Lucene search
K

234 matches found

NVD
NVD
added 2023/08/26 10:15 a.m.45 views

CVE-2023-4548

A vulnerability classified as critical has been found in SPA-Cart eCommerce CMS 1.9.0.3. This affects an unknown part of the file /search of the component GET Parameter Handler. The manipulation of the argument filterbrandid leads to sql injection. It is possible to initiate the attack remotely...

9.8CVSS7.4AI score0.20112EPSS
Exploits4References3
NVD
NVD
added 2023/07/24 2:15 a.m.19 views

CVE-2023-3859

A vulnerability was found in phpscriptpoint Car Listing 1.6 and classified as critical. This issue affects some unknown processing of the file /search.php of the component GET Parameter Handler. The manipulation of the argument...

9.8CVSS7.4AI score0.00425EPSS
Exploits0References2
OSV
OSV
added 2023/07/24 2:15 a.m.4 views

CVE-2023-3859

A vulnerability was found in phpscriptpoint Car Listing 1.6 and classified as critical. This issue affects some unknown processing of the file /search.php of the component GET Parameter Handler. The manipulation of the argument...

9.8CVSS5.7AI score0.00425EPSS
Exploits0References2
Prion
Prion
added 2023/07/24 2:15 a.m.22 views

Sql injection

A vulnerability was found in phpscriptpoint Car Listing 1.6 and classified as critical. This issue affects some unknown processing of the file /search.php of the component GET Parameter Handler. The manipulation of the argument...

6.5CVSS9.6AI score0.00425EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/07/20 9:15 p.m.19 views

Sql injection

A vulnerability classified as critical was found in Bug Finder ChainCity Real Estate Investment Platform 1.0. Affected by this vulnerability is an unknown functionality of the file /property of the component GET Parameter Handler. The manipulation of the argument name leads to sql injection. The...

5.2CVSS9.6AI score0.00425EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/20 8:31 p.m.10 views

CVE-2023-3795 Bug Finder ChainCity Real Estate Investment Platform GET Parameter property sql injection

A vulnerability classified as critical was found in Bug Finder ChainCity Real Estate Investment Platform 1.0. Affected by this vulnerability is an unknown functionality of the file /property of the component GET Parameter Handler. The manipulation of the argument name leads to sql injection. The...

5.5CVSS7.4AI score0.00425EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/20 12:0 a.m.6 views

PT-2023-26197 · Unknown · Bug Finder Chaincity Real Estate Investment Platform

Name of the Vulnerable Software and Affected Versions: Bug Finder ChainCity Real Estate Investment Platform version 1.0 Description: A critical vulnerability was found in the Bug Finder ChainCity Real Estate Investment Platform. The issue affects an unknown functionality of the file /property of...

9.8CVSS7.8AI score0.00425EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/07/20 12:0 a.m.3 views

Bug Finder ChainCity Real Estate Investment Platform SQL注入漏洞

Bug Finder ChainCity Real Estate Investment Platform is a real estate investment platform from Bug Finder, Inc. A SQL injection vulnerability exists in Bug Finder ChainCity Real Estate Investment Platform version 1.0, which stems from the parameter name of the component GET Parameter Handler that...

9.8CVSS6.5AI score0.00425EPSS
Exploits0References4
Prion
Prion
added 2023/07/16 4:15 p.m.19 views

Sql injection

A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be launched...

6.5CVSS9.5AI score0.00425EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/07/16 4:15 p.m.22 views

Sql injection

A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Affected by this vulnerability is an unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be launched remotely. The...

6.5CVSS9.6AI score0.00425EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/16 3:15 p.m.5 views

CVE-2023-3688

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Affected is an unknown function of the component GET Parameter Handler. The manipulation of the argument keywords/gender leads to sql injection. It is possible to launch the attack remotely. VDB-234234 is the identifi...

9.8CVSS5.6AI score0.00425EPSS
Exploits0References2
NVD
NVD
added 2023/07/16 3:15 p.m.13 views

CVE-2023-3688

A vulnerability classified as critical has been found in Bylancer QuickJob 6.1. Affected is an unknown function of the component GET Parameter Handler. The manipulation of the argument keywords/gender leads to sql injection. It is possible to launch the attack remotely. VDB-234234 is the identifi...

9.8CVSS0.00425EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/16 1:31 p.m.17 views

CVE-2023-3687 Bylancer QuickVCard GET Parameter blog sql injection

A vulnerability was found in Bylancer QuickVCard 2.1. It has been rated as critical. This issue affects some unknown processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotely. The identifier...

6.5CVSS9.9AI score0.00425EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/16 12:0 a.m.4 views

PT-2023-25731 · Bylancer · Bylancer Quickvcard

Name of the Vulnerable Software and Affected Versions: Bylancer QuickVCard version 2.1 Description: A critical issue affects the processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotely. Th...

9.8CVSS7.5AI score0.00425EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/07/16 12:0 a.m.4 views

PT-2023-25736 · Bylancer · Bylancer Quickqr

Name of the Vulnerable Software and Affected Versions: Bylancer QuickQR version 6.3.7 Description: A critical issue was found in the GET Parameter Handler component of the /blog file, where the manipulation of the s argument leads to sql injection. This issue can be exploited remotely. The vendor...

9.8CVSS7.3AI score0.00425EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/07/16 12:0 a.m.3 views

PT-2023-25734 · Unknown · Bylancer Quickjob

Name of the Vulnerable Software and Affected Versions: Bylancer QuickJob version 6.1 Description: A critical vulnerability has been found in the component GET Parameter Handler. The manipulation of the keywords/gender argument leads to sql injection. It is possible to launch the attack remotely...

9.8CVSS6.9AI score0.00425EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/07/16 12:0 a.m.3 views

Bylancer QuickAI OpenAI SQL注入漏洞

Bylancer QuickAI OpenAI is an artificial intelligence writing assistant and content creator from Bylancer. Bylancer QuickAI OpenAI version 3.8.1 suffers from a SQL injection vulnerability that stems from the presence of unknown code in the file/blog in the component GET Parameter Handler, which...

9.8CVSS7.1AI score0.00425EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/16 12:0 a.m.5 views

PT-2023-25737 · Unknown · Bylancer Quickorder

Name of the Vulnerable Software and Affected Versions: Bylancer QuickOrder version 6.3.7 Description: A critical issue has been found in the GET Parameter Handler component of the /blog file, where the manipulation of the s argument leads to sql injection. This issue can be exploited remotely. Th...

9.8CVSS7.4AI score0.00425EPSS
Exploits0References4
NVD
NVD
added 2023/06/23 10:15 a.m.9 views

CVE-2023-3381

A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site...

6.1CVSS4.5AI score0.00557EPSS
Exploits1References3
Prion
Prion
added 2023/06/23 10:15 a.m.18 views

Cross site scripting

A vulnerability, which was classified as problematic, has been found in SourceCodester Game Result Matrix System 1.0. Affected by this issue is some unknown functionality of the file /dipam/save-delegates.php of the component GET Parameter Handler. The manipulation of the argument delname leads t...

4CVSS6AI score0.00567EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder