Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21980 matches found

CVE
CVEadded 2026/04/29 8:30 p.m.7 views

CVE-2026-7407

The CVE-2026-7407 vulnerability affects SourceCodester Pizzafy Ecommerce System 1.0, specifically the save_settings function in /pizzafy/admin/ajax.php?action=save_settings (Setting Handler). The issue is a SQL injection caused by input manipulation in that endpoint, enabling remote attackers to ...

5.8CVSS5AI score0.00253EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/29 8:30 p.m.28 views

CVE-2026-7407 SourceCodester Pizzafy Ecommerce System Setting ajax.php save_settings sql injection

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function savesettings of the file /pizzafy/admin/ajax.php?action=savesettings of the component Setting Handler. Such manipulation leads to sql injection. It is possible...

5.8CVSS0.00253EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/29 8:30 p.m.0 views

CVE-2026-7407

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function savesettings of the file /pizzafy/admin/ajax.php?action=savesettings of the component Setting Handler. Such manipulation leads to sql injection. It is possible...

5.8CVSS5AI score0.00253EPSS
Exploits0References5Affected Software1
EUVD
EUVDadded 2026/04/29 8:30 p.m.1 views

EUVD-2026-26289

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function savesettings of the file /pizzafy/admin/ajax.php?action=savesettings of the component Setting Handler. Such manipulation leads to sql injection. It is possible...

5.8CVSS5AI score0.00253EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/29 8:30 p.m.3 views

CVE-2026-7407 SourceCodester Pizzafy Ecommerce System Setting ajax.php save_settings sql injection

A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function savesettings of the file /pizzafy/admin/ajax.php?action=savesettings of the component Setting Handler. Such manipulation leads to sql injection. It is possible...

5.8CVSS5AI score0.00253EPSS
Exploits0References5
NVD
NVDadded 2026/04/29 8:16 p.m.4 views

CVE-2018-25315

Alloksoft Video joiner 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with structured exception handler SEH overwrite and shellcode to achieve code...

8.6CVSS0.00163EPSS
Exploits0References4
NVD
NVDadded 2026/04/29 8:16 p.m.3 views

CVE-2018-25314

Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with structured exception...

8.6CVSS0.00165EPSS
Exploits0References4
NVD
NVDadded 2026/04/29 8:16 p.m.3 views

CVE-2018-25307

SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute...

8.6CVSS0.0015EPSS
Exploits0References2
NVD
NVDadded 2026/04/29 8:16 p.m.3 views

CVE-2018-25304

Free Download Manager 2.0 Build 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler SEH chain exploitation. Attackers can craft a malicious URL file that, when imported through the File Import Import...

8.6CVSS0.00153EPSS
Exploits0References3
NVD
NVDadded 2026/04/29 8:16 p.m.2 views

CVE-2018-25303

Allok Video to DVD Burner 2.6.1217 contains a stack-based buffer overflow vulnerability in the License Name field that allows local attackers to execute arbitrary code by triggering a structured exception handler SEH overwrite. Attackers can craft a malicious input string with 780 bytes of junk...

8.6CVSS0.00157EPSS
Exploits0References3
CVE
CVEadded 2026/04/29 7:24 p.m.6 views

CVE-2018-25315

Alloksoft Video joiner 4.6.1217 contains a local buffer overflow vulnerability in the License Name input that can lead to arbitrary code execution via SEH overwrite when processing license registration. Affected component: License handling in the application; root cause: buffer overflow in licens...

8.6CVSS6.8AI score0.00163EPSS
Exploits0References4
CVE
CVEadded 2026/04/29 7:24 p.m.6 views

CVE-2018-25314

CVE-2018-25314 affects Allok Soft WMV to AVI MPEG DVD WMV Converter 4.6.1217, where a buffer overflow in the License Name field allows local attackers to execute arbitrary code via input containing shellcode with an SEH overwrite, potentially gaining application-privilege execution. The NVD/CVE r...

8.6CVSS6.3AI score0.00165EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/29 7:24 p.m.26 views

CVE-2018-25314 Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 Buffer Overflow

Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with structured exception...

8.6CVSS0.00165EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/29 7:24 p.m.2 views

CVE-2018-25314 Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 Buffer Overflow

Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with structured exception...

8.6CVSS6.3AI score0.00165EPSS
Exploits0References4
EUVD
EUVDadded 2026/04/29 7:24 p.m.2 views

EUVD-2018-21835

Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with structured exception...

8.6CVSS6.3AI score0.00165EPSS
Exploits0References4
CVE
CVEadded 2026/04/29 7:24 p.m.3 views

CVE-2018-25307

SysGauge Pro 4.6.12 has a local buffer overflow in the Register function that allows an attacker to overwrite the Structured Exception Handler by providing a crafted unlock key. The vulnerability enables shellcode injection via the Unlock Key field during registration, resulting in arbitrary code...

8.6CVSS6.2AI score0.0015EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/04/29 7:24 p.m.2 views

CVE-2018-25307 SysGauge Pro 4.6.12 Local Buffer Overflow SEH

SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute...

8.6CVSS6.4AI score0.0015EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/04/29 7:24 p.m.30 views

CVE-2018-25307 SysGauge Pro 4.6.12 Local Buffer Overflow SEH

SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute...

8.6CVSS0.0015EPSS
Exploits0References2
EUVD
EUVDadded 2026/04/29 7:24 p.m.2 views

EUVD-2018-21828

SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute...

8.6CVSS6.2AI score0.0015EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/29 7:24 p.m.3 views

CVE-2018-25304

Free Download Manager 2.0 Build 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler SEH chain exploitation. Attackers can craft a malicious URL file that, when imported through the File Import Import...

8.6CVSS6.2AI score0.00153EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder