CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

943 matches found

EUVD•added 2025/12/13 6:30 p.m.•2 views

EUVD-2025-203261

A security vulnerability has been detected in code-projects Prison Management System 2.0. Impacted is an unknown function of the file /admin/search1.php. The manipulation of the argument keyname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

7.5CVSS6.6AI score0.00028EPSS

Exploits1References6

RedhatCVE•added 2025/11/18 12:11 a.m.•9 views

CVE-2025-13253

A vulnerability was determined in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /addlibrarian.php. This manipulation of the argument Username causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly...

8.8CVSS7AI score0.00027EPSS

Exploits1References1

Cvelist•added 2025/11/13 4:32 p.m.•9 views

CVE-2025-13121 cameasy Liketea API Endpoint StoreController.php list sql injection

A security vulnerability has been detected in cameasy Liketea 1.0.0. Impacted is the function list of the file laravel/app/Http/Controllers/Front/StoreController.php of the component API Endpoint. Such manipulation of the argument lng/lat leads to sql injection. The attack may be performed from...

7.5CVSS0.00034EPSS

Exploits0References5

RedhatCVE•added 2025/11/01 6:55 p.m.•7 views

CVE-2025-12546

A vulnerability was determined in LogicalDOC Community Edition up to 9.2.1. This affects an unknown part of the component API Key creation UI. This manipulation causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized...

5.4CVSS5.5AI score0.00041EPSS

Exploits1References1

Vulnrichment•added 2025/10/13 6:2 a.m.•1 views

CVE-2025-11664 Campcodes Online Beauty Parlor Management System search-appointment.php sql injection

A security vulnerability has been detected in Campcodes Online Beauty Parlor Management System 1.0. The impacted element is an unknown function of the file /admin/search-appointment.php. Such manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The...

5.8CVSS5AI score0.00012EPSS

Exploits1References5

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-20375

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00127EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-11370

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00666EPSS

Exploits1References5