Lucene search
K

846 matches found

CNNVD
CNNVD
added 2024/06/07 12:0 a.m.2 views

Monstra CMS Security Vulnerability

Monstra CMS is a lightweight PHP-based content management system CMS by Sergey Romanenko, an individual developer in Ukraine. A security vulnerability exists in Monstra CMS version v3.0.4. The vulnerability is exploited by attackers to execute arbitrary web script or HTML via a specially crafted...

4.8CVSS6.7AI score0.00366EPSS
Exploits1References2
OSV
OSV
added 2024/06/03 8:15 p.m.4 views

CVE-2024-34987

A SQL Injection vulnerability exists in the ofrs/admin/index.php script of PHPGurukul Online Fire Reporting System 1.2. The vulnerability allows attackers to bypass authentication and gain unauthorized access by injecting SQL commands into the username input field during the login process...

9.1CVSS5.9AI score0.00607EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/05/26 12:0 a.m.5 views

PT-2024-35945 · Sourcecodester · Sourcecodester Facebook News Feed Like

Name of the Vulnerable Software and Affected Versions: SourceCodester Facebook News Feed Like version 1.0 Description: A critical issue was found in the software, affecting the file index.php. The manipulation of the page argument leads to SQL injection. The attack can be initiated remotely...

9.8CVSS8AI score0.00813EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/05/20 12:0 a.m.9 views

PT-2024-34603 · Unknown · Phpgurukul Directory Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Directory Management System version 1.0 Description: A critical issue affects the processing of the file /admin/index.php, where the manipulation of the username argument leads to SQL injection. The attack can be initiated remotely...

9.8CVSS7.9AI score0.00698EPSS
Exploits1References8
OSV
OSV
added 2024/05/17 7:15 p.m.6 views

CVE-2024-5063

A vulnerability was found in PHPGurukul Online Course Registration System 3.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

9.8CVSS5.8AI score0.00746EPSS
Exploits1References4
OSV
OSV
added 2024/05/17 2:15 p.m.4 views

CVE-2024-5048

A vulnerability classified as critical was found in code-projects Budget Management 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument edit leads to sql injection. The attack can be launched remotely. The exploit has been...

9.8CVSS5.7AI score0.00629EPSS
Exploits1References4
OSV
OSV
added 2024/05/14 3:44 p.m.1 views

CVE-2024-4722

A vulnerability classified as problematic was found in Campcodes Complete Web-Based School Management System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument category leads to cross site scripting. The attack can be initiated remotely. The explo...

6.1CVSS3.7AI score0.00635EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/05/10 12:0 a.m.4 views

PT-2024-32483 · Campcodes · Campcodes Complete Web-Based School Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A problematic issue was found in the software, affecting the index.php file. The manipulation of the category argument leads to cross-site scripting. This issue ca...

6.1CVSS6.6AI score0.00635EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/05/06 12:0 a.m.2 views

campcodes Complete Web-Based School Management System 安全漏洞

Campcodes Complete Web-Based School Management System is a web-based school management system from Campcodes, Inc. A security vulnerability exists in version 1.0 of the campcodes Complete Web-Based School Management System due to an SQL injection vulnerability in the name parameter of the index.p...

9.8CVSS7.8AI score0.00713EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/04/25 12:0 a.m.2 views

CmsEasy 安全漏洞

CmsEasy is a content management system CMS for creating responsive websites from China's Jiuzhou ET Technology CmsEasy. A security vulnerability exists in CmsEasy v.7.7 and prior versions, which originated from allowing remote attackers to obtain sensitive information via the update function in t...

3.5CVSS6.6AI score0.00411EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/04/10 12:0 a.m.5 views

PT-2024-26448 · Unknown · Campcodes Church Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Church Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown part of the file /admin/index.php. The manipulation of the password argument leads to SQL injection. It is possible to...

9.8CVSS7.9AI score0.01067EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.3 views

PT-2024-26409 · Unknown · Campcodes Online Event Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Online Event Management System version 1.0 Description: A problematic issue was found in the system, affecting an unknown function of the file /views/index.php. The manipulation of the msg argument leads to cross-site scripting. It ...

5.4CVSS4.2AI score0.00547EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.5 views

PT-2024-26394 · Unknown · Campcodes Online Event Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Online Event Management System version 1.0 Description: A critical vulnerability was found in the system, affecting unknown code in the file /views/index.php. The manipulation of the ID argument leads to SQL injection. The attack ca...

8.8CVSS7.2AI score0.00675EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.4 views

PT-2024-25348 · Sourcecodester · Aplaya Beach Resort Online Reservation System

Name of the Vulnerable Software and Affected Versions: SourceCodester Aplaya Beach Resort Online Reservation System version 1.0 Description: A problematic vulnerability was found in the system, affecting unknown code of the file /index.php. The manipulation of the argument leads to cross site...

6.1CVSS6.2AI score0.00617EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2024/04/04 12:0 a.m.5 views

The vulnerabilities of the LoadIndexFile() and DownloadIndexFile() functions in the repo package, as well as the LoadDir() function in the plugin package of the Kubernetes Helm package manager, allow a malicious actor to cause service interruptions.

The vulnerability of the LoadIndexFile and DownloadIndexFile functions in the repo package, as well as the LoadDir function in the plugin package of the Kubernetes Helm package manager, is related to the use of uninitialized variables during the processing of index.yaml and plugin.yaml files...

7.8CVSS7.2AI score0.00926EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/04/03 12:0 a.m.3 views

WUZHI CMS 安全漏洞

WUZHI CMS is an open source content management system CMS based on PHP and MySQL by Five Fingers WUZHI. A security vulnerability exists in WUZHI CMS version 4.1.0, which originated from allowing an attacker to execute arbitrary code and obtain sensitive information via the index.php file...

6.5CVSS7.4AI score0.00673EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/04/03 12:0 a.m.3 views

PHPGurukul Men Salon Management System 安全漏洞

PHPGurukul Men Salon Management System is a men's salon management system from PHPGurukul, Inc. A security vulnerability exists in version v.2.0 of the PHPGurukul Men Salon Management System, which is caused by a SQL injection vulnerability in the email parameter of the index.php component...

9.8CVSS7.9AI score0.01217EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2024/04/02 12:0 a.m.4 views

PT-2024-23720 · Wuzhicms · Wuzhi Cms

Name of the Vulnerable Software and Affected Versions: WUZHICMS version 4.1.0 Description: An issue was discovered in WUZHICMS, allowing an attacker to execute arbitrary code and obtain sensitive information via the "index.php" file. Recommendations: For WUZHICMS version 4.1.0, consider disabling...

6.5CVSS7.9AI score0.00673EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/04/01 12:0 a.m.3 views

NetentSec NS-ASG 安全漏洞

NetentSec NS-ASG is an application security gateway from China NetentSec. A security vulnerability exists in NetentSec NS-ASG version 6.3, which originates from an SQL injection vulnerability in the /3g/index.php file...

8.8CVSS7.9AI score0.00657EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.2 views

Campcodes Complete Online Beauty Parlor Management System SQL注入漏洞

Campcodes Complete Online Beauty Parlor Management System is an online beauty parlor management system from Campcodes, Inc. A SQL injection vulnerability exists in Campcodes Complete Online Beauty Parlor Management System version 1.0, which originates from an SQL injection vulnerability in the...

6.5CVSS7AI score0.00496EPSS
Exploits1References4
Rows per page
Query Builder