Lucene search
K

9778 matches found

CNVD
CNVD
added 2017/12/28 12:0 a.m.4 views

PHP Scripts Mall Professional Service Script SQL Injection Vulnerability (CNVD-2018-00489)

Professional Service Script is a script from PHP Scripts Mall with search, task creation and task management features. A SQL injection vulnerability exists in PHP Scripts Mall Professional Service Script. A remote attacker can exploit this vulnerability by using the id parameter in admin/review.p...

9.8CVSS8.3AI score0.01161EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/28 12:0 a.m.4 views

PHP Scripts Mall Single Theater Booking SQL Injection Vulnerability

PHP Scripts Mall Single Theater Booking is an open source theater script. PHP Scripts Mall Single Theater Booking suffers from a SQL injection vulnerability. A remote attacker can exploit this vulnerability by sending the 'movieid' parameter to the admin/movieview.php file to obtain the username ...

7.2CVSS8AI score0.00937EPSS
Exploits1References1
OSV
OSV
added 2017/12/27 5:8 p.m.5 views

CVE-2017-17892

Readymade Video Sharing Script has SQL Injection via the viewsubs.php chnlid parameter or the searchvideo.php search parameter...

9.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2017/12/27 5:8 p.m.7 views

CVE-2017-17870

The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action...

9.8CVSS5.8AI score0.03001EPSS
Exploits1References2
CNVD
CNVD
added 2017/12/25 12:0 a.m.2 views

Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-01643)

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. An SQL injection vulnerability exists in the...

9.8CVSS8.6AI score0.01871EPSS
Exploits0References1
CNVD
CNVD
added 2017/12/22 12:0 a.m.2 views

SQL Injection Vulnerability in MacCMS Version 8.x

MacCMS program is a fast shadow video building system that runs on PHP+MYSQL environment. A frontend SQL injection vulnerability exists in MacCMS version 8.x 2017-06-20, which can be exploited by attackers to obtain sensitive database information...

7.9AI score
Exploits0
CNVD
CNVD
added 2017/12/21 12:0 a.m.2 views

SQL injection vulnerability in the bill.class.php page of UQCMS Cloud Business B2B2C Multi-store System

UQCMS cloud business system is a B2B2C e-commerce software with the program using PHP+MYSQL and the template using smarty template. A SQL injection vulnerability exists in the bill.class.php page of the UQCMS Cloud Business B2B2C Multi-Store System due to the program's failure to adequately filte...

7.6AI score
Exploits0
OSV
OSV
added 2017/12/20 7:29 p.m.3 views

CVE-2017-16733

A SQL Injection issue was discovered in Ecava IntegraXor v 6.1.1030.1 and prior. The SQL Injection vulnerability has been identified, which an attacker can leverage to disclose sensitive information from the database...

5.3CVSS5.7AI score0.00919EPSS
Exploits0References1
CNVD
CNVD
added 2017/12/20 12:0 a.m.1 views

Bus Booking Script SQL Injection Vulnerability

Bus Booking Script is an online bus booking management system based on PHP and MySQL. A SQL injection vulnerability exists in Bus Booking Script version 1.0. The vulnerability can be exploited to inject SQL commands by sending the 'txtname' parameter to the admin/index.php file...

9.8CVSS8.4AI score0.0305EPSS
Exploits5References1
CNVD
CNVD
added 2017/12/20 12:0 a.m.4 views

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37631)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability exists in the handling of GET method requests in versions of Quest NetVault Backup prior to 11.4.5, which stems from the program failing to properly detect user-submitted strings prior...

9.8CVSS8.6AI score0.03933EPSS
Exploits0References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.5 views

PHP Scripts Mall Entrepreneur Job Portal Script SQL Injection Vulnerability

PHP Scripts Mall Entrepreneur Job Portal Script is a set of PHP based recruitment, job search website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Entrepreneur Job Portal Script version 2.0.6. The vulnerability can be exploited by remote attackers to...

9.8CVSS8.4AI score0.0305EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.2 views

PHP Scripts Mall Advance Online Learning Management Script SQL Injection Vulnerability

PHP Scripts Mall Advance Online Learning Management Script is a set of PHP based online learning scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Advance Online Learning Management Script version 3.1. A remote attacker can exploit the vulnerability by...

9.8CVSS8.2AI score0.0305EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.1 views

PHP Scripts Mall Basic B2B Script SQL Injection Vulnerability

PHP Scripts Mall Basic B2B Script is a set of PHP-based B2B2 business-to-business transactional website scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Basic B2B Script version 2.0.8. A remote attacker can exploit the vulnerability by sending the 'id'...

9.8CVSS8.2AI score0.0305EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.2 views

FS Foodpanda Clone SQL Injection Vulnerability

FS Foodpanda Clone is a set of online food trading website scripts written using the PHP CodeIgniter framework. A SQL injection vulnerability exists in FS Foodpanda Clone version 1.0. A remote attacker can exploit this vulnerability to inject SQL commands...

9.8CVSS8.1AI score0.02978EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.1 views

FS Freelancer Clone SQL Injection Vulnerability

FS Freelancer Clone is a set of PHP and MySQL based scripts for freelancer online job search and recruitment websites. A SQL injection vulnerability exists in FS Freelancer Clone version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sending the 'u' paramete...

9.8CVSS8.2AI score0.02978EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.2 views

FS Grubhub Clone SQL Injection Vulnerability

FS Grubhub Clone is a set of PHP-based scripts for online food ordering websites. A SQL injection vulnerability exists in FS Grubhub Clone version 1.0. A remote attacker can exploit this vulnerability to inject SQL commands...

9.8CVSS8AI score0.02978EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.3 views

PHP Scripts Mall Facebook Clone Script SQL Injection Vulnerability

PHP Scripts Mall Facebook Clone Script is a set of PHP based social networking site scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Facebook Clone Script version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sendi...

8.8CVSS8.3AI score0.02483EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.3 views

PHP Scripts Mall E-commerce MLM Software SQL Injection Vulnerability

PHP Scripts Mall E-commerce MLM Software is a PHP based e-commerce online marketing system from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall E-commerce MLM Software version 1.0. A remote attacker can inject SQL into the PHP Scripts Mall E-commerce MLM Software...

9.8CVSS8.1AI score0.0305EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.2 views

DomainSale PHP Script SQL Injection Vulnerability

DomainSale PHP Script is a set of scripts for online domain name selling websites based on PHP and MySQL. A SQL injection vulnerability exists in DomainSale PHP Script version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sending the 'id' parameter to the...

9.8CVSS8.4AI score0.0305EPSS
Exploits1References1
CNVD
CNVD
added 2017/12/15 12:0 a.m.2 views

FS Crowdfunding Script SQL Injection Vulnerability

FS Crowdfunding Script is a set of scripts for online crowdfunding websites based on PHP and MySQL. A SQL injection vulnerability exists in FS Crowdfunding Script version 1.0. A remote attacker can exploit the vulnerability by sending the 'id' parameter to the latestnewsdetails.php file to inject...

9.8CVSS8.2AI score0.02978EPSS
Exploits1References1
Rows per page
Query Builder