CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A cross-site scripting XSS vulnerability in H.H.G Multistore v5.1.0 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the State parameter under the Address Book module...

5.4CVSS5.8AI score0.00302EPSS

Exploits1

RedhatCVE•added 2025/05/22 6:55 p.m.•3 views

CVE-2021-46446

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=adminaccessgroupedit...

9.8CVSS8.4AI score0.00466EPSS

Exploits1

NVD•added 2022/01/28 10:15 p.m.•5 views

CVE-2021-46446

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=adminaccessgroupedit&aagID...

9.8CVSS0.00466EPSS

Exploits1References2

NVD•added 2022/01/28 10:15 p.m.•8 views

CVE-2021-46448

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/customers.php?page=1&cID...

9.8CVSS0.00264EPSS

Exploits1References2

ATTACKERKB•added 2022/01/28 10:15 p.m.•3 views

CVE-2021-46444

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admingroupedit&agID...

9.8CVSS8AI score0.00264EPSS

Exploits1References3

OSV•added 2022/01/28 10:15 p.m.•1 views

CVE-2021-46446

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=adminaccessgroupedit&aagID...

9.8CVSS7.3AI score0.00466EPSS

Exploits1References2

NVD•added 2022/01/28 10:15 p.m.•10 views

CVE-2021-46447

5.4CVSS0.00302EPSS

Exploits1References2

Prion•added 2022/01/28 10:15 p.m.•15 views

Sql injection

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=adminaccessgroupedit&aagID...

7.5CVSS9.8AI score0.00466EPSS

Exploits1References2Affected Software1

Prion•added 2022/01/28 10:15 p.m.•11 views

Sql injection

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/categories.php?boxgroupid...

7.5CVSS9.8AI score0.00264EPSS

Exploits1References2Affected Software1

Prion•added 2022/01/28 10:15 p.m.•11 views

Sql injection

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/customers.php?page=1&cID...

7.5CVSS9.8AI score0.00264EPSS

Exploits1References2Affected Software1

Prion•added 2022/01/28 10:15 p.m.•8 views

Cross site scripting

3.5CVSS5.3AI score0.00302EPSS

Exploits1References2Affected Software1

Prion•added 2022/01/28 10:15 p.m.•9 views

Sql injection

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admingroupedit&agID...

7.5CVSS9.8AI score0.00264EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/01/28 9:29 p.m.•12 views

CVE-2021-46448

H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/customers.php?page=1&cID...

10AI score0.00264EPSS

Exploits1References2

CVE•added 2022/01/28 9:29 p.m.•48 views

CVE-2021-46448

CVE-2021-46448 affects H.H.G Multistore v5.1.0 and earlier. It is a SQL injection vulnerability in /admin/customers.php?page=1&cID, allowing attacker-controlled SQL execution. CVSS v3.1 base score 9.8 (CRITICAL); attack vector NETWORK, no privileges required, no user interaction. Impacts: confide...

9.8CVSS9.8AI score0.00264EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by