Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2024/04/12 1:15 p.m.2 views

CVE-2024-31818

Directory Traversal vulnerability in DerbyNet v.9.0 allows a remote attacker to execute arbitrary code via the page parameter of the kiosk.php component...

9.8CVSS6.1AI score0.12094EPSS
Exploits1References2
Packet Storm
Packet Stormadded 2024/04/05 12:0 a.m.273 views

DerbyNet 9.0 racer-results.php Cross Site Scripting

CVE ID: CVE-2024-30927 Description: A Cross-Site Scripting XSS vulnerability is present in DerbyNet version 9.0, specifically within the racer-results.php component. This issue allows remote attackers to execute arbitrary code through the improper handling of the racerid parameter. The...

7.4AI score0.00257EPSS
Exploits2
Packet Storm
Packet Stormadded 2024/04/05 12:0 a.m.268 views

DerbyNet 9.0 ajax/query.slide.next.inc SQL Injection

CVE ID: CVE-2024-30928 Description: An SQL Injection vulnerability has been discovered in DerbyNet version 9.0, particularly within the ajax/query.slide.next.inc file. This vulnerability allows remote attackers to execute arbitrary code and disclose sensitive information by exploiting the...

7.4AI score0.00233EPSS
Exploits2
Rows per page
Query Builder