Lucene search
K

846 matches found

OSV
OSV
added 2025/01/30 2:15 a.m.5 views

CVE-2025-0847

A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /index.php of the component Login. The manipulation of the argument email leads to sql injection. The attack can be initiated...

9.8CVSS5.8AI score0.00588EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/01/30 12:0 a.m.4 views

PT-2025-4072 · Unknown · 1000 Projects Employee Task Management System

Name of the Vulnerable Software and Affected Versions: 1000 Projects Employee Task Management System version 1.0 Description: A critical issue affects the Login component of the system, specifically the file /index.php. The manipulation of the email argument leads to sql injection. This issue can...

9.8CVSS7.8AI score0.00588EPSS
Exploits1References11
OSV
OSV
added 2025/01/27 11:15 p.m.1 views

CVE-2024-57052

An issue in youdiancms v.9.5.20 and before allows a remote attacker to escalate privileges via the sessionID parameter in the index.php file...

9.8CVSS5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/19 12:0 a.m.3 views

PT-2025-3958 · Zzcms · Zzcms

Name of the Vulnerable Software and Affected Versions: ZZCMS version 2023 Description: A critical issue has been found in the software, specifically a SQL injection flaw. This issue is related to the manipulation of the id argument in the "/index.php" file, allowing for remote attacks. The exploi...

9.8CVSS8AI score0.0139EPSS
Exploits1References11
OSV
OSV
added 2025/01/14 5:15 p.m.2 views

CVE-2025-0463

A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.php?userid=123&module=Users&usid=1&action=UsersAjax&miniproconsttype=1&relatedmodule=Singin. The...

9.8CVSS5.4AI score0.00404EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.6 views

PT-2025-3894 · Virtual Computer · Virtual Computer Vysual Rh Solution

Name of the Vulnerable Software and Affected Versions: Virtual Computer Vysual RH Solution version 2024.12.1 Description: A problematic issue was found in the Login Panel component, specifically in the /index.php file, affecting an unknown functionality. The manipulation of the page argument lead...

6.9CVSS6.5AI score0.00414EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.4 views

PT-2025-3842 · Code Projects · Code-Projects Admission Management System

Name of the Vulnerable Software and Affected Versions: code-projects Admission Management System version 1.0 Description: A critical issue has been found in the Login component of the system, specifically in the file index.php. The manipulation of the u id argument leads to SQL injection. This...

9.8CVSS8.1AI score0.00686EPSS
Exploits1References12
OSV
OSV
added 2025/01/04 12:15 p.m.3 views

CVE-2025-0206

A vulnerability classified as critical was found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed...

8.8CVSS5.6AI score0.00608EPSS
Exploits1References5
OSV
OSV
added 2024/12/31 7:15 p.m.4 views

CVE-2024-13078

A vulnerability has been found in PHPGurukul Land Record System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The exploit h...

8.8CVSS5.8AI score0.00466EPSS
Exploits1References5
OSV
OSV
added 2024/12/31 5:15 p.m.4 views

CVE-2024-13074

A vulnerability classified as problematic has been found in PHPGurukul Land Record System 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument searchdata leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

5.4CVSS3.9AI score0.00286EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/12/31 12:0 a.m.2 views

PT-2024-17917 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A problematic vulnerability has been found in the PHPGurukul Land Record System. This issue affects an unknown part of the file /index.php. The manipulation of the searchdata argument lea...

5.4CVSS6.7AI score0.00286EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2024/12/31 12:0 a.m.4 views

PT-2024-17921 · Unknown · Phpgurukul Land Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Land Record System version 1.0 Description: A critical issue has been found in the PHPGurukul Land Record System, affecting an unknown functionality of the file /index.php. The manipulation of the searchdata argument leads to SQL...

8.8CVSS8.1AI score0.00466EPSS
Exploits1References9
OSV
OSV
added 2024/12/29 3:15 a.m.2 views

CVE-2024-13001

A vulnerability was found in PHPGurukul Small CRM 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to t...

9.8CVSS5.8AI score0.00406EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/12/29 12:0 a.m.2 views

PHPGurukul Small CRM 注入漏洞

Small CRM is a customer relationship management system. Small CRM suffers from an SQL injection vulnerability that stems from the email parameter of the /admin/index.php file containing an SQL injection vulnerability. No details of the vulnerability are available at this time...

9.8CVSS8AI score0.00406EPSS
Exploits0References4
CNVD
CNVD
added 2024/12/20 12:0 a.m.2 views

Park Ticketing Management System /index.php File SQL Injection Vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements. The vulnerability can be exploited to execute arbitrary SQ...

9.8CVSS8.6AI score0.00601EPSS
Exploits1References1
OSV
OSV
added 2024/12/19 3:15 p.m.2 views

CVE-2024-54790

A SQL Injection vulnerability was found in /index.php in PHPGurukul Pre-School Enrollment System v1.0, which allows remote attackers to execute arbitrary code via the visittime parameter...

7.5CVSS6.1AI score
Exploits0References1
OSV
OSV
added 2024/12/12 7:15 p.m.2 views

CVE-2024-54811

A SQL injection vulnerability in /index.php in PHPGurukul Park Ticketing Management System v1.0 allows an attacker to execute arbitrary SQL commands via the "login" parameter...

9.8CVSS6.1AI score0.00601EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/12/12 12:0 a.m.4 views

PT-2024-36423 · Unknown · Phpgurukul Park Ticketing Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Park Ticketing Management System version 1.0 Description: A SQL injection issue in the /index.php file of PHPGurukul Park Ticketing Management System allows an attacker to execute arbitrary SQL commands via the login parameter. Thi...

9.8CVSS8.7AI score0.00601EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/12/12 12:0 a.m.4 views

PHPGurukul Park Ticketing Management System 安全漏洞

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements. The vulnerability can be exploited to execute arbitrary SQ...

9.8CVSS8.5AI score0.00601EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.5 views

PT-2024-35742 · Unknown · Cookie-Encrypter

Name of the Vulnerable Software and Affected Versions: cookie-encrypter version 1.0.1 Description: The issue is related to a weakness in the encryption method used, allowing attackers to execute a bit flipping attack, specifically an AES CBC bit flipping attack, by exploiting the decryptCookie...

9.1CVSS7.2AI score0.00274EPSS
Exploits0References12
Rows per page
Query Builder