Lucene search
+L

7 matches found

CVE
CVE
added 2026/03/02 4:32 a.m.22 views

CVE-2026-3410

CVE-2026-3410 affects itsourcecode Society Management System 1.0. The vulnerability resides in an unknown functionality of /admin/check_studid.php, where manipulating the student_id parameter enables SQL injection. Exploitation is described as possible remotely and publicly available, with high-s...

9.8CVSS6.9AI score0.00333EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/10/08 12:30 p.m.5 views

GHSA-MRMX-JFW8-QHGV Melis Platform CMS SQL Injection

SQL injection vulnerability based on the melis-cms module of the Melis platform from Melis Technology. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'idPage' parameter in the '/melis/MelisCms/PageEdition/getTinyTemplates' endpoint...

9.3CVSS8.1AI score0.00385EPSS
Exploits2References5
Vulnrichment
Vulnrichment
added 2025/10/08 10:45 a.m.2 views

CVE-2025-10351 SQL injection vulnerability in Melis Platform

SQL injection vulnerability based on the melis-cms module of the Melis platform from Melis Technology. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'idPage' parameter in the '/melis/MelisCms/PageEdition/getTinyTemplates' endpoint...

9.3CVSS7.6AI score0.00385EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2025/10/08 12:0 a.m.5 views

PT-2025-41244

Name of the Vulnerable Software and Affected Versions Melis platform affected versions not specified Description A SQL injection issue exists in the melis-cms module of the Melis platform. This allows an attacker to retrieve, create, update, and delete databases. The vulnerability is located in t...

9.3CVSS7.3AI score0.00385EPSS
Exploits2References13
CNNVD
CNNVD
added 2022/06/14 12:0 a.m.4 views

Product Show Room Site SQL注入漏洞

Product Show Room Site is a product showroom site from Carlo Montero's personal developer. version 1.0 of Product Show Room Site is vulnerable to a SQL injection vulnerability that originates in /psrs/admin/fields/managefield.php?id=page. SQL injection problem, an attacker can use this...

7.2CVSS6AI score0.00909EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/05/12 4:15 p.m.1 views

CVE-2022-29306

IonizeCMS v1.0.8.1 was discovered to contain a SQL injection vulnerability via the idpage parameter in application/models/articlemodel.php...

9.8CVSS5.9AI score0.01075EPSS
Exploits1References2
OSV
OSV
added 2018/09/18 8:29 p.m.4 views

CVE-2018-16671

An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is system software information disclosure due to lack of authentication for /html/device-id...

5.3CVSS5.8AI score0.08851EPSS
Exploits5References2
Rows per page
Query Builder