CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3632 matches found

NVD•added 2024/01/13 8:15 a.m.•38 views

CVE-2024-0480

A vulnerability was found in Taokeyun up to 1.0.5. It has been declared as critical. Affected by this vulnerability is the function index of the file application/index/controller/m/Drs.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The...

9.8CVSS8.9AI score0.00792EPSS

Exploits2References4

Prion•added 2024/01/13 8:15 a.m.•17 views

Sql injection

7.5CVSS7.7AI score0.00792EPSS

Exploits2References3Affected Software1

Vulnrichment•added 2024/01/13 7:31 a.m.•5 views

CVE-2024-0480 Taokeyun HTTP POST Request Drs.php index sql injection

7.5CVSS9.8AI score0.00792EPSS

Exploits2References3

Cvelist•added 2024/01/13 7:31 a.m.•37 views

CVE-2024-0480 Taokeyun HTTP POST Request Drs.php index sql injection

7.5CVSS10AI score0.00792EPSS

Exploits2References3

CVE•added 2024/01/13 7:31 a.m.•49 views

CVE-2024-0480

Taokeyun up to v1.0.5 suffers SQL injection in the HTTP POST Request Handler, specifically in the index function of application/index/controller/m/Drs.php via the cid parameter. The vulnerability is remotely exploitable; exploitation details are documented in public writeups (e.g., PoC/traffic pa...

9.8CVSS8.1AI score0.00792EPSS

Exploits2References4Affected Software1

NVD•added 2024/01/13 7:15 a.m.•16 views

CVE-2024-0479

A vulnerability was found in Taokeyun up to 1.0.5. It has been classified as critical. Affected is the function login of the file application/index/controller/m/User.php of the component HTTP POST Request Handler. The manipulation of the argument username leads to sql injection. It is possible to...

9.8CVSS8.2AI score0.00561EPSS

Exploits0References3

Prion•added 2024/01/13 7:15 a.m.•23 views

Sql injection

7.5CVSS7.7AI score0.00561EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/01/13 7:0 a.m.•20 views

CVE-2024-0479 Taokeyun HTTP POST Request User.php login sql injection

7.5CVSS10AI score0.00561EPSS

Exploits0References3

CVE•added 2024/01/13 7:0 a.m.•40 views

CVE-2024-0479

Taokeyun up to version 1.0.5 contains a SQL injection in the login function (application/index/controller/m/User.php) via the username argument. Remote attacker could exploit; public exploit disclosed (CVE-2024-0479). Affected component is HTTP POST Request Handler. Remediation details are not pr...

9.8CVSS9.7AI score0.00561EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2024/01/13 12:0 a.m.•7 views

PT-2024-15596 · Taokeyun · Taokeyun

Name of the Vulnerable Software and Affected Versions: Taokeyun versions up to 1.0.5 Description: A critical issue has been found, affecting the function login of the file application/index/controller/m/User.php in the HTTP POST Request Handler component. The manipulation of the username argument...

9.8CVSS7.8AI score0.00561EPSS

Exploits0References6

Positive Technologies•added 2024/01/13 12:0 a.m.•5 views

PT-2024-15609 · Unknown · Kashipara Billing

Name of the Vulnerable Software and Affected Versions: Kashipara Billing Software version 1.0 Description: A critical issue was found in the HTTP POST Request Handler component, specifically in the file buyer detail submit.php. The manipulation of the gstn no argument leads to sql injection. This...

9.8CVSS7.8AI score0.00535EPSS

Exploits0References5

Positive Technologies•added 2024/01/13 12:0 a.m.•6 views

PT-2024-15626 · Unknown · Haokekeji Yiqiniu

Name of the Vulnerable Software and Affected Versions: HaoKeKeJi YiQiNiu versions up to 3.1 Description: A critical issue has been found in the software, affecting the function http post of the file /application/pay/controller/Api.php. The manipulation of the argument url leads to server-side...

9.8CVSS7.5AI score0.00881EPSS

Exploits1References9

NVD•added 2024/01/12 6:15 p.m.•26 views

CVE-2024-0463

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /production/adminviewinfo.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql...

9.8CVSS7.4AI score0.005EPSS

Exploits0References3

NVD•added 2024/01/12 6:15 p.m.•26 views

CVE-2024-0462

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /production/designeeviewstatus.php of the component HTTP POST Request Handler. The manipulation of the argument haydi...

9.8CVSS7.5AI score0.00537EPSS

Exploits0References3

OSV•added 2024/01/12 6:15 p.m.•4 views

CVE-2024-0462

9.8CVSS5.8AI score0.00537EPSS

Exploits0References3

Prion•added 2024/01/12 6:15 p.m.•17 views

Sql injection

6.5CVSS7.7AI score0.00537EPSS

Exploits0References3Affected Software1

Prion•added 2024/01/12 6:15 p.m.•24 views

Sql injection

6.5CVSS7.7AI score0.005EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/01/12 6:0 p.m.•38 views

CVE-2024-0463 code-projects Online Faculty Clearance HTTP POST Request admin_view_info.php sql injection

6.5CVSS9.9AI score0.005EPSS

Exploits0References3

CVE•added 2024/01/12 6:0 p.m.•47 views

CVE-2024-0463

CVE-2024-0463 affects code-projects Online Faculty Clearance 1.0. The vulnerability is a SQL injection in the HTTP POST Request Handler for the file /production/admin_view_info.php, triggered by manipulating the haydi parameter. Attackers can exploit remotely, and the exploit has been disclosed p...

9.8CVSS9.6AI score0.005EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/01/12 5:31 p.m.•28 views

CVE-2024-0462 code-projects Online Faculty Clearance HTTP POST Request designee_view_status.php sql injection

6.5CVSS10AI score0.00537EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by