Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2026/02/08 12:0 a.m.3 views

Projectworlds Online Food Ordering System SQL注入漏洞

Projectworlds Online Food Ordering System is an online meal ordering system developed by Projectworlds Company in India. Version 1.0 of the Projectworlds Online Food Ordering System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the...

9.8CVSS7.2AI score0.00045EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/09/08 12:0 a.m.2 views

Jinher OA SQL注入漏洞

Jinher OA is a collaboration management software from China Jinher Jinher. A SQL injection vulnerability exists in Jinher OA 1.2 and earlier versions, which originates from improper handling of parameters in the /C6/Jhsoft.Web.departments/GetTreeDate.aspx file, which can lead to SQL injection...

9.8CVSS7.7AI score0.01734EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/08/29 12:0 a.m.2 views

O2OA 安全漏洞

O2OA is an enterprise application development platform from O2OA Open Source. A security vulnerability exists in O2OA version 10.0-410 and earlier, which originates from cross-site scripting due to incorrect manipulation of parameters in the file /xportalassembledesigner/jaxrs/widget...

5.4CVSS4.4AI score0.00078EPSS
Exploits1References7
CNNVD
CNNVDadded 2024/09/27 12:0 a.m.1 views

TMsoft MyAuth Gateway 跨站脚本漏洞

TMsoft MyAuth Gateway is an authentication gateway from TMsoft. A cross-site scripting vulnerability exists in TMsoft MyAuth Gateway 3, which stems from improper manipulation of the parameter console/nocache/cmd and can easily lead to cross-site scripting attacks...

5.3CVSS4.6AI score0.00196EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2023/03/02 12:0 a.m.3 views

PT-2023-12560 · Bordam Information Technologies · Bordam Information Technologies Library Automation System

Name of the Vulnerable Software and Affected Versions: Bordam Information Technologies Library Automation System versions prior to 19.2 Description: The issue is related to improper handling of parameters, allowing data collection as provided by users. Recommendations: For versions prior to 19.2,...

6.5CVSS6.4AI score0.00272EPSS
Exploits0References3
OSV
OSVadded 2021/05/25 5:15 p.m.4 views

CVE-2020-10069

Zephyr Bluetooth unchecked packet data results in denial of service. Zephyr versions = v1.14.2, = v2.2.0 contain Improper Handling of Parameters CWE-233. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-f6vh-7v4x-8fjp...

6.5CVSS5.5AI score0.00095EPSS
Exploits0References1
OSV
OSVadded 2017/11/22 7:29 p.m.4 views

CVE-2017-8124

The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges...

9.8CVSS5.8AI score0.00224EPSS
Exploits0References1
Rows per page
Query Builder