Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2026/03/26 12:30 p.m.3 views

EUVD-2018-21669

ASP.NET jVideo Kit 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to inject SQL commands through the 'query' parameter in the search functionality. Attackers can submit malicious SQL payloads via GET or POST requests to the /search endpoint to extract sensitive...

8.8CVSS5.9AI score0.00267EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/03/05 5:54 a.m.3 views

CVE-2026-27428

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eagle-Themes Eagle Booking eagle-booking allows SQL Injection.This issue affects Eagle Booking: from n/a through = 1.3.4.3...

6AI score0.0026EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/01/13 12:0 a.m.6 views

PT-2026-2747

🟠 CVE-2026-20947 - High Improper neutralization of special elements used in an sql command 'sql injection' in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. https://t.co/plm6gTTLxj https://t.co/1kjK6Hr4sV...

8.8CVSS7.5AI score0.17948EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/20 9:30 p.m.7 views

EUVD-2025-35103

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...

7.5CVSS7.2AI score0.00217EPSS
Exploits0References2
CVE
CVEadded 2025/08/15 11:54 a.m.15 views

CVE-2025-54474

CVE-2025-54474 describes a SQL injection vulnerability in the DJ-Classifieds Joomla extension, affecting versions 3.9.2–3.10.1. The issue allows privileged users to execute arbitrary SQL commands. The connected documents consistently reference a DJ-Classifieds SQLi impacting Joomla; no exploitati...

8.5CVSS8.2AI score0.00298EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2021/12/16 4:38 p.m.2 views

postgresql: server processes unencrypted bytes from man-in-the-middle

It was found that a PostgreSQL server could accept plain text data during the establishment of an SSL connection. When a user is requesting a certificate based authentication, an active Person in the Middle could use this flaw in order to inject arbitrary SQL commands...

8.1CVSS6.9AI score0.01901EPSS
Exploits0References4
OSV
OSVadded 2020/05/08 12:15 p.m.3 views

CVE-2020-12014

Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Input is not properly sanitized and may allow an attacker to inject SQL commands...

7.5CVSS5.8AI score0.01529EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEVadded 2012/03/12 12:0 a.m.3 views

VulnCheck KEV: CVE-2012-1557

SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU2, 9.x before 9.5 MU11, 10.0.x before MU13, 10.1.x before MU22, 10.2.x before MU16, and 10.3.x before MU5 allows remote attackers to execute arbitrary SQL commands via unspecified...

7.5CVSS6.2AI score0.06109EPSS
Exploits0References1
Exploit DB
Exploit DBadded 2003/04/22 12:0 a.m.24 views

OpenBB 1.0/1.1 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/7401/info It has been reported that OpenBB does not properly check input passed via the 'index.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the bulletin board software. The consequenc...

7.4AI score
Exploits0
Rows per page
Query Builder