Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

ATTACKERKB
ATTACKERKBadded 2026/04/20 7:36 a.m.4 views

CVE-2026-5964

EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

9.8CVSS6AI score0.00116EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2025/11/03 7:15 a.m.2 views

CVE-2025-12503

EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents...

7.1CVSS0.00044EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/11/03 12:0 a.m.4 views

PT-2025-44752

Name of the Vulnerable Software and Affected Versions EasyFlow .NET and EasyFlow AiNet developed by Digiwin affected versions not specified Description EasyFlow .NET and EasyFlow AiNet developed by Digiwin contains a SQL Injection issue. Authenticated remote attackers can inject arbitrary SQL...

7.1CVSS7.9AI score0.00044EPSS
Exploits0References5
NVD
NVDadded 2025/10/21 7:15 a.m.1 views

CVE-2025-11949

EasyFlow .NET and EasyFlow AiNet, developed by Digiwin, has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to obtain database administrator credentials via a specific functionality...

8.7CVSS0.00078EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/21 6:49 a.m.1 views

EUVD-2025-35153

EasyFlow .NET and EasyFlow AiNet, developed by Digiwin, has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to obtain database administrator credentials via a specific functionality...

8.7CVSS6.6AI score0.00078EPSS
Exploits0References3
NVD
NVDadded 2024/06/03 7:15 a.m.10 views

CVE-2024-5311

DigiWin EasyFlow .NET lacks validation for certain input parameters. An unauthenticated remote attacker can inject arbitrary SQL commands to read, modify, and delete database records...

9.8CVSS9.9AI score0.00687EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/05/15 2:31 a.m.13 views

CVE-2024-4893 DigiWin EasyFlow .NET - SQL Injection

DigiWin EasyFlow .NET lacks validation for certain input parameters, allowing remote attackers to inject arbitrary SQL commands. This vulnerability enables unauthorized access to read, modify, and delete database records, as well as execute system commands...

9.8CVSS9.9AI score0.00772EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/05/15 2:31 a.m.10 views

CVE-2024-4893 DigiWin EasyFlow .NET - SQL Injection

DigiWin EasyFlow .NET lacks validation for certain input parameters, allowing remote attackers to inject arbitrary SQL commands. This vulnerability enables unauthorized access to read, modify, and delete database records, as well as execute system commands...

9.8CVSS7.8AI score0.00772EPSS
Exploits0References2
CVE
CVEadded 2024/05/15 2:31 a.m.49 views

CVE-2024-4893

CVE-2024-4893 affects DigiWin EasyFlow .NET. The vulnerability is due to insufficient input validation, enabling SQL injection that could let remote attackers read, modify, and delete database records and potentially execute system commands. The issue is described across multiple sources (NVD, CV...

9.8CVSS7.8AI score0.00772EPSS
Exploits0References2
Rows per page
Query Builder