system by Sajan Rajbhandari, an individual developer. It provides an easy way to track products, suppliers, customers, and purchasing and sales information. A SQL injection vulnerability exists in InventoryManagementSystem version 1.0, which...

9.8CVSS9AI score0.00245EPSS
Exploits0References3
Rows per page
Query Builder