Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2218 matches found

OSV
OSVadded 2024/01/10 2:15 a.m.1 views

CVE-2024-0360

A vulnerability was found in PHPGurukul Hospital Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin/edit-doctor-specialization.php. The manipulation of the argument doctorspecilization leads to sql injection. The exploit has been...

9.8CVSS5.6AI score0.00057EPSS
Exploits1References3
OSV
OSVadded 2024/01/10 1:15 a.m.4 views

CVE-2024-0358

A vulnerability was found in DeShang DSO2O up to 4.1.0. It has been classified as critical. This affects an unknown part of the file /install/install.php. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...

7.5CVSS5.4AI score0.00091EPSS
Exploits0References3
Prion
Prionadded 2024/01/10 1:15 a.m.15 views

Improper access control

A vulnerability has been found in Mandelo ssmshiroblog 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file updateRoles of the component Backend. The manipulation leads to improper access controls. The exploit has been disclosed to the public a...

3.3CVSS7.2AI score0.00064EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologiesadded 2024/01/10 12:0 a.m.4 views

PT-2024-15521 · Unknown · Sourcecodester Simple Student Attendance System

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Attendance System version 1.0 Description: A critical vulnerability was found in the SourceCodester Student Attendance System. The issue affects an unknown function of the file attendance report.php. The manipulation of...

9.8CVSS8.1AI score0.00308EPSS
Exploits1References7
OSV
OSVadded 2024/01/08 10:15 a.m.1 views

CVE-2024-0308

A vulnerability was found in Inis up to 2.0.1. It has been rated as critical. This issue affects some unknown processing of the file app/api/controller/default/Proxy.php. The manipulation of the argument purl leads to server-side request forgery. The attack may be initiated remotely. The exploit...

8.8CVSS5.4AI score
Exploits0References3
Prion
Prionadded 2024/01/08 7:15 a.m.16 views

Sql injection

A vulnerability classified as critical was found in fhs-opensource iparking 1.5.22.RELEASE. This vulnerability affects the function getData of the file src/main/java/com/xhb/pay/action/PayTempOrderAction.java. The manipulation leads to sql injection. The attack can be initiated remotely. The...

6.5CVSS7.7AI score0.00123EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/01/08 2:15 a.m.4 views

CVE-2024-0292

A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function setOpModeCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument hostName leads to os command injection. It is possible to launch the attack remotely. The explo...

9.8CVSS5.5AI score0.01513EPSS
Exploits1References3
Prion
Prionadded 2024/01/07 6:15 a.m.15 views

Cross site scripting

A vulnerability classified as problematic has been found in Project Worlds Online Lawyer Management System 1.0. Affected is an unknown function of the component User Registration. The manipulation of the argument First Name leads to cross site scripting. It is possible to launch the attack...

5CVSS6.5AI score0.00081EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/01/07 2:15 a.m.2 views

CVE-2024-0261

A vulnerability has been found in Sentex FTPDMIN 0.96 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component RNFR Command Handler. The manipulation leads to denial of service. The attack can be launched remotely. The exploit has been disclosed t...

7.5CVSS5.2AI score0.00105EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2024/01/07 12:0 a.m.3 views

PT-2024-15451 · Beijing Baichuo · Beijing Baichuo Smart S150 Management Platform

Name of the Vulnerable Software and Affected Versions: Beijing Baichuo Smart S150 Management Platform versions up to 20240101 Description: A critical issue affects some unknown functionality of the file /useratte/userattestation.php of the component HTTP POST Request Handler. The manipulation of...

9.8CVSS6.6AI score0.0093EPSS
Exploits1References8
NVD
NVDadded 2024/01/02 8:15 p.m.11 views

CVE-2024-0192

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file downloadable.php of the component Add Downloadable. The manipulation leads to unrestricted upload. The attack can be...

6.5CVSS6.5AI score0.0016EPSS
Exploits1References3
OSV
OSVadded 2024/01/02 3:15 p.m.3 views

CVE-2024-0188

A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer Online Portal 1.0. This affects an unknown part of the file changepasswordteacher.php. The manipulation leads to weak password requirements. It is possible to initiate the attack remotely. The complexity o...

8.1CVSS4.6AI score
Exploits0References3
NVD
NVDadded 2024/01/02 12:15 a.m.9 views

CVE-2024-0184

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/editteacher.php of the component Add Enginer. The manipulation of the argument Firstname/Lastname leads to cross site scripting...

4.8CVSS4AI score0.00055EPSS
Exploits1References3
OSV
OSVadded 2023/12/31 5:15 p.m.4 views

CVE-2023-7193

A vulnerability was found in MTab Bookmark up to 1.2.6 and classified as critical. This issue affects some unknown processing of the file public/install.php of the component Installation. The manipulation leads to improper access controls. The complexity of an attack is rather high. The...

8.1CVSS4.7AI score0.00054EPSS
Exploits0References3
OSV
OSVadded 2023/12/31 4:15 p.m.3 views

CVE-2023-7191

A vulnerability, which was classified as critical, was found in S-CMS up to 2.0build20220529-20231006. This affects an unknown part of the file member/reg.php. The manipulation of the argument Mlogin/Memail leads to sql injection. The exploit has been disclosed to the public and may be used. The...

8.8CVSS5.5AI score
Exploits0References3
Prion
Prionadded 2023/12/30 6:15 p.m.18 views

Sql injection

A vulnerability has been found in Tongda OA 2017 up to 11.9 and classified as critical. Affected by this vulnerability is an unknown functionality of the file general/project/proj/delete.php. The manipulation of the argument PROJIDSTR leads to sql injection. The exploit has been disclosed to the...

5.2CVSS7.5AI score0.00042EPSS
Exploits1References3Affected Software1
Prion
Prionadded 2023/12/30 4:15 p.m.19 views

Sql injection

A vulnerability classified as critical has been found in Campcodes Online College Library System 1.0. This affects an unknown part of the file /admin/returnadd.php of the component HTTP POST Request Handler. The manipulation of the argument student leads to sql injection. It is possible to initia...

5.8CVSS7.8AI score0.00052EPSS
Exploits1References3Affected Software1
NVD
NVDadded 2023/12/30 12:15 p.m.8 views

CVE-2023-7173

A vulnerability, which was classified as problematic, was found in PHPGurukul Hospital Management System 1.0. This affects an unknown part of the file registration.php. The manipulation of the argument First Name leads to cross site scripting. It is possible to initiate the attack remotely. The...

5.4CVSS0.11421EPSS
Exploits2References4
Prion
Prionadded 2023/12/29 10:15 a.m.22 views

Authorization

A vulnerability was found in Poly Trio 8500, Trio 8800 and Trio C60. It has been classified as problematic. This affects an unknown part of the component Poly Lens Management Cloud Registration. The manipulation leads to missing authorization. It is possible to launch the attack on the physical...

4.6CVSS6.9AI score0.00064EPSS
Exploits0References7
Prion
Prionadded 2023/12/29 8:15 a.m.20 views

Cross site scripting

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Add Engineer Handler. The manipulation of the argument first name/last name with the input alert0 leads to cross site...

3.3CVSS6.4AI score0.00095EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder