Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2026/01/16 9:4 p.m.1 views

SQL Injection

Overview @veramo/core-types is a Veramo Core Logic & Interfaces. Affected versions of this package are vulnerable to SQL Injection via insufficient validation of the column parameter in the order array processed by the decorateQB function. An attacker can execute arbitrary SQL queries and access...

8.2CVSS6.3AI score
Exploits0References2
OSV
OSVadded 2026/01/09 6:41 p.m.2 views

GHSA-2G22-WG49-FGV5 XWiki Full Calendar Macro vulnerable to SQL injection through Calendar.JSONService

Impact Anyone who has view rights on the Calendar.JSONService page, including guest users can exploit this vulnerability by accessing database info or starting a DoS attack. Workarounds Remove the Calendar.JSONService page. This will however break some functionalities. References Jira issue:...

10CVSS7.9AI score0.00159EPSS
Exploits0References4
OSV
OSVadded 2025/05/18 10:15 a.m.3 views

CVE-2025-4869

A vulnerability classified as critical has been found in itsourcecode Restaurant Management System 1.0. This affects an unknown part of the file /admin/memberupdate.php. The manipulation of the argument menu leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

9.8CVSS5.8AI score0.00204EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2023/07/23 12:0 a.m.5 views

PT-2023-26480 · Sourcecodester · Sourcecodester Lost/Found Information System

Name of the Vulnerable Software and Affected Versions: SourceCodester Lost and Found Information System version 1.0 Description: A critical issue has been found in the system, affecting an unknown functionality of the file /classes/Master.php?f=delete category of the component HTTP POST Request...

9.8CVSS7AI score0.00061EPSS
Exploits0References6
CNNVD
CNNVDadded 2022/10/28 12:0 a.m.2 views

SEMCMS SQL注入漏洞

SEMCMS is a multilingual content management system CMS for foreign trade websites. A SQL injection vulnerability exists in SEMCMS SHOP version 1.2, which stems from a SQL injection issue in SEMCMSUser.php...

9.8CVSS8.5AI score0.00264EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2022/09/20 12:0 a.m.3 views

PT-2022-16203 · Aruba · Aruba Clearpass Policy Manager

Name of the Vulnerable Software and Affected Versions: Aruba ClearPass Policy Manager versions 6.10.6 and below Aruba ClearPass Policy Manager versions 6.9.11 and below Description: Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remo...

8.8CVSS8.9AI score0.00415EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2022/04/15 5:15 a.m.0 views

CVE-2022-26651

An issue was discovered in Asterisk through 19.x and Certified Asterisk through 16.8-cert13. The funcodbc module provides possibly inadequate escaping functionality for backslash characters in SQL queries, resulting in user-provided data creating a broken SQL query or possibly a SQL injection. Th...

9.8CVSS7.3AI score0.00756EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2019/08/02 12:0 a.m.4 views

PT-2019-13736 · Openemr · Openemr

Name of the Vulnerable Software and Affected Versions: OpenEMR versions prior to 5.0.2 Description: The issue allows SQL Injection in the interface/forms/eye mag/save.php file. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents...

9.8CVSS9.4AI score0.00523EPSS
Exploits0References6
Rows per page
Query Builder